It means that you work with Evernote normally, and when you need to create or view an encrypted note you use Saferoom. Saferoom is now a set of mobile and desktop that together add full encryption capabilities on-top of Evernote. We wanted to build an encryption app that will be easy to use and allow anybody protect their personal data. We have been working hard to provide users with zero-knowledge encryption functionality without destroying user's productivity. We are a small team of developers and we are passionate about our new product which is Saferoom. Now, if you take a look at Evernote's Privacy Policy, they have an abstract about Third-Party Apps here:Īnd they use the term application everywhere: Indeed, Evernote never mentions in it's Authorisation page if it is an app or a company you give access to. So perhaps the problem is that when Evernote asks me to grant access to "Saferoom" to retrieve all my notes, it does not specify that I'm only granting access to the one individual installation of the Saferoom app that exists on my phone. There's nothing that Saferoom can do about it.Īll right, I see a bit more details here, especially, in this part: As mentioned previously, Saferoom couldn't function properly otherwise. The kind of restrictions you mention do not exist on Evernote's end. It's complete access to your account or no access with the Evernote API. Better to limit the apps (and companies) that can access the data, where possible. So maybe there is no solution. But I'd rather not try to increase my security by "just trusting" yet another company with my data. At some point, I would just have to trust you. Of course, once the data is in your app, your company might have the ability to access it regardless of what I tell Evernote. It sounds like I'm giving the company access, and I don't want to give the company access. But if "Saferoom" means anything more than that (e.g., the Saferoom company, the company's servers, etc.), then it's not true that "Saferoom" needs access in order to function and encrypt notes. It depends what you mean by "Saferoom" in this sentence. If by "Saferoom" you are referring only to the Saferoom app/software that is located entirely on my iOS device and nowhere else, then yes, I understand that "Saferoom" needs access to my notes in order to encrypt them. " Because to work with encrypted notes Saferoom needs to read them obviously." Even if Saferoom only had access to certain notes, the notes in question would be precisely those notes that I want to keep most secure. This would be a step in the right direction, I think, but it doesn't totally solve the issue. " A small question: what if Saferoom would ask you to let it read only the notes that Saferoom has created ? The permissions would be the same (read full notes), but only those created by Saferoom?" Please don't expect a fast reply, dev support seems very slow these days.Ī small question: what if Saferoom would ask you to let it read only the notes that Saferoom has created? The permissions would be the same (read full notes), but only those created by Saferoom? Because to work with encrypted notes Saferoom needs to read them obviously. Let me ask some questions related to that to Evernote Dev support, maybe, we can come up with some solution here. This extension also does not need access to your account. And you can use Saferoom Chrome browser extension to decrypt the notes. Remember, that desktop versions of Saferoom don't require any permissions and don't connect with Evernote cloud, and communicate only with local Evernote app where you assign a notebook to work with. Until the Evernote API limitation is fixed, I'll just keep confidential stuff out of Evernote.Ĭompletely understand. Blaming the problem on Evernote rather than Saferoom is fine with me, but that does not eliminate the problem. Saferoom seems to be saying, " We won't view any of your notes, but in order to use our service, you have to tell Evernote that it's OK for us to view your notes." This falls short of the sort of security guarantee that I'm looking for.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |