Does Updraft Vault use zero knowledge encryption?

  • Resolved tirnaelectronics

    (@tirnaelectronics)


    8 years, 4 months ago

    I’d like to know if UpdraftPlus Vault stores the encryption keys on their cloud systems (as per DropBox, OneDrive & others), and can be unencrypted by anyone who hacks in and obtains them. Or if it doesn’t, what’s known as ‘zero knowledge’ of the encrypted data (in the eyes of hackers).

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author David Anderson / Team Updraft

    (@davidanderson)

    8 years, 4 months ago

    Both can be done. The data at rest in Vault is (always) encrypted using keys which are stored in AWS. You can also optionally, if you have UpdraftPlus Premium, encrypt your database backup using your own choice of key (which is stored in your WP settings, and thus can’t be obtained by anyone who doesn’t have access to the unencrypted database).

    David

    Thread Starter tirnaelectronics

    (@tirnaelectronics)

    8 years, 4 months ago

    So to be absolutely clear, where are my WP settings being stored if I use premium option to encrypt my database with my choice of key?

    Lastly, does this only apply to the database, or also plugins/files/themes that are normally part of a complete backup?

    Plugin Contributor DNutbourne

    (@dnutbourne)

    8 years, 4 months ago

    Hi,

    The database backup encryption only affects the database backup file.
    The file backups are not encrypted.

    Plugin Author David Anderson / Team Updraft

    (@davidanderson)

    8 years, 4 months ago

    WP settings are stored in the WP database. (So, the backup does itself contains a copy of the encryption key…. but, of course, it’s encrypted!).

Viewing 4 replies - 1 through 4 (of 4 total)

The topic ‘Does Updraft Vault use zero knowledge encryption?’ is closed to new replies.