Search the Community

Showing results for tags 'security'.

More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Community Event Calendar
  • Evernote Events


  • General Discussions
    • Evernote General Discussions
    • Third Party Application Discussions
    • Using Evernote
    • Billing and Payments
  • Evernote Products
    • Evernote
    • Evernote Business
    • Evernote Web Clipper
    • Scannable
    • Skitch
    • Penultimate
    • Evernote Market
  • International Forums
    • Japanese Discussions
    • Brazilian Portuguese Discussions
    • Discussions in Spanish
    • Korean Discussions
    • Traditional Chinese Discussions

Found 157 results

  1. Hello, Evernote community, We are a small team of developers and we are passionate about our new product which is Saferoom. We have been working hard to provide users with zero-knowledge encryption functionality without destroying user's productivity. We wanted to build an encryption app that will be easy to use and allow anybody protect their personal data. Saferoom is now a set of mobile and desktop that together add full encryption capabilities on-top of Evernote. It means that you work with Evernote normally, and when you need to create or view an encrypted note you use Saferoom. All the time your encrypted items are part of Evernote notes, but you can see them (e.g. decrypt) only inside Saferoom app. And Evernote is just a beginning - we want Saferoom to be like "Passbook" for your encrypted data. Saferoom encrypts whole note including all the resources - independently of the resource type and your password is stored on the device only. It also means that password cannot be restored - that is a price for true zero-knowledge encryption. Our app is available in iTunes Store: And in Google Play Store: Saferoom Desktop for MacOS and Windows are free: Windows: And also you can use Saferoom Chrome extension: Here is a video demos of Saferoom capabilities: Any feedback is always welcomed.
  2. Pretty much self-explanatory. Text can be encrypted on a desktop and viewed on mobile but not encrypted on mobile. I know this has been posted many times before but it does not seem to be an "idea" so i thought to make it one.
  3. I love Evernote, but it's preventing me from putting in sensitive content. For example, I can't keep a personal journal notebook, because other people (i.e. girlfriend, family members, etc.) could one day be looking at those notes, especially since they know that I use Evernote often for many purposes. Evernote already has the ability to encrypt single notes. This is useful for things like storing passwords or other temporary sensitive content. But it's not practical to encrypt many notes one by one. I wish I could password-protect a whole notebook. This way, I can do a lot more with Evernote. If I can encrypt single notes, then why can't Evernote just allow me to encrypt entire notebooks? If reason behind this is because Evernote thinks one could lose a lot of data if a notebook password is forgotten, then perhaps Evernote can help recover the passwords through email. In the meantime, I'm stuck with using other apps (i.e. Pages, Day One, etc) to password-protect my content. Any insight is greatly appreciated. Thanks.
  4. I like the text encryption feature in Evernote but that is insufficient for a Cloud based service, used across multiple platforms, used by a great many people, especially in these times. I believe that Evernote should provide users with the ability to encrypt entire notes, including images and attachments. Please seriously consider implementing this functionality as soon as possible. To not do so, presents loyal users with a significant risk to information confidentiality and integrity, with potentially serious impact should any such risk actualize. I believe that the lack of this functionality also highlights Evernote and its community as potential soft targets. That said, the alternative for Evernote users, at this time is to simply avoid the use of Evernote for documenting, sharing, managing or other handling of potentially sensitive or critical information (including personal notes, ideas, intellectual property and any personally identifying information - as a start) if that information is in any form other than text. Over time, this gap in Evernote security may erode the need for the service (given alternatives with better security). If EN planning/dev. staff want to discuss this further, please contact me or reply to this comment. Thanks in advance. B.
  5. Hi, Apple Notes has already done this and it's elegant. We need the same thing for Evernote. Thanks,
  6. Hi all, We are getting increasing feedback from Safari Web Clipper users of problems clipping certain sites. One reason in these cases can be caused by how Safari have chosen to enforce Content Security Policy (CSP) headers. Summary of CSP: - It's a 'setting' of sorts, that site publishers can set that limits what bookmarklets and extensions can do on their site. - In Safari this may cause the Web Clipper to not being able to execute any code and thus not being able to start. - More info about CSP is available here: Typical signs of a CSP issue: - When clicking the Web Clipper toolbar button absolutely nothing happens. (i.e no Web Clipper UI will load) How to determine if the site is having restrictive CSP settings: - See this Skitched tutorial for a guide. What can be done about it? - At this point there is nothing that we can 'fix' in the Web Clipper. We are blocked by Safari from running any code. - At the moment Chrome and other browser haven't implemented CSP the same way so clipping in those browser should work fine if the root cause is CSP.
  7. Hi - I just got an email saying, " You recently attempted to send an email message from your Evernote account. Unfortunately, we are unable to deliver the email to your intended recipient(s). " However, I didn't try to send any such email (there were 2 of them, both with the subject, "Hey" Does this suggest that my account has been hacked? I also got a password reset notification from Soundcloud yesterday, saying they are resetting my password due to suspicious activity. Can someone please help me understand what's going on?
  8. First time I tried to set up two-factor authentication, on the final step the screen displayed like this - the overlay window was super tiny. I couldn't click or see anything. Reloaded the page to fix, but then the whole process was cancelled and I had to re-enable two-factor authentication. Second time it displayed ok. Screenshot attached. Note sure if this would be browser related or evernote problem. Firefox 51.0.1. Just sharing in case anyone runs into a similar issue.
  9. 2 Step, Access History, and Authorized Applications went out with last night's service update, works on all the clients, and is available to Premium and Business users (with eventual Free user rollout). You've been able to see access history for a while, and is available to all users. The official post is here:
  10. Great that Evernote supports 2-factor authentication via Google authenticator. What about support for the Fido U2F keys, such as from Yubico? Far more convenient way to get 2-factor authentication!
