When the user enters an encryption password into CloudBerry, this password is stored in the settings file using AES encryption. When uploading, CloudBerry reads the encryption password from the settings file and generates an encryption key. To generate the encryption key, we use the PBKDF2 key derivation function (RFC 2898). The encryption key is salted and run through many iterations to further slow-down brute force attacks. The encryption algorithm runs in Cipher Block Chaining (CBC) mode to further protect the encrypted files. Furthermore, we use PKCS #7 (Cryptographic Message Syntax) padding. A cryptographic Random Number Generator (RNG) is used to generate the initialization vector (IV). Encryption is performed in real-time during backups. — D
Thank you for visiting! Please take a moment to register so that you can participate in discussions!