David Means 0 Posted October 5, 2017 Share Posted October 5, 2017 I'm considering using Evernote, but before I make the plunge, I want to understand the following - How do you protect the confidentiality of data at rest? Do you support, or have plans to support multi-factor authentication, e.g., Google Authenticator? Thank you! Link to comment
Level 5* DTLow 5,736 Posted October 5, 2017 Level 5* Share Posted October 5, 2017 You’re posting in a user discussion forum. For security answers from Evernote, see https://evernote.com/security Evernote offers two-step verification (“2SV”), also known as two-factor or multi-factor authentication, for all accounts. Our 2SV mechanism is based on a time-based one-time password algorithm (TOTP). All users can generate codes locally using an application on their mobile device or can choose to have the codes delivered as a text message. Encryption at Rest In late 2016, we began migrating the Evernote service to the Google Cloud Platform (“GCP”). Customer data that we store in GCP will be protected using Google’s built-in encryption-at-rest features. More technically, we use Google's server-side encryption feature with Google-managed encryption keys to encrypt all data at rest using AES-256, transparently and automatically. You can find additional information on how encryption at rest protects your data here. Link to comment
Level 5* jefito 5,589 Posted October 5, 2017 Level 5* Share Posted October 5, 2017 Beat me to it, @DTLow BTW, a web search on "evernote security" turned that up, plus other relevant links, like : Link to comment
Recommended Posts
Archived
This topic is now archived and is closed to further replies.