DropBox will provide decrypted copies of your files to the government upon request.

We all know how Dropbox declares its security:

• All transmission of file data occurs over an encrypted channel (SSL).
• All files stored on Dropbox servers are encrypted (AES-256)
• Dropbox employees are not able to access metadata (file sizes, file sizes, etc.)

However, does this really guarantee the security of our data?
')


Recently, the following clause was added to the Dropbox license agreement:

Compliance with Laws and Law Enforcement Requests; Protection of Dropbox's Rights. We’ll tell you what you want to use. (b) death or serious bodily injury; prevent fraud or abuse of Dropbox or its users; or (d) to protect Dropbox's property rights. If you provide a copy of this information, it’s possible to use it.

In other words, at the request of the United States government, Dropbox will provide them with decrypted copies of your data. Just like that. Decrypt yourself and provide. But what about SSL, AES-256 and other protection, you ask?

Recently, a Dropbox representative also clarified what “Dropbox employees are not able to access user files” specifically (Dropbox employees do not have access to user files. ") It turns out that this means that:

The contents of the dropbox will never be accessed. We can’t see what’s up to the user’s access to the clearer. files. "

That is, Dropbox employees are simply forbidden to access user files. And even this is not at all impossible.

In general, if you use Dropbox, in fact, your files are protected only in the path from you to the Dropbox servers (although how well it is not known).

Like this. No disaster, of course. All this was expected. But still ... unpleasant.