Jump to content


Level 2
  • Content Count

  • Joined

  • Last visited

Community Reputation

1 Neutral

About saint78

  1. This is interessting, even if it is is ad nauseam for some early adopters. But hey, it's better then experiencing the flipside of early adoption....loss of data or severe security issues. Only through dialog and discussion can two sides reconcile their differences Perhaps, a good and simple solituin for Evernote is to produce a pdf or a specific webpage dedicated to this issue to clarify their stance on the issue? This is what Evernote is for (security wise) and this is what it currently isn't best suited for. Now, all this is prob found throughout the website, but it would be easier to have something labled "SECURITY AND PRIVACY OF YOUR DOCUMENTS" etc.... At least, a lot more intelligent has been said in this thread than the others so at least it's a resource for newer newbies.
  2. Nothing new here. Security has been discussed ad nauseum on the board. Please search the board for the "wide open databases" thread, if you want more information. Bottom line: - EN allows text encryption. Doubtful they will add anything more, any time soon, since their focus is to collect & easily retrieve info. Indexing cannot be done on encrypted info. - Anything else you want in the EN cloud can be encrypted via the third party app of your choice. - EN is not a password manager. However you can add your logins & passwords in text format & encrypt them using EN's built in text encryption, if you wish. - you can store sensitive data locally only (non-cloud), via either a Mac or Windows desktop, if you choose to. Hmmm, I hear you I hear you. But if this is "old" news and the forum has quite of similar topics, it appears to me as this is an area where Evernote could/should get better? If there's a market for it, you make it. If Evernote leaves this area as is, then it either must be a) design philosophy or lack of funds?
  3. Interessting... http://antivirus.about.com/od/securitytips/a/evernotetip.htm Bottom line: storing unencrypted data on an Internet-facing server is not a great idea. With that in mind, following are seven of the worst Evernote (or any cloud-based storage) tips: I'm a teacher. I use @evernote to create individual portfolio files for each student, documenting everything. Why it's bad: Compromise of the teacher's Evernote credentials potentially exposes sensitive details on students, who also likely happen to be minors. This tip is not only a security risk to those students, it potentially has legal ramifications for the teacher (and the school at which they teach). Store credit card statements. Why it's bad: Credit card statements often include the account number. Exposure could lead to increased risk of credit card fraud. Store login names and passwords for websites (tag with Login to see them all together) Why it's bad: Attackers who gain entry to your Evernote account now potentially have access to all your online accounts. Build family medical portfolios including medical history, allergies, pictures of medications, receipts. Why it's bad: In the past, cybercriminals who have stolen medical information have sometimes blackmailed the victims. Unless this is information you would feel comfortable sharing with friends, neighbors or even strangers, it is best not stored in-the-cloud. Keep family social security numbers (and other info) in an encrypted note for easy, secure access. Why it's bad: Exposure leaves your entire family at risk of identity theft. This type of sensitive information is best kept in a locked file cabinet, not in-the-cloud. Keep router/firewall settings (addresses, passwords, open/closed ports, etc.) handy and nearby. Why it's bad: Attackers who gain access can use this information to reconfigure DNS settings on your router or enable their own access to your network. Take a photo of your passport and send it to Evernote. If it's lost or stolen, you can still show the embassy your info. Why it's bad: A photo of your passport makes it that much easier for counterfeiting. A safer bet would be storing only the passport number (in encrypted form). I've done 5 of those and I AM concerned, because none of my questions/worries really have been answered satisfactory. All those things above, that's what Evernote would be insanely great...
  4. I found this (here: http://michaelhyatt.com/is-your-data-safe-in-evernote.html) "Evernote can encrypt sensitive data within a note. If you have something within a note that you want to keep private—passwords, financial information, counseling notes, etc.—you can do so by highlighting the data, right-clicking, and selecting “Encrypt selected text.” You will then be prompted to enter a password. In order to view that information in the future, you (or anyone else) will have to enter the password to do so." Problem is, most sensitive documents are PDF's, not plain text (at least mine). So you can't encrypt it with this method. I don't really care for indexing these types of documents, it's more for backup/easy retrieval than fast indexing. I know what my 2009 tax return says, I just need it up in the sky. That's why a way to create a folder within Evernote, that is encrypted as standard and you need a password (not a pin) to open. It's that easy...
  5. I posted something similar thread under Windows and I've been reading all the links people posted on threads here. It would be beneficial if Evernote had a bit more security that it apparently has today. I wanted to store bank statements and medical records using Evernote, but I will put that off for a while. I know it's impossible to have bombproof protection. I know even paper is never safe. If someone REALLY wants your stuff, they can break into your house and get it. But that requires someone to know who you are and know what to get. In the cloud, it's easy for some punk @ass teenager to go fishing for any type of information without knowing who I am or what he has gotten a hold of. 1. Evernote should encrypt any information stored locally, like cache. 2. Evernote should require a password everytime you start it. After some time unused, password should be required again. 3. Information should be encrypted on the server and this should be clearly stated. I haven't found anything official, other that SSL encryption of the data stream. 4. You should be able to put passwords on certain folders and encrypt these without using any external apps. 5. You should be able to turn off any security measures if you so wish to do so. I need to investigate this a bit further....for the moment, I think Evernote is best for recipes and pictures of stuff I don't want to forget S
  • Create New...