I have some sensible passwords including some I use at work. So it’s not good anyway to upload that data to the cloud. And this is not a decision I can make myself - is my user password + Codebook encryption + Cloud service security is strong enough so I can upload the password database so potentially any hacker in the world could try to break it.
That’s why I use local wi-fi sync between phone and laptops. But this is a pain in the ass in case of corporate wi-fi environment or laptop default firewall settings. I have to setup bluetooth hotspot on the phone, turn off firewall, sometimes enter IP address and etc.
Any cloud solution is much better way to setup p2p data transfer. So Cloud is not only a place to store information but a way to easily establish connection and pass information between two devices behind firewalls.
So my suggestion is to enable a way to sync via cloud without storing there a database that can be decrypted using my “user password”. There are several possible technics:
- Enable additional superpassword or key-file that must be preshared by some offline procedure between devices and then destroyed.
- Use Cloud Drive files not as a database storage but as an encrypted protocol media with recycling the data that were already consumed and synced.
- To establish two one-way private/public key pairs for a couple of devices to exchange information like on SSL
- Instead of using certificates there can be an interactive timed “pairing” procedure that involves some confirmation by a used logged with a password, probably involving some extra temporal PINs.
Please think about creating a convenient and secure solution for sync. Thank you!