Jump to content
  • 2

Are Encrypted Notes or Notebooks in the Pipeline?


wussery

Idea

Posted

I have been test driving Saferoom which is an App that can be used to encrypt one's notes in Evernote and it is a very nice implementation. This product has been available for several years and I'm scratching my head as to why Evernote cannot natively implement something like Saferoom in its program. If they don't want to start from scratch, why not purchase the Saferoom code or hire the key engineers that are responsible for Saferoom's software.

The implementation that I would like to see incorporated into Evernote is to have a Notebook Encryption option where all one would have to do is turn on Encryption for a Notebook and any Note created in this Notebook is encrypted. To decrypt a note all one would have to do is right click on the Note and enter the password for the note and it is moved to a decrypted folder of one's choice. The original stays in the encrypted notebook folder until deleted by the end user. In addition, the end user is the only one who would have the Master Password and would understand that Evernote cannot recover any encrypted notes should you forget your Master Password.

Can someone from Evernote please explain if Notebook or Notes encryption are in the product plan in the near future?

5 replies to this idea

Recommended Posts

  • 0
  • Level 5*
Posted

No indication from Evernote on encrypted notes   
In fact, the encryption function has been downgraded to text only

>>To decrypt a note all one would have to do is right click on the Note and enter the password for the note and it is moved to a decrypted folder of one's choice.

Interesting idea; I'd probably use a single temporary decrypt local notebook

Do we need a "password for the note"?  I already have an account password 

>>If I'm not mistaken Evernote can recover your authentication password to log into your account

Standard security procedure is Evernote can not "recover your authentication password"   
They can only provide support to change your authentication password

  • 0
Posted
13 minutes ago, DTLow said:

No indication from Evernote on encrypted notes   
In fact, the encryption function has been downgraded to text only

>>To decrypt a note all one would have to do is right click on the Note and enter the password for the note and it is moved to a decrypted folder of one's choice.

Interesting idea; I'd probably use a single temporary decrypt folder  
Do we need a "password for the note"?  I already have an account password 

DTlow, I would prefer to have a different password for my encrypted Notebook or Notes. If I'm not mistaken Evernote can recover your authentication password to log into your account. I don't want this capability for my encrypted notes. If I forget my Master Password for my Notebook or Notes, then that is on me.

  • 0
Posted
3 minutes ago, DTLow said:

Standard security procedure is Evernote can not "recover your authentication password"

 

Thanks for the clarification.

  • 0
  • Level 5
Posted

The request to increase data privacy is logical, but probably not easy to implement when looking at the EN data structure.

Notes are kept in a database structure, with attachments linked into the note. It is much easier to write a link into a database field than to house differing files in a container called note. In the background the attached files are stored as they are in a directory normally hidden to the user.

Thus the note itself can’t be fully encrypted, because the database needs to read parts of it in order to work. And the attachments can’t be easily encrypted because they rest outside of EN itself. The part that was easy to implement is encrypting plain text content of a note, which is done.

Encrypting part of the notes structure would probably mean to implement a duplicate database that holds the encrypted stuff. And encrypting the attachments could be done by using an encrypted vault containing the sensitive stuff. All that would probably be a moonshot-project for the established code base of EN. A new contender writing encryption into the project plan can implement it with much less effort and backside to the existing stuff.

  • 0
Posted
2 hours ago, PinkElephant said:

The request to increase data privacy is logical, but probably not easy to implement when looking at the EN data structure.

Notes are kept in a database structure, with attachments linked into the note. It is much easier to write a link into a database field than to house differing files in a container called note. In the background the attached files are stored as they are in a directory normally hidden to the user.

Thus the note itself can’t be fully encrypted, because the database needs to read parts of it in order to work. And the attachments can’t be easily encrypted because they rest outside of EN itself. The part that was easy to implement is encrypting plain text content of a note, which is done.

Encrypting part of the notes structure would probably mean to implement a duplicate database that holds the encrypted stuff. And encrypting the attachments could be done by using an encrypted vault containing the sensitive stuff. All that would probably be a moonshot-project for the established code base of EN. A new contender writing encryption into the project plan can implement it with much less effort and backside to the existing stuff.

PInkElephant I recognize that this is hard stuff from an engineering standpoint, but this is being done with other Notebook Applications like Joplin. I am just trying to find out what are the engineering obstacles that are preventing Evernote from implementing Notebook Encryption from an Evernote employee.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...