TruPrivacy

Cloud storage providers nearly universally practice a data storage technique called ‘deduplication.’ Although highly efficient at keeping storage costs low, deduplication is fraught with security and privacy holes that can expose customer files and their contents.

Encryption keys

Most cloud storage providers encrypt customer data via an encryption methodology that uses an encryption key to encrypt customer data. Unfortunately, the mismanagement of these keys can lead to data loss, exposure or theft.

SurDoc uses a unique security design, TruPrivacy™, to resolve this problem:

While security systems generally use a security key to encrypt files…

…SurDoc does it the other way around. They use the file to encrypt the security key.

As part of this, SurDoc invented a new algorithm to manage encryption keys, further ensuring that data is kept completely private.

With TruPrivacy, every file is encrypted with a unique encryption key, which is then encrypted before being stored on a server. As part of the TruPrivacy process, only the user who owns the file can calculate the encryption key; the server has no knowledge of both the encryption key and the unencrypted file. Because of this, only the user who owns the particular file can access their file:

  • Not a hacker who has taken full control of the server.
  • Not the government after receiving subpoenaed files.
  • Not even the cloud provider’s own employees.

This breakthrough technology allows for deduplication across users without the ability to read file content, enabling for the first time 100% truly secure data in the cloud.

TruPrivacy Technology is currently available exclusively through the SurDoc.com cloud service.