Monday, December 4, 2017

... because cloud computing is a matter of trust

Who wrote a diary in childhood and youth, knows, how rare the really good hiding places are, to protect the little private book. Under the mattress, on the wardrobe or in the locked desk cabinet
       there was no place, where the gem could be reliably protected from mothers’ prying eyes.

Or think about the first passionate love-letters. At least in American blockbusters it was always possible, to place these behind loose brick walls ...

But before you start tapping the wall, looking for a suitable hiding place: The world of today is a bit different than it was in your youth. What formerly used to be the diary is replaced by the customer database of your entrepreneurial life. The pile of love-letters has probably been outstripped by research records, bills and corporate balance sheets.

Nothing that would be safe under mattresses or behind loose bricks.
Even quite the contrary. Because in contrast to diary and love-letters, sensitive data material can really be protected from prying eyes. How? Just by using the cloud

Public, private, hybrid cloud – If you want to protect your data from unauthorized access, various cloud 
concepts can be used. In recent years, the hybrid cloud has emerged for an appropriate model. 
A hybrid cloud is an environment in which companies manage part of their IT resources on premise, 
while other data material is hosted by a service provider.
TeamDrive offers not only cloud services, but a free server choice: Data can be stored only on servers hosted by TeamDrive, on own servers, or on the servers of a selected service provider.
The TeamDrive security layer provides protection over the company's existing infrastructure.

With further security offers, such as end-to-end encryption, zero-knowledge principle and server located in Germany, TeamDrive Systems offers insurmountable security barriers.

That’s how confidence in secure cloud computing is growing.

… because cloud computing is a matter of trust.  

Wednesday, November 29, 2017

USB Flash Drive versus Cloud Storage

Small, handy, highly dangerous 

They are everywhere. In our handbags, briefcases, jackets. They are black, gray or screaming colorful and they are available in a variety of shapes: portable USB flash drives. This fact is all the more extremely astonishing, as in “cloud-times”, flash drives seem like a relic from a bygone era. To be clear: USB is out! Instead, cloud solutions offer a secure alternative for transmitting and storing sensitive data material. Nevertheless, portable USB drives are still spread as a giveaway, support home-office workers and serve as a popular tool for fast data exchange.

The ultimate security check 

Let’s take a look, what happens with sensitive data on USB and in cloud environments.

A secure exchange of data over the cloud is permitted by TeamDrive. TeamDrive is a collaboration software and service to sync files easily and securely with 256 bit AES end-to-end encryption using the TeamDrive cloud or the client server. Thanks to end-to-end encryption only the user to whom the data was sent is also allowed to read it. The solutions of the Sync & Share service provider correspond to the high security requirements according to Paragraph 203 Criminal Code for professional secrecy. By end to end encryption and zero knowledge concept TeamDrive protected data is completely safe from unauthorized access. In addition, versioning and immutability help to secure data in the best possible way.

But: If you choose an USB, what does that mean for the sensitive issue of data security?

Security and USB flash drive do not belong together for two important reasons. The first reason: the flash drives are too small. The second reason: saving data does not mean that the sensitive information they contain is automatically protected.

Flash drives are too small

Small is good, one may think. Unfortunately, nothing could be further from the truth: It’s the small thing that can be lost too easily. Countless flash drives are forgotten in hotel rooms, or simply fall out of one’s bag. If these portable data carriers are found, the finder only needs a few minutes to read them out. And these few minutes are fully enough to pave the way on potentially explosive data material - without leaving traces behind.

Saving data does not mean, that they are automatically protected

Sensitive data on the flash drive is only safe as long as it remains in our hand. As soon as we remove it, third parties can easily access the information they contain - for only the fewest USB flash drives contain encrypted data.

USB is out, security is in

Do not risk anything concerning the sensitive issue of data security. Remember that, thinking about fast and secure data exchange.

Thursday, July 13, 2017

TeamDrive against data loss and ransomware attacks

With our new Snapshot feature, called Point in Time Recovery (PiTR), TeamDrive presents a new security solution for cloud computing. 

In which cases PiTR can be useful?

During a ransomware attack company data are encrypted by cyber criminals. Access to the unencrypted data stock is only possible after the payment of a sum X. This can happen to any company at any time. WannaCry gives an impressive example of how fast even millions of companies face this scenario of helplessness. 

With our Point in Time Recovery there is always a copy of the data on the TeamDrive servers, which can be easily restored in the event of an incident. We also provide additional data security in case of an unintended loss of data such as by mistake or hardware crash.

How PiTR works in practice:

PiTR automatically creates a snapshot of the data stock over all computers connected to the service. Snapshots are generated every four hours. In the professional version the snapshots can be taken every 30 minutes. 

If a data loss or a ransomware attack occurs, so that the user can no longer access the data, the data backed up just hours earlier can be restored with a few simple steps. 

