9.8 KiB
meta_title, title, icon, description, cover
| meta_title | title | icon | description | cover |
|---|---|---|---|---|
| 最高のプライベートで安全なクラウドストレージ プロバイダー - Privacy Guides | クラウドストレージ | material/file-cloud | Many cloud storage providers require your trust that they will not look at your files. これらはプライベートな選択肢です! | cloud.webp |
多くのクラウドストレージプロバイダーの場合、これを使用する際には、プロバイダーがファイルを閲覧することはないだろうと、プロバイダーを完全に信頼することが求められます。 以下に示す選択肢では、安全なE2EEが実装されているため、サービス提供元を信頼する必要はありません。
If these alternatives do not fit your needs, we suggest you look into using encryption software like Cryptomator with another cloud provider. Using Cryptomator in conjunction with any cloud provider (including these) may be a good idea to reduce the risk of encryption flaws in a provider's native clients.
Looking for Nextcloud?
Nextcloud is still a recommended tool for self-hosting a file management suite, however we do not recommend third-party Nextcloud storage providers at the moment, because we do not recommend Nextcloud's built-in E2EE functionality for home users.
Proton Drive
{ align=right }
Proton Driveは、人気の暗号化電子メールプロバイダーであるProton Mailが提供する、スイスの暗号化クラウドストレージ プロバイダーです。 The initial free storage is limited to 2GB, but with completion of certain steps, additional storage can be obtained up to 5GB.
:octicons-home-16: Homepage{ class="md-button md-button--primary" } :octicons-eye-16:{ .card-link title="Privacy Policy" } :octicons-info-16:{ .card-link title=Documentation} :octicons-code-16:{ .card-link title="Source Code" }
The Proton Drive web application has been independently audited by Securitum in 2021.
Proton Drive's brand new mobile clients have not yet been publicly audited by a third party.
Tresorit
{ align=right }
Tresoritは、2011年に設立された、スイスとハンガリーの暗号化クラウドストレージ プロバイダーです。 Tresoritはスイスの国営郵便局であるスイスポストが所有しています。
:octicons-home-16: Homepage{ class="md-button md-button--primary" } :octicons-eye-16:{ .card-link title="Privacy Policy" } :octicons-info-16:{ .card-link title=Documentation}
Tresorit has received a number of independent security audits:
- 2022: ISO/IEC 27001:20131 Compliance Certification by TÜV Rheinland InterCert Kft
- 2021: Penetration Testing by Computest
- This review assessed the security of the Tresorit web client, Android app, Windows app, and associated infrastructure.
- Computest discovered two vulnerabilities which have been resolved.
- 2019: Penetration Testing by Ernst & Young.
- This review analyzed the full source code of Tresorit and validated that the implementation matches the concepts described in Tresorit's white paper.
- Ernst & Young additionally tested the web, mobile, and desktop clients: "Test results found no deviation from Tresorit’s data confidentiality claims."
They have also received the Digital Trust Label, a certification from the Swiss Digital Initiative which requires passing 35 criteria related to security, privacy, and reliability.
Peergos
{ align=right }
Peergos is a decentralized protocol and open-source platform for storage, social media, and applications. It provides a secure and private space where users can store, share, and view their photos, videos, documents, etc. Peergos secures your files with quantum-resistant end-to-end encryption and ensures all data about your files remains private. It is built on top of IPFS (InterPlanetary File System).
:octicons-home-16: Homepage{ .md-button .md-button--primary } :octicons-eye-16:{ .card-link title="Privacy Policy" } :octicons-info-16:{ .card-link title="Documentation" } :octicons-code-16:{ .card-link title="Source Code" }
Peergos is primarily a web app, but you can self-host the server either as a local cache for your remote Peergos account, or as a standalone storage server negating the need to register for a remote account and subscription. The Peergos server is a .jar file, which means the Java 17+ Runtime Environment (OpenJDK download) should be installed on your machine to get it working.
Running a local version of Peergos alongside a registered account on their paid, hosted service allows you to access your Peergos storage without any reliance on DNS or TLS certificate authorities, and keep a copy of your data backed up to their cloud. The user experience should be the same whether you run their desktop server or just use their hosted web interface.
Peergos was audited by Cure53 in September 2019, and all found issues were subsequently fixed.
Also, the Android app is not available but it is in the works. The current workaround is to use the mobile PWA instead.
規準
**私たちは、推薦するどのプロジェクトとも提携していません。**客観的に推薦できるよう、標準となる規準に加えて、一連の明確な要件を定めています。 プロジェクトを利用する前に、このリストをよく理解し、ご自身で調査を行って、そのプロジェクトがあなたにとって適切な選択かどうかをご確認ください。
最低要件
- Must enforce end-to-end encryption.
- Must offer a free plan or trial period for testing.
- Must support TOTP or FIDO2 multi-factor authentication, or passkey logins.
- Must offer a web interface which supports basic file management functionality.
- Must allow for easy exports of all files/documents.
- 標準的な監査済みの暗号化を使用すること。
満たされることが望ましい基準
満たされることが望ましい基準には、このカテゴリーの完璧なプロジェクトに私たちが望むものを示しています。 私たちが推薦するプロジェクトは、この機能の一部または全部を含んでいないかもしれませんが、もし含んでいれば、このページで他のプロジェクトよりも上位にランクされるかもしれません。
- Clients should be open source.
- Clients should be audited in their entirety by an independent third-party.
- Should offer native clients for Linux, Android, Windows, macOS, and iOS.
- These clients should integrate with native OS tools for cloud storage providers, such as Files app integration on iOS, or DocumentsProvider functionality on Android.
- Should support easy file-sharing with other users.
- Should offer at least basic file preview and editing functionality on the web interface.
-
ISO/IEC 27001:2013 compliance relates to the company's information security management system and covers the sales, development, maintenance and support of their cloud services. ↩︎