T O P

Synology C2

Synology C2

jk37e

If you encrypt client-side, you are good on virtually every service. As far as I remember, C2 had encryption at rest unless you loaded the Hyper Backup viewer, and at that point while loaded, stuff was not encrypted on their servers. In general i trust nothing which doesn’t have client side encryption..


8fingerlouie

Hyper backup [has client side encryption](https://kb.synology.com/en-us/DSM/tutorial/How_to_back_up_your_data_to_cloud_services_with_Hyper_Backup) Here’s a blog article describing how it works : https://blog.synology.com/hyper-backup-encryption-technologies-explained


jk37e

Thank you! The second link didn’t exist when I tested this so it was all reverse engineering. I’ll have a read when I have time.


BroadFriend

So you agree that C2 is generally secure then


jk37e

Not at all!


BroadFriend

I mean if you client side encrypt them with hyper backup


jk37e

The point I was trying to make is that, based on what I remember from when C2 launched, you basically had to give them your client-side encryption key if you wanted to restore something specific so I would not consider this a real client side encryption. And you were forced to use hyper backup. Maybe someone can corroborate this with more recent hands on experience. I remember you had a website and you entered your key which was transferred to C2 server and then decrypted your data on their servers (same experience as if you loaded an encrypted share on your syno, to be clear). If you really do client side encryption and never ever need to give your key away to a third party any cloud solution is ok.


BroadFriend

So most likely I won’t be able to automate the daily backups if I have to manually encrypt


BroadFriend

What would you recommend


BroadFriend

Or what would you consider a secure cloud service


YourDomainAdmin

Configure your Synology to perform client-side encryption. This way neither C2 nor whoever hacks them would be able to do anything with your data.