LITIGATION SUPPORT TIP OF THE NIGHT

When considering which file sharing service to use, consider the following factors:

1. Can the users of the file sharing system recall records by referring to file hashes? If the hashes are generated using a private key and public key outside parties will not be able to access the files.

2. Does the service provide tunnelling protocols to allow data to be transferred securely between two points that use different protocols?

3. Does the service allow for customer managed encryption keys? Can the end user use their own encryption software and manage their own keys - the piece of information that allows a cryptographic algorithm to convert encrypted text into plaintext [unencrypted text], and vice versa.

4. Is device-to-device synchronization available? When data is updated on one device, will it be automatically updated on another device it is linked to?

5. What is the maximum size for any one file uploaded to the file sharing platform? For example, different kinds of Box accounts may limit individual files from anywhere between 250 MB and 32 GB. See this post.

6. If the file share software is open source, it will be easier for security experts to check for its vulnerabilities.

7. Does the service offer hybrid clouds - allow for both public and private cloud services. The former is cheaper and can be easily scaled to meet customer demand, but the latter uses a dedicated cloud infrastructure that keeps data behind a firewall.

8. Will files be encrypted only while they are transferred, but also when they are stored on a server? Is the data protected while it is at rest?

9. Does the service offer end-to-end encryption? This will allow only users exchanging files to view them, and prevent access by the provider.

10. Is two factor authentication offered?

11. Does the service permit data mining? Google Drive uses data mining to find personal information it can use for advertising purposes.

12. Does the system have a versioning file system which allows it to store several versions of the same file?

Virtual private networks can use different protocols.

1. OpenVPN is the most widely used VPN protocol, and is considered to be the most secure protocol. There are actually two different versions of OpenVPN - OpenVPN with UDP (User Datagram Protocol), or OpenVPN with TCP (Transmission Control Protocol). The latter is slower, but more stable.

2. Internet Protocol Security (IPSec) differs from OpenVPN in that it does not require a third party application. It works on the network level, rather than using SSL (secure socket layer), like OpenVPN.

3. WireGuard is an experimental VPN protocol that has not been widely adopted. It should offer faster performance, and it was designed for use on cell phones since it switches between network interfaces without dropping the connection.

4. Point-to-Point Tunneling Protocol (PPTP) is an older protocol with security vulnerabilities that should be avoided.

The Tip of the Night for September 30, 2019, discussed using a VPN application to encrypt internet traffic while on public wifi networks. When considering which virtual private network service to subscribe to, check to see if split tunneling is an option. Split tunneling will allow a user to connect to a work server securely, while simultaneously connecting directly on a public network for web searches or video streaming for which the user has no confidentiality concerns. You don't want to slow down traffic by sending it through a VPN server for no reason.

VPN apps like Private Internet Access will allow you specify which applications should use the virtual private network.

Split tunneling can also direct that any traffic to a specific location or from a specific location be done through the VPN.