Imagine the situation, I’m hurtling down the highway and I’m walking through the Carbonite iPhone app with my wife, looking for data we know is sitting on a password encrypted file back at home. Carbonite offers the options to log into your filesystem via a computer browser, or to access your files directly via the trusty old iPhone app.
The trouble is that the Pages file was stripped of its password. What?
So being wired the way I am, I proceed to run some scenarios to figure out what is broken and where.
Scenario 1: Create a new password protected file, wait for Carbonite to back it up and attempt to open it via the iPhone app.
Result: Fail – File opens, password stripped out
Scenario 2: Take the same password protected file and upload it to iCloud.
Option A: make a copy in Pages for iOS.
Result A: Pass – File opens, password intact
Option B: open the orignal file as Pages for iOS.
Result B: Pass – File opens, password intact
Scenario 3: Open file on PC/Mac and access via Carbonite web site via web browser.
Result: Fail – File opens without prompting for password
This begs the question, why is the password stripped out? Am I the only one to find this troubling? Maybe there’s a gap between my expectations and what I bought.
Expectation 1: I can recover all my stuff in the event that a tornado picks up my house and sends it to Oz. This is obviously not met, as my file content is the same, but now I somehow have to remember what I protected, and how.
Expectation #2: Any sensitive document I have is still encrypted even if it is accessible to someone who hacked my carbonite account. What good is all that “upload it encrypted”, if the payload is no longer encrypted at the file level. I would have expected to have access to a mirror image of my filesystem, that can be recovered “as-is”, so that I only have to worry about buying a new Mac, not trying to figure out what was encrypted, and whatever other property the file had pre-upload.
In case there is any confusion, I’m less than thrilled.
UPDATE: May 1, 2012
OK so now I’m thrilled again.
I decided to contact Carbonite today to get some answers (it was nagging at me, as I pick my vendors carefully). Their Customer Support acted promptly and got me chatting with their support team. I shared my desktop with them, I went on to demonstrate the steps that I blogged about above. The password was prompted *every* time. I went on to reproduce the test steps again (and again), new folder, new files, new passwords. Now I can’t get it to not prompt for the password.
So to be clear, I can now download from the web (to my Mac and PC) and from my iDevices and always get the password challenge. So my faith is restored in my backup strategy.
I kind of feel like that guy who goes to the to the garage, and the car doesn’t make the noise anymore. Kudos to Carbonite for being so responsive.
… I still want to know what the deal was April 30th,