Hi, I would like to encrypt some files I have on my pcs.
The intention is to encrypt backup otp codes, curriculums, purchases; personal documents in general. The content should add up to just a handful of MBs.

My current setup is made of a sync node which leverages nextcloud webdav access, my phone and my workstation.

Ideally, I would like to be able to have the files encrypted on every storage, and then be able to decrypt them just for their use. Something like a virtual file system would be fantastic.

I’ve read about pgp, but I’m not 100% sure it is the best solution. Are there any “universally” accepted alternatives?

If pgp is the right way to go, how should I manage access to the files? Should I use a keypair for every end-device and encrypt the files with both pubkeys or not?

Pardon me for all these questions, but I’m a bit confused.

  • ksynwa
    link
    fedilink
    arrow-up
    2
    ·
    4 years ago

    I don’t know what solution would be best for you but

    Should I use a keypair for every end-device

    I think the best way to use PGP is that one key-pair should map to one person and then you can copy your keys to whichever devices you want to.


    If it is something you are not going to be constantly updating, then encrypting with PGP is a good option because it is fairly universal (I use it on Linux and Android pretty seamlessly to manage passwords). If it is something that will need to be regularly updated then I am not sure.

    • clockwise_bitOP
      link
      fedilink
      arrow-up
      1
      ·
      4 years ago

      Thanks for clarifying about the best setup for the keys! I didn’t find anything online, I probably used the wrong keywords.

      The files would be updated frequently, as the are use to keep track of bookmarks, accounting and so on. On a normal basis, I would edit the accounting file maybe 2 to 3 times a day, not so much honestly. The heavy payload would be the notes. I regularly edit those files through the day to brainstorm, track todos… If I would have to guess, I’d say I update them 20 times a day.
      Would this be too much for pgp?