What kind of encryption is Firefox Sync using?
Can anyone tell me what kind of encryption cipher is Firefox Sync using on the server? This has not been answered in the FAQ.
Modified by malcarada
Chosen solution
There is most likely no additional encryption on the Sync server. Everything is done on your computer before uploading that data via a secure connection
From https://wiki.mozilla.org/Labs/Weave/Crypto
The Weave passphrase is what makes this work. Remember, your browser knows your passwords and form history already: it's all decrypted, in your local memory. Using the passphrase, we encrypt your information on your local computer. We then use industry-standard SSL to relay the encrypted information to the server.Read this answer in context 👍 5
All Replies (3)
For a description of Weave cryptography (Firefox Sync was originally called Weave) see https://wiki.mozilla.org/Labs/Weave/Developer/Crypto
Chosen Solution
There is most likely no additional encryption on the Sync server. Everything is done on your computer before uploading that data via a secure connection
From https://wiki.mozilla.org/Labs/Weave/Crypto
The Weave passphrase is what makes this work. Remember, your browser knows your passwords and form history already: it's all decrypted, in your local memory. Using the passphrase, we encrypt your information on your local computer. We then use industry-standard SSL to relay the encrypted information to the server.
Modified by cor-el
Ok thank you for taking the time to reply, you are both correct, it appears that AES256 is being used according to those links and encryption is carried out locally.