Question Security encrypted data

What is the problem you are having with rclone?

Problem none, I use it and cryptomator, How secure is one versus other?, is most secure rclone than cryptomator or cryptomator than rclone?.

I will crypt all my data oon the pc and I want to choose best option.

Lot Of thanks.

I am not a security expert by any means but as far as I know, neither of them have had any reported issues. Cryptomator recently changed their scheme so it has been in the wild less time.

Outside of security of the data itself, both tools have their pros and cons. Cryptomator is designed to be used with local repositories that are then synced. rclone is designed to encrypt the files on the remote; though a "remote" can be local. And you can mount or serve webdav with it too.

Cryptomator stores the keys with the repo. I do not know if that is officially good practice or not but it is worth noting. When you change your password, it changes in the key and everything else remains. No re-encrypting.

Rclone is a bit different if you want but can act the same. With rclone, you can set the password and then if you change it, you have to re-encrypt everything. However, you can instead choose a random password(s) and then encrypt the config file. Now that config file is like your encryption key. You need to separately manage that config file and do not lose it.

rclone aims to be 1:1. You can pull a single file from the rclone remote and decrypt it. Cryptomator looks at the whole repo so you cannot manually pull a file and expect to read it. That has its pros and cons though. rclone, when encrypting the file names, makes them much longer. Cryptomator basically makes two files for every one where one has the names, etc. So you do not run into the length issue. But again, then you need the whole thing to get it back as opposed to a single file!

Performance wise, I do not know but I do know that, for better or worse, rclone offers so many toggles and flags that you should be able to tune it as you want. Cryptomator, also for better or worse, has sensible defaults but offer little in the controlling category.

While there is an app that can read rclone on iOS, it is not as sleek as cryptomator. If accessing things remotely on your iPhone (if you have one), is of concern, cryptomator is sleeker with that.

Anyway, I know I didn't directly answer your question but I hope this helps. The bottom line really is that you can use either one. Just play and see what you like more. And maybe someone has more insight into the actual security and encryption model.

https://forum.rclone.org/t/rclone-1-53-3-release/20569

Sure, but to be fair, that is not an issue with the encryption scheme or implementation. It was an issue with the password generator. It is/was a big deal but it is not what OP asked. OP asked [sic]

and the seeding issue is not about security of the encryption

imho, it was an implementation problem

  • a flaw was identified
  • a new release had to be created to fix that flaw.
  • an executable had to be created to check for that implementation flaw for existing users.
  • if the flaw as found, rcloners were told for the need to re-encrypt all their data.

and the odds, as with so much other software, there are more implementation problems with rclone.
whereas cryptomator has been audited, as far as i know, rclone has not
https://cryptomator.org/faq/security/audits/

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.