13 de abril de 2012

Zerobin, Open Source Pastebin Alternative With Client-Side Encryption

Pastebin is a free service on the Internet that lets you paste and publish text contents easily. Accounts are not required for basic functionality, and there are features such as syntax highlighting available when code is pasted and published on the site.
Zerobin is a new open source Pastebin alternative that is currently available as an alpha version. One of the big differences between the two services is that Zerobin encrypts contents on the client side before they are send to the server. This basically means that the server has no information of the contents of the text that is stored on it.
When you load the Zerobin website you are presented with a big text field that you can paste contents in / type text in, an expiration menu and a send button. Once you have added the text, you select one of the available expiration options (never, 10 minutes, 1 hour, 1day, 1 month, 1 year) and hit the send button afterwards.
You then receive the url that is pointing to the text. This address includes the encryption key that is needed to decrypt the message. Users who do not have the key cannot encrypt the message. There is also an option to shorten that long url, which may be useful before posting it on Twitter or another external site. The data is compressed and encrypted with a 256bit AES algorithm in the browser.
The project website details how Zerobin works.  The url that points to the text basically consists of a unique identifier that is stored on the server, and the encryption key that is used to encrypt the test in the browser before it is uploaded to the server. The server has knowledge of the unique identifier but not the encryption key.
The developer plans to integrate syntax highlighting, which is missing at the moment, and password protection to the service. It also needs to be noted that the current implementation is experimental in nature, and that data uploaded to the server may be deleted at any point in time.

☛ El artículo completo original de Martin Brinkmann lo puedes ver aquí

No hay comentarios.:

Publicar un comentario