Well yes I understand it would be a severe flaw to have any sensitive data stored on someone elses PC in any use usable or accessible form.
I believe the idea is the back-ground data is incomprehensible and unconnected to any source.
Yes every day breaking encryption becomes easier, but you would have to crack every file in your cache, before you could start guessing what files belong to what site.
Then again the assumption here is that everything is being replicated, which is not necessarily so.
Your server can communicate directly with the person logging in, so certification is 1-to-1.
There should be no reason to ever send sensitive data through the p2p pool.
And then again you don't have to make a site that anyone needs to log into
You don't log into it remotely either, it is dealt with locally on your PC.
BTW. this is their meaning of "local". On your PC and not other peoples PC.
I've joined the forum and will see what they have to say about the security of the frame-work, as the "data" security is well described.
I'm only looking for simple needs anyway, so no form of logging-in is necessary. just a file-store as basic as FTP.
So in theory the only files being pooled would be site media and downloads.
How many of you logged into UT-Files to download stuff ? Nobody, and if it is just a site you cannot join anyway, the only one who ever needs to log in is you, on your local machine.
If someone wants to hack a JPG or ZIP, so be-it. The system should reject it as it would fail the hash check even if the authentication was valid, and there will be no sensitive data available in them anyway.
The certificate exploit of which you speak was indeed a topic of discussion in the newsgroups, though I am not sure the same thing can be done with this system, unless you are still using the same validation system on top.
Superbly valid point to raise, something else to look into
(I think we are thinking of the same issue)
I have potentially spotted another security issue, as they use the RSA encryption. If they were lazy and left it on defaults then potentially all current encrypted files can be more easily opened.
Then again like I say, if no sensitive or user-related data is distributed, nothing of any use can be accessed.
Thanks ever so much for ripping into this, as it is exactly the feedback I need. No-holds barred when it comes to security.
Because when it comes to security I am aware there is no such thing as perfect, as all it takes is a creative mind to bypass the uncrackable.
Apples new improved iPhone security lasted only 2 days before being bypassed
As it happens a brand new form of authentication (SQRL) is being discussed and tested for flaws and feasibility by a bunch of security nerds at GRC.
Depending on the results of this, issues of authentication being captured, spoofed or in anyway tampered with, may have just flown over the horizon as we wave goodbye.
https://www.grc.com/sqrl/sqrl.htm
https://www.grc.com/groups/sqrl (web view of the news-group)
http://twit.tv/show/security-now/424 (explanation by the inventor Steve Gibson. Video or audio)
However, I firmly believe "If man can make it, man can break it", so nobody hold your breath.
I think I may have stumbled onto the very thing I've been looking for 
