How exactly does the Secure Sync work? - macOS-Version / Secure Sync - Outbank Helpdesk

cloud, cloud daten, daten secure sync, datensynchronisierung, icloud, secure, secure sync, sync, sync daten, synchronisierung

How exactly does the Secure Sync work?

Secure Sync Outbank’s secure data synchronization technology that keeps your financial data in sync across all your devices. Once enabled, your financial data is automatically synchronized in real time, so every connected device stays up to date.

Multiple security layers protect your data during the synchronization process:

  • Zero-Knowledge Principle: We have at no time access to your data. It remains encrypted throughout the entire synchronization process, and only you can decrypt and read it.

  • End-To-End Encryption: Before the transfer, your data is encrypted using industry-standard AES Encryption. Only then they will leave your device in the direction of cloud storage. Because the data is encrypted before it leaves your device, neither Outbank nor our hosting provider can access or read it. It only becomes readable again after you decrypt it on one of your trusted devices.

  • AES Encryption: Outbank uses the Advanced Encryption Standard (AES), one of the world's most trusted encryption standards for protecting sensitive data. AES will transform your data into a hieroglyphic ciphertext of a certain length (128 bits or a 39-digit number). The transformation from plain- to ciphertext is secured with another key (128, 192, or 256 bits or a number with 29, 58, or 78 digits). The encryption happens exclusively on your device – therefore we never have access to your unencrypted data.

  • PBKDF2: The encryption key for your data is obtained from your App password by the Key Derivation Function PBKDF2. In this process, a specific function is applied to the same password several times consecutively. This iteration ensures that the original password can no longer be deduced. This process takes places directly on your device – neither Outbnak, nor any third party can resolve your encription key.

  • Certificate Pinning: During the transfer of your data, we constantly check whether someone is manipulating the connection or intercepting your data. If someone alters the connection between server and your device (e.g. during a Man-In-The-Middle attack), Outbank immediately recognizes the changed certificate and terminates the transfer in advance.

How to enable / disable the Secure Sync can be found here.