  11. Evernote urgently needs a way to clear recent search history. I see that people have been asking for this for years, and yet it's still not an option. Where is it even stored? I can't find it in any file, or in the registry. I tried uninstalling Evernote to clear it, and my recent searches came right back after I reinstalled. While trying to find out if this is currently possible, I came across one person who accidentally entered a password in his search history, and another who entered her SSN in the search box to find a PDF, where it is now stuck for anyone to find. Evernote has a serious security problem if its users can't control their own sensitive data.
  12. I have a personal Evernote account that I use for both business and personal information. I have access to it on my work computer, with Windows 7, since I need notes from both areas. I use the desktop app and sign out of Evernote when I leave. However, I worry about the confidentiality of my notes on the local drive and the company's ability to readily access them. Are they encrypted in any way? Can they be? Does the web app keep an image on the local drive? The more I read this post, the more I realize that the computer is theirs and they could do whatever they want. Is getting rid of the desktop app and using the web a solution? Thanks for the help.
  13. I would like to store some secure documents within Evernote, however Evernote for years has lacked full encryption on notes and has constantly ignored the request from many to fully encrypt our data. This should be core to the Evernote service offering. Users should have the ability to control their own encryption keys as well.
  14. I am constantly getting emails asking me to verify my email address using a link. I NEVER click on links in emails. I tried logging on to my Evernote account and verifying the email there and I just got sent another email with a link. This makes me think that the email is valid but I'm still not going to risk it. Is there any way to stop this?
  15. Hi everyone, I've just started the process of going paperless, which has included scanning in financial documents such as bank statements into synced notebooks. Having scanned a number of these documents, I've now decided they would be better off – more secure – in local notebooks. If I move a previously synced note to a new, local notebook, does a version of it still live somewhere on the cloud? Or is the cloud version deleted? If the latter, is there an official privacy statement somewhere to say so? I'm sure this question has been asked before, but I couldn't find any answers by searching. Thanks.
  16. MaidSafe -- A Revolution in Digital Security I just discovered this, but it may be the next big thing in the digital world. Don't miss this video! Please post your thoughts and reaction to this new technology.
  17. I held a recent Evernote workshop and the predominent question was "so how do I easily back-up all the material I've put into Evernote". Good question and I'd love to provide a super easy answer like..... "Evernote has thought of that so here is the easy back-up button" Thanks
  18. Any security difference ? When using Taskclone (Evernote -> Toodledo) it creates the Classic note link but this is less useful than the Public link because, this way, you don’t have the [View in Evernote] option on the web page. Thanks you!
  19. Evernote Android, iOS, and Windows Phone all now have passcode lock available for all users, including our Basic level. Check out our blog post here for more info:
  20. How secure are the notes stored in Evernote? Is there a way to make sure the files stored in the Evernote directory structure on the local hard drive are encrypted? If I store company documents, including peoples SSNs, and personally identifiable information, how secure are they? When a notebook is shared with another Evernote user, does the data pass back and forth as SSH? Thanks
  21. The crux of the issue for me is that quitting is not logging out. This is not what I expect, it's counter-intuitive (and dangerous). The way Evernote seems to work, both on my Mac and iPhone, is that if I just quit Evernote, it’s not protected. Launching the app opens it up logged on, so anyone who gets onto my Mac or my iPhone also gets into my Evernote without having to log on. This is too easy an error to make (from a security point of view) and one which I’ve been making unknowingly for months. So, I think you might want to add an option to your app so that when quitting Evernote one can choose to do so without logging out or with logging out. Those who don’t want to be bothered with this prompt should be able to opt out of it in preferences, but for the rest of us, security-aware, we could have this work so that either every time we quit we also log out, or we get a choice each time we quit Evernote. Please let me know if this option is already available and I just haven’t seen it, or if it can be made available. Thanks, FrogPhotog
  22. What I want is, that I have an option to select, that every time I start EN it ask me for password. But then, while it's on, it doesn't ask for password every time it synch. It was working that way, but now (perhaps after last update - I have (272236)Public) it doesn't. I know that there is option to sign out but it's not practical. Many times I shut down PC while EN is in system tray. And when I start PC, and then start EN it just opens. Did I miss something?
  23. I usually add a tag "public" every time I make a note public I can then go through and prune public links every now and again. Would love this to be automated. So I could automatically see which notes were potentially viewed or shared by others. Colour coding would be ideal.
  24. Many of us use evernote on Pcs that do not belong to them including the local app for windows. To ensure data is protected and it is not possible to read residual data even though the user account is logged out it would be nice to be able to encrypt the data with a unique password while on that local system. Just the cached local copies. This way if say a user no longer has access to that PC for whatever reason they can rest assured their data is safe. Example use cases include using a work PC or a PC belonging to somebody other than yourself. Require the user unlock the data at login each time with a password basically.
  25. As a user who stores a lot of sensitive information in Evernote, I would appreciate the capability for enhanced security beyond what is currently provided. 1) Data encryption at rest. I haven't found any information on this, but it seems to me our personal data is stored on the servers in "plaintext" form, and is only encrypted during transmission to/from the clients and servers. Are there any plans to implement full end-to-end encryption of data in all phases? I understand that Evernote needs the keys in order to support a lot of its useful features. Perhaps there could also be a user-selectable mode where only the user keeps keys locally (much like the in-note text encryption already available), perhaps compromising Evernote features but enhancing security. 2) In-note encryption for all data formats. Right now, we have the ability to encrypt text segments at will using local private keys, which is a welcome feature. I would appreciate this capability to be extended for all data types, e.g. audio, photos, and other file attachments. Are there plans to support this feature? Thanks!