PiTR and TeamDrive service:

PiTR is kind of a fourth security level in our service. As the three first levels may be considered a complete end-to-end encryption, the zero-knowledge architecture and strict data retention exclusively in German data centers according to national data protection legislation.

All TeamDrive customers, using the TeamDrive Cloud storage, benefit from the new security feature, regardless of the client version which they use. The server side snapshots will be automatically created indepentently. Tweaking the solution, changing the pre-defined settings requires the latest TeamDrive 4.5.0 client.

Monday, May 15, 2017

"Trust in Cloud" seal for TeamDrive Sync and Share Services

We are delighted to have been presented with the 50th “Trust in Cloud” seal of quality at the Google Cloud Conference in Munich. The seal, which is awarded by the Cloud Ecosystem Association, confirms that our sync & share service adheres to all the cloud-based service guidelines that are of importance to German businesses. These guidelines cover areas such as German data protection legislation, security aspects, service level, contractual arrangements, and other quality criteria that play a crucial role during the selection of cloud solutions in Germany.

The seal is important because it helps German companies to make informed decisions when choosing which cloud services to use. Although TeamDrive sync and share services already always store all clients’ data, end to end encrypted, in accordance with Germany’s strict data protection requirements, the seal of quality provides additional confirmation of this from an impartial third party. It underlines that all Data is stored in Data Centers in the EU/Germany.

FrankTuerling (Cloud Ecosystem),   Detlef Schmuck (TeamDrive),   Folker Scholz (Cloud Assessment Center)
The new seal presented to us at the Google Conference is one of many independent awards we have received in recognition of the features and, above all, the security of our TeamDrive service. The Schleswig-Holstein Independent Center for Privacy Protection (Unabhängiges Landeszentrum für Datenschutz Schleswig-Holstein – ULD) has been certifying our compliance with scrupulous German and European data protection regulations and security standards for years. Moreover, in a comparison of cloud-based sync & share services, the Diplomatic Council, a think tank that provides advisory services to the United Nations, recently confirmed that we offer the best levels of data protection out of the 12 solutions investigated.

Tuesday, April 4, 2017

TeamDrive named winner of the Diplomatic Council Cloud Sync&Share Services report 2017

TeamDrive is the winner of the DC Cloud Sync&Share Services report 2017 of the Diplomatic Council (DC), a global think tank in consultative status with the United Nations. 

Volker Oboda, Detlef Schmuck and Hang Nguyen Diplomatic Council
The report was compiled due to a growing demand for an impartial comparison of IT services that offer a secure and reliable means of exchanging data over the internet (the cloud). In particular, the apparent “rampant activities of the intelligence services”, the rise in cybercrime including industrial espionage, and the legal uncertainty surrounding some global data protection regulations have resulted in increasing requests for us to recommend individual services. According to the report, the German-based service TeamDrive is the most secure services. 

Three security criteria
Widely-used alternatives from US suppliers, such as Dropbox, Box, Google Drive or Microsoft One Drive, are expressly not recommended, because, according to the report, they “do not support significant security criteria such as end-to-end encryption, a zero knowledge system and hybrid data storage”. The Global Information Security Forum of the Diplomatic Council classifies these three security characteristics as particularly significant. End-to-end encryption ensures that data is not left unencrypted either during transfers or when stored on the Internet. A zero knowledge system means that even the supplier cannot decrypt the data and therefore cannot read it – not even if required to do so by a court order, for example. Hybrid data storage means that the user can choose the place of storage and apply additional classifications. Redundant storage and unchangeable version control ensure that no data is lost either through technical failures or as a result of attacks via the Internet. The relevant data can always be restored. The think tank’s report describes hybrid data storage as a “crucial criterion for selecting a cloud-based sync & share service”, in order to ensure that, even if data is lost in the cloud, this data still exists.

12 services compared
In total, the Diplomatic Council examined twelve cloud-based sync & share services for its investigation: Dropbox, Box, Google Drive, Microsoft One Drive for business, Spider Oak, Syncplicity, TeamDrive, SSP Europe, Telekom MagentaCloud, Strato HiDrive, Ctera Portal and Tresorit. As well as being the most secure services according to the report, TeamDrive and Secure Data Space are also credited by the think tank’s Global Information Security Forum for being the only service to receive the ULD Data Protection Seal of Approval from the Independent State Center for Data Protection. TeamDrive is the only service recommended by the German Lawyers Association (DAV) for professionals with confidentiality obligations, such as attorneys and notaries. In the opinion of the Security Forum of the Diplomatic Council, a service that meets this high standard is also worth recommending for industrial use.

Dr. Thomas Lapp, Chairman of the Global Information Security Forum of the Diplomatic Council says: “One would hope that the operators of all the services recognize the security defects in their services immediately and remedy them as swiftly as possible. A high level of security is in the interests of all stakeholders.”