Solved

Backup&Sync auth token protection

  • 6 April 2014
  • 5 replies
  • 43 views

Userlevel 7
Badge +6
Hello,
WSA protects various areas containing sensitive data from being read, mostly only limiting non-reputable binaries. 
 
Can you please confirm WSA's self protection, where no binary is allowed to read, includes the authentication token you use to access the Backup&Restore service? Otherwise, please add that as a protected location.
 
It wouldn't be comforting is WSA protects OneDrive, which stores credentials in a location WSA protects from non-reputable binaries, but doesn't protect it's own cloud access token.
icon

Best answer by Shawn 8 April 2014, 23:30

View original

5 replies

Userlevel 5
Nice find Explanoit. I am getting this over to our B&S team as well as the WSA developers for review and planning.
 
Thanks again,
Userlevel 7
These are interesting and valuable insights! 
Great that you've caught your attention to this!
Thanks explanoit!
 
Mike
Userlevel 5
After checking with development they replied with:

"Hi Shawn,
Yes, WSA protects all elements of itself, including B&S and its credentials."
 
So we should be good to go here.
 
Thanks again Explanoit,
Userlevel 7
 
@ wrote:
After checking with development they replied with:

"Hi Shawn,
Yes, WSA protects all elements of itself, including B&S and its credentials."
 
So we should be good to go here.
 
Thanks again Explanoit,
Great to hear!!!
Shawn, thanks for a such quick reply.
 
Regards,
 
Mike
Userlevel 7
Badge +6
Thanks @ ! =)
That gives me a lot more confidence in using it.

Reply