Forum Replies Created
-
AuthorPosts
-
Thank you Bruce!
I’d like to add that concerning HIPAA compliance, we know that AxCrypt is part of several health care organizations technical safeguards in order to ensure compliance with the HIPAA Security Rule. So, it can be used in organizations requiring HIPAA compliance. But, it’s not the software that is compliant, and it can’t be said to be.
Also, while Microsoft Office documents can be encrypted properly today, it’s really not easy as a layman to know if this is really the case for a particular use case. To illustrate, read https://technet.microsoft.com/en-us/library/cc179125%28v=office.16%29.aspx .
August 14, 2017 at 11:20 in reply to: Does encryption automatically upgrade to AES-256 after upgrade #7554Thank you Arthur!
Hello,
We don’t support this in the app, but it can be done manually (and it’s only required once per Premium period).
1) Sign up, sign in, purchase etc on an Internet-connected PC. Copy the AxCrypt installer and %localappdata%\AxCrypt\UserAccounts.txt and UserPublicKeys.txt to a medium you can access in the disconnected PC.
2) Install and start AxCrypt on the disconnected computer. You will be able to sign up etc, but offline. Do this, ensure you use the exact same email. Enable the “Always Offline” option. EXIT AxCrypt.
3) Copy “UserAccounts.txt” and “UserPublicKeys.txt” to %localappdata%\AxCrypt on the disconnect PC.
4) Start AxCrypt again. You should now be in always offline Premium mode.
In the future you’ll be able to download a license file containing this information directly from the web or from the app, and import it directly to the app.
Hello Nick,
Unfortunately, if you do not know the password for an AxCrypt-encrypted file you cannot open it, even if you can sign in to the account. This is by design, it’s just this situation that AxCrypt is made for and it works like this even if you actually are the original owner of the file.
If you think you almost know the password, we have a simple software allowing you to try to find your password, and you can download the most recent version from https://account.axcrypt.net/Download/AxBruteForce.exe and read of how to use it at https://forum.axcrypt.net/axcrypt-brute-force/ . Please note that we cannot provide support beyond this.
Please check the FAQ at https://forum.axcrypt.net/support/faq/ for more information.
August 9, 2017 at 14:46 in reply to: Unable to Decrypt, Encrypt and File – I'm locked out of all (encrypted) files!!! #7527Hello Derek,
Sorry for this, there was a small issue with the server earlier today affecting a very few users. We have since corrected, this but there may be a lingering effect like you see.
We have now restored your account so you should be good to go.
Also, remember, AxCrypt can work without Internet, so if something like this happens you can go offline and continue working. In the end, the only thing you need to open an AxCrypt-encrypted file is the software and to know the password.
Once again, sorry for the inconvenience and scare!
Also, you get fastest response from Premium support if you have it, or from support att axcrypt dott net. These forums are really for community support, although we do try to respond when we can – or when it’s urgent like this.
Hello David,
You can’t.
For the same reason that if you zip a file to a zip archive, it ends with .zip and if it was for example a Word document, now you can’t open it in Word directly.
Word-files are Word files and are identified in Windows by their extension, .docx.
Excel-files are Excel files and are identified in Windows by their extension, .xlsx.
PDF-files are PDF files and are identified in Windows by their extension, .pdf.
Zip-files are zip files and are identified in Windows by their extension, zip.
AxCrypt-files are AxCrypt files and are identified in Windows by their extension, .axx.Event though an AxCrypt-file may contain a word file or an excel-file or even a zip-file, neither ‘native’ application can interpret and decrypt the AxCrypt-file directly to get at the contents. AxCrypt is in this sense a ‘container’ file format, similar to .zip in many ways.
That’s why AxCrypt handles this process for your when you double-click an AxCrypt file.
Then AxCrypt decrypts the original file with the original extension, and then asks Windows to open the file with whatever application is registered for the extension, for example Office Word for a word file ending with .docx .
Hello Greg,
I am indeed truly sorry for the trouble this has caused you.
More details about this issue are found here https://forum.axcrypt.net/documentation/release-notes/ and here https://bitbucket.org/axantum/axcrypt-net/issues/344/critical-risk-for-data-loss-when-signing .
Hello Greg,
Unfortunately, version 2.1.1526 released on Thursday, August 3, contains a defect that under certain circumstances can cause damage to the encrypted file.
We discovered this on Sunday, August 6 whereupon we immediately withdrew this version, temporarily reverting to the previous version. Later that day, we released 2.1.1529 as a critical update. We also flagged the version 2.1.1526 as unreliable and all users who have an Internet connection will be notified at the next update check of this situation and prompted to updated.
Since then we have released 2.1.1532 as well.
We are very sorry for this defect which passed our release testing as well.
:-)
Hello Damnation,
You are quite right, the only thing is that we reserve “blocker” for things that really are blockers, i.e. things that essentially require a release immediately.
