[Plasma Vault] [Bug 410457] System Integration for cloud usage (mounting/unlocking)

Sat, 06 Feb 2021 13:59:09 -0800 

https://bugs.kde.org/show_bug.cgi?id=410457

Elias <supg...@gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |REOPENED
     Ever confirmed|0                           |1
         Resolution|INTENTIONAL                 |---

--- Comment #3 from Elias <supg...@gmail.com> ---
> Integration with KWallet is out of the question as it would render Vaults 
> useless.

Not in the use case of a cloud, not wanting to give unencrypted files to the
cloud provider.

> There is no point in keeping something encrypted if the encryption key is 
> easily accessible.

This is no problem since the encrypting key will only be stored on my machine
and will not be accessible by the cloud provider.

---

I use a plasma vault for encrypting my files before they are seen by the cloud
client so that it uploads the files encrypted. I do not care about locally
encrypting the files. The whole purpose of this is that the cloud provider /
server does only get encrypted versions of the files.

For this usecase storing the password unencrypted on my computer is okay. It
will not destroy the purpose of the vault and will still do the job.

> There are already better tools for this use-case. You should encrypt user's 
> home directory, or better, create an encrypted /home partition.

Encrypting the /home directory will not help at all with this. (I'm already
using FDE anyway.)
The cloud client runs after user login and syncs the files it sees in its
directory. They will be unlocked at that time, even with encrypted /home. So
the cloud client would upload the unencrypted files. This would solve nothing.
Another layer in between is needed. For example by using plasma-vault ;)

---

> Vaults are meant and designed to be small encrypted containers [...] that are 
> in the locked state for as much as they can be.

Yes I would want to keep them closed while not used. (I have multiple vaults on
my cloud for different things.)
This way, they eat up less memory of my machine and I'm a little more safe
against accidental changes by me.

But currently, closing and later reopening a vault is not very user friendly. I
always have to type my password, which is not very fun when your password is
mad of many random chars/symbols.
It would be much faster if I could just open/close vaults with one click.
For that, an option to remeber the password is required.

-- 
You are receiving this mail because:
You are watching all bug changes.

Reply via email to