Keeping Important Data Safe and Secure Online
Norm Kaufman
Examples of Important Data• Passwords and Secret Answers
• Personal Documents (Licenses, Passports, Insurance Cards, Credit Cards)
• Social Security Numbers
• Health Proxy/Living Will
• Financial Data
• Tax Data
• Medical/Benefits
• Personal Requests
Storing Important Data Online
• Personal Documents Are Difficult To Replace
• Scan and Store Them Online In Case of Emergency e.g. Hurricane
• Already Doing It — iCloud Drive
• Retrieve Data Away From Home
• Share With Family/Trustee in an Emergency
• Less Information to Carry With You
Why Would You Want To Do It?
Agenda
• Password Managers
• File Hosting Services
• Encrypting Folders and Files Using Apple Tools
• What I Use
Password Managers
DashLane 1PasswordLastPass
Full Featured
Apple’s Keychain
Limited Features
–Anonymous
“Someone Stole My Password So I Changed The Name of My Dog.”
-Anonymous
“I needed a password eight characters and one capital. So, I picked Tallahassee, Snow White and the Seven Dwarves.”
Why Use A Password Manager• Avoid Using Weak Passwords (64%)
• Avoid Reusing Passwords (59%)
• Auto Create Long, Complex, Unique Passwords: 1H7FkP9pa!P$
• Passwords Stored Encrypted — Only You Have Crypto Key
• A Place To Store Secure Notes
• Only Need To Remember One Password — But Don’t Forget It
Apple’s Keychain• A Basic Password Manager By Apple
• Safari, Mail, iOS Apps, Routers (OS and iOS)
• Strong Security — 128 Bit AES
• Designed For Simplicity
• How to Access Passwords
• On Mac: Safari Preferences and also in Applications Folder>Utility Folder
• On Mobile Device: Settings>Accounts & Passwords
• Negatives: Doesn’t work on Chrome or non Apple Devices; not easy to share
For Tutorial: https://youtu.be/Og2RA10HW6U
For FAQ apple.co/2kd9UPf
• Strong Security — 256 Bit AES (cloud)
• 2 Factor Verification
• Auto Fill, Auto Password Create, Auto Password Change, Form Fill, Secure Notes
• Implemented as Browser Extensions on The Mac and as Apps On Mobile Devices
• Work on Apple, Windows, Linux
• Cloud Based
• Negatives: Targets of Hackers
Dashlane 1Password
Full Function Password Managers
Sample Vault Entree
LastPass Emergency AccessA Useful Side Feature
Agenda
• Password Managers
• File Hosting Services
• Encrypting Folders and Files Using Apple Tools
• What I Use
Many File Hosting Sites
File Hosting
Desirable Features: 1.Strong Security and Privacy 2.File Sharing/Collaboration Capability 3.Easy To Use 4.Service Has An iOS App 5.Some Backup Capability
iCloud Drive on Mac• iCloud Drive is Contained in Apple’s
iCloud — 128 Bit AES
• Stores User Created Folders/Files
• Mac Apps
• iOS Apps Data
• Syncs Data; Not a Backup Service
• Negatives: File Sharing is Limited & Only Can Be Used On Apple Devices
iCloud Drive On iOS• Tap The Files App
Dropbox• Popular, Versatile, Easy To Use File Storage For All File Types
• Easy Collaboration
• AES Encryption But a Few Employees Can Access Your Files For Legal Reasons
• Has 2 Factor Authentication
• Syncs With All Devices
• Has iOS App That Interfaces With Other iOS Apps
• Negative: Dropbox Hacked in 2012
Google Drive• Popular; Provides Substantial Free Storage
• Converts File Types To Its Own Preferences
• Integrated With Docs, Sheets, Draw, Slides, Forms, and Sites
• Collaboration
• AES Encryption But Employees Can Access Your Files
• Syncs With All Devices
• Has iOS App That Works With Other iOS Apps
SpiderOak• High Security (AES Encryption) — No Knowledge; Employs Cannot Access Data
• Uses a Combination of 2048-Bit RSA and AES 256 Bit Encryption
• All File Types
• Collaboration & File Sharing
• File Backup Capability
• iOS App — Limited Features
• Syncs Across Devices
• Negative: Somewhat Confusing to Use
File Hosting SummaryiCloud Drive Dropbox Google Drive SpiderOak
Strong Security
Yes Employees Can Access
Employees Can Access & Ad Driven
CompanyYes
Sharing Collaboration
No Yes YesYes - Each Shared Folder Has Unique
Encryption
Easy To Use Yes Yes Somewhat Confusing
iOS App Yes Yes Yes Yes - Not Feature Rich
Backup No Limited Backup Limited Backup Backup
Biggest Vulnerability is Poor Password Practices
Agenda
• Password Managers
• File Hosting Services
• Encrypting Files and Folders Using Apple Tools
• What I Use
Use “Print to PDF” to Encrypt Files
• Open Apple Document • Select Print • Click PDF Button • Select Save as PDF…
• Enter Password and Save • Results in PDF Requiring Password
• Name Your File • Select Security Options
Features of Encrypted PDF Files
• Uses 128-bit RC4 Algorithm
• Not As Good As AES But Good For Day to Day Use
• Readable on iOS devices and On Most PDF Viewers
• Can Be Stored On Line e.g. Dropbox
• Can Be Sent Via Email
Use Disk Utility to Encrypt Folders1. Create Folder on Desktop 2. Open Disk Utility 3. File>New Image>Image from Folder
4. Select Folder and Choose Encryption
5. Enter Passwords
6. Select Read/Write and Save
Features of Encrypted Folder
• Places Encrypted 10 Mb Disk Image on Computer
• Opening Disk Image Decrypts Disk
• Files Can Be Moved In and Out of Disk
• Ejecting Disk Encrypts All Contents
• Can Be Stored on Dropbox, etc.
Agenda
• Password Managers
• File Hosting Services
• Encrypting Folders and Files Using Apple Tools
• What I Use
What I Use• Lastpass Provides A Way For My Daughter To Have Password Access In
An Emergency; I use Keychain for iOS apps
• SpiderOak Provides Super Secure On Line Storage of Sensitive Data
• iCloud Drive Is Used For All Apple Needs
• Dropbox and Google Drive for Mundane Storage
• “Export to PDF” Used to Send Sensitive Information Over Email
• Haven’t Used Folder Encryption
Questions
Keychain Links
For Tutorial: https://youtu.be/Og2RA10HW6U
For FAQ apple.co/2kd9UPf