In any case, it should be part of the next release, in a week or two.
Actually, it’s not all about the changing paradigm – the option has been there all the time in AxCrypt 1, just not as default (which is perhaps what you meant) and we received quite a few support issues about it then too.
Hello TexasVet,
AxCrypt 2 works just like your email software or most other password-protected systems. You sign in once, and remain signed in until signed out. Just like you can read many emails without entering the password every time, AxCrypt will do the same. The files are still encrypted, but your password is remembered until you sign out of AxCrypt.
Please check the FAQ at https://forum.axcrypt.net/support/faq/ for more information.
AxCrypt stays signed in until signed out, just like most similar applications such as your email. Once signed in, you can read, write and update information without having to re-enter the password, until signed out. AxCrypt will automatically sign out when the screen saver goes active, or you can sign out manually.
Please read more in our blog: https://forum.axcrypt.net/blog/leaving-computer-axcrypt/
Hello Anonymous,
I’m not saying you should carry the strong key on a piece of paper.
I’m saying you should use one single strong key that you remember, and use that to protect your other secrets such as your encrypted files and other passwords.
Since that one single strong key is the key to ‘everything’, it’s pretty bad to lose, therefore you should have a non-perishable backup safely stored away. Our suggestion is a piece of paper in a safety deposit box or similar.
Our suggestion is that you keep the entire strong key in your memory, and keep a safe backup of it.
We provide our smart password generator that creates strong, but useful, passwords to assist you. Try it out here: https://forum.axcrypt.net/password-generator/ . It’s of course included in our password manager as well.
Hello jjartus,
We discontinued the ‘key file concept’ for a number of reasons, mostly because it tended to cause data loss when the key file was lost.
Instead, we recommend to use a single very strong password, and we have provided a password generator to help you out.
We do recommend that you write this one password down on paper (unless you use a password manager from someone else than us, in which case we recommend that you write down that password on paper) and store in safety deposit box or similar.
August 3, 2017 at 10:30 in reply to: Maybe I'm missing something? Files still open after encryption! #7497Hello Stee,
Yepp, you’re missing something ;-) We designed AxCrypt to be both convenient and secure.
AxCrypt 2 asks you to sign in to your account, which AxCrypt 1 did not. We now use a single sign on model where the same password is used to sign in to our servers and to protect your files.
AxCrypt 2 works just like your email software or most other password-protected systems. You sign in once, and remain signed in until signed out. Just like you can read many emails without entering the password every time, AxCrypt will do the same. The files are still encrypted, but your password is remembered until you sign out of AxCrypt.
AxCrypt stays signed in until signed out, just like most similar applications such as your email. Once signed in, you can read, write and update information without having to re-enter the password, until signed out. AxCrypt will automatically sign out when the screen saver goes active, or you can sign out manually.
Please read more in our blog: http://www.axcrypt.net/blog/leaving-computer-axcrypt/
Hello Jim,
AxCrypt actually works quite well in larger companies as well, in smaller teams and projects, and will work better in the future as well as we add such things as key recovery agents. It’s not really intended for enterprise wide use though, true enough.
So you’re right, for enterprise-wide, centrally managed encryption there are indeed solutions such as the one from PKWARE. Interestingly enough, AxCrypt actually has most of the distingusing features promoted for Smartcrypt. We have persistent encryption, easy key management, encryption without data expansion and cross-platform. We don’t have enterprise data discovery and centralized management.
You’re also right that we’re not FIPS 140-2 Validated. But, as far as I can determine, neither is Smartcrypt from PKWARE. All they are doing is using FIPS 140-1 or 140-2 validated cryptographic modules – i.e. calling the appropriate OS API etc, when there is a validation made by the manufacturer like Apple, Google, Microsoft etc. PKWARE is actually a little sneaky here, their documentation gives the impression they are validated, but they are apparently not. The certificates listed are not theirs, it’s various computer and software manufacturers such as the mentioned Apple, Google etc. They are also using a non-existing term – “FIPS compliance”. There is no such thing. A cryptographic is either validated or not, which is really the only distinction that has any real meaning. What PKWARE means with “FIPS Compliance” is that when they are using FIPS approved algorithms and modes of operations, they are in turn using a FIPS 140-1/-2 validated cryptographic module, where available. Whether this is a sufficient guarantee to fulfull your organizations requirements is up to each organization to decide.
Neither AxCrypt or Smartcrypt is FIPS 140-1/-2 validated. AxCrypt and Smartcrypt both uses FIPS approved algorithm families (AES, RSA, SHS etc…). Smartcrypt apparently has a non-standard mode where they ensure that they use device-specific implementations that are FIPS validated, when available. What other restrictions or features are affected by the Smartcrypt FIPS mode is not easily determined at a first glance, but since it’s not enabled by default I’m assuming it does affect the products function, compatibility or performance.
-
AuthorPosts
