02-22-2020 05:51 PM
02-22-2020 05:51 PM
Firefox, Vivaldi and even Chrome have end-to-end encryption for sync. For Firefox, it's on by default.
Edge doesn't have that. That means that Microsoft can see all your bookmarks, tabs and history.
02-23-2020 12:51 AM
"Firefox, Vivaldi and even Chrome have end-to-end encryption for sync. "
02-23-2020 01:52 AM
Vivaldi: "The data on your Sync account are encrypted. Please provide your encryption password to decrypt them."
Firefox: "Firefox Sync by default protects all your synced data so Mozilla can’t read it. We built Sync this way because we put user privacy first. In this post, we take a closer look at some of the technical design choices we made and why."
Chrome: "With a passphrase, you can use Google's cloud to store and sync your Chrome data without letting Google read it. ... Passphrases are optional. Your synced data is always protected by encryption when it's in transit."
Right now, Edge really is unique in offering no end-to-end encryption.
09-13-2020 08:07 AM
@ragingrei I agree here very strongly.
Browser sync is about as sensitive as data can get, as it is likely to contain all kinds of personal information, ranging from political opinions to social security numbers* and similar. If there is no end-to-end encryption, all of these can be exposed by rogue employees, successful external attacks, or plain misconfigurations. So it isn't even about trusting Microsoft as a company, E2EE is simply essential for damage mitigation.
Given that end-users cannot be expected to be aware of these concepts, really only Firefox gets it right, but Chrome at least allows the end-user to make it so.
Additionally, Edge is the first browser I have seen to enable Sync by default, making the default settings even more important.
* It isn't unlikely to see some websites transmit sensitive information through URI parameters, against all recommendations, so things like social security numbers can end up in the synchronized data like favorites. Other sensitive personal information is directly encoded in the bookmarks and, once sync for those is implemented, open tabs and history.