Encryption

Try browsing the server, opening or restoring a file.

Hello Daniel and bin,

Let me clarify this situation.

bin is right - you can check for the archive encryption during the recovery (in case if the archive is encrypted - you will be asked for the password).

Additionally to this, you are welcome to ask me any other questions concerning Acronis, and I will assist you further.

Thank you.

Thank you for the information. If I bring up the 'online storage' window, right-click on a file and choose recover, it asks me where to put it and then saves. The only time I get asked for a password is when I first start the 'online storage' window. At that point it asks for my user/pass to log in.

So, I guess I didn't enter a password for encryption. How can I go back and enter a password to activate encryption? I assume it will have to backup everything again since the files currently on the server are not encrypted. (I am using TI2010 w/ online backup, not the standalone version)

Yes Daniel, you would need to remove the PC you have registered and register it again, and lose everything already backed up.

It is totally your choice of course but I chose not to use encryption as I believe it is secure enough as it is and encrypting (and decryptping) everything is just another thing that can slow things down or go wrong.

There are a few files that I encrypt anyway using either Winzip or a free utility called Crypto (used mainly for storing sensitive data on my mobile). I paid for Crypto on the mobile but the PC sister version for Windows is free and provides extremely strong encryption. So those files are safe wherever they are!

Link to the Crypto freeware - http://www.smartphoneware.com/crypto_desk-product.php
It is simple, very easy to use, and quick.

Hi all,

I have a question regarding encryption in AOB and don't want to start a separate topic because of it.

I'd like to ask if there's any chance of recovering my backed up data if I'd lose my encryption key.

Thanks

Hello rado,

Let me answer your question.

The encryption key you've set is known to you only. Acronis do not know the key and do not have the means for retrieving the forgotten key. Therefore if the key is lost or forgotten there's no any chance to recover your data.

Please reply to this thread if you have any additional questions.

Thank you.

rado hi, if you lost any other encryption key would you expect it to be personal or recoverable? If Acronis could recover it then others possibly could too. Is a matter of how safe do you want it?

I happen to believe there's some mis-information with some of these answers.

- If you set a encryption key and login for the first time -- acronis online backup remembers the encryption key somewhere.
My home PC where I have it installed and have been checking the status has not re-prompted me for the encryption key again
and it shows my file structure/etc. Does not ask for a password even when I test a recover.

For instance, I cannot access another family's pc because I do not know their encryption key. I can view the PCs in my overall account.

So, obviously, the encryption password is saved somewhere on your PC (registry, application data folder or acronis install folder). If you have acronis online installed onto another pc and attempt to access one not yet registered then it will prompt for the encryption key.

The password is not saved on the PC anywhere. Either there is a 'cookie' of some sort that lets it authenticate, or there is a hash of the password somewhere. I don't even work for Acronis and I will give you my next paycheck if you can find the plain text password sitting in the registry somewhere.

I've noticed that at least one person thought he'd entered an encryption key; then found out later that the backup was not encrypted. I experienced that and have a suspicion about how it occured. New to Acronis OL Backup, I entered the computer name in the setup and though I noticed the space for the encryption key, I skipped it for the time being. Later, I returned to the first page and typed-in the key (password). After completing the backup, I went to the Acronis Website to examine my backup and see if it would ask for the key. It did not. So I deleted the backup computer and set it up again, but this time, entered the encryption key right away. This way, it was in effect when I checked. I haven't done sufficient testing to declare this a bug, but hopefully, my input will give your development team something they can investigate. I would also strongly encourage Acronis to provide specific instructions for verifying the encryption key and bug the user until he does it. Additionally, I'd state under the computer name whether it is encrypted or not. You could get yourselves in a nasty lawsuit and damage your good reputation if customers were unable to recover their data or had it stolen and wanted to blame it on your system. And I'd waste no time doing this!

che ng and daniel had speculated about the location of the encryption key on the local computer. I believe I've found it in C:\Documents and Settings\All Users\Application Data\Acronis\TrueImageHome\OnlineBackup\config.xml (on Win XP). It appears to be in a hash form.

ENCRYPTION FAILURE Acronis Online When I first 'registered' my desktop for online backup, I forgot to enter encryption key. I then registered a laptop WITH an encryption key. Days later I 'removed' the desktop and re-registered using the same name, but this time added the encryption key.

Unfortunately, there was no encryption protection and I was never prompted for an encryption key for the desktop online backup - whether recovery, backup, browse. However, I continued to be prompted for an encryption key for the laptop, so I know it's data is (more) secure.

Acronis tech support thought my certificate was corrupt and so I deleted my certificate and a new one was installed during my next logon. That did NOT work. Acronis Supv verified that he could access my desktop online backup and he was never prompted for an encryption key.

So I thought, perhaps I need to 'remove' the desktop name registered and register it under a completely different name, which I did. Still did not work.

Can anyone help? I've dealt w/2 Acronis front line techs and 1 Supv - none have been able to solve this enigma. I'd really like to have Acronis encrypt my desktop backup online files and I do not want to inject any other encryption software into the process.

Have you tried uninstalling the software completely from your computer and reinstalling?

yes, that drastic measure was taken - wasted even more of my time having to recreate all the backup scripts and rerunning all the backups

I 'REPAIRED' TIH plus pack 2010, still didn't fix problem. Escalated issue to Lvl 2 support. The next day, seems to be working fine after deleting Internet Temp Files, as detailed in chat stream below. Although previously the laptop would require an encryption key regardless of how accessed, now no encryption key needed if online backup data being recovered from laptop which created it.

Bottom Line: encryption key prompted for only if accessing online backup from a different computer than the one that created the online backup. I do not agree with this logic and think if something is encrypted, it should always require encryption key to access in order to prevent unauthorized access. What if my laptop was stolen or someone else who did not have authorization to use my equipment did?

I 'REPAIRED' TIH plus pack 2010, still didn't fix problem. Escalated issue to Lvl 2 support. The next day, seems to be working fine after deleting Internet Temp Files, as detailed in chat stream below. Although previously the laptop would require an encryption key regardless of how accessed, now no encryption key needed if online backup data being recovered from laptop which created it.

Bottom Line: encryption key prompted for only if accessing online backup from a different computer than the one that created the online backup. I do not agree with this logic and think if something is encrypted, it should always require encryption key to access in order to prevent unauthorized access. What if my laptop was stolen or someone else who did not have authorization to use my equipment did?

Forum terms of use rule:

"Not post any private communication (e-mail, chat logs, private messages) without the express permission of all the parties involved into this communication."