Encrypted Simplicity

With TrueCrypt’s recent issues I have once again redone the way I handle encryption, replication, and backup.

Encryption

For encryption I am using encfs (installed via home-brew). This is fast, efficient, secure, file based encryption (so it works well for syncing).

Sync

For syncing I am using BtSync. It is free, open source, multi-platform, and works well.

~/Documents/ – Non-secure syncing of the documents folder on all my machines.

~/.crypt/ – Secure (enfs) encrypted files directory.

~/iPhone-photos/ – Unencrypted iPhone photos (sync’d whenever phone is on wifi – i prefer this over apple’s iCloud photo sync).

~/.ssh/ – Syncing password encrypted ssh private (and public) key pairs.

Backup

Using the Time Backup utility of Synology NAS I backup my documents, ssh, and encrypted files hourly to an external USB drive, maintaining many historical versions of each file incase something bad happens.

I also have traded BtSync read-only keys with a few friends to increase the number of copies of each file that is available in the BtSync cloud, this provides redundancy as well as speed in syncing.

SSH-Keys

Using ssh-add -K <path> in OS X I have managed to automate authentication to most of my remote servers.

Leave a Reply