Ohjeet - Instructions for encrypting data with Cryptomator

Encryption of data with Cryptomator software

You can easily encrypt your data to using Cryptomator. The program creates an encrypted storage space that is used like normal disk space. Windows displays the encrypted disk space as a disk drive. Macintosh and Linux computers it is displayed as a directory. Encrypted disk space can be created on cloud services (NextCloud, OneDrive), on a shared disk (U: drive) or on the computer's own storage.

Cryptomator encrypts the data (i.e. file and directory names and file contents), reorganise them and export them to an encrypted storage location on the user's computer . The original file and directory names cannot be used to infer the original structure.

Cryptomator's own instructions for use can be found at https://docs.cryptomator.org/en/latest/ . The instructions presented here are made for version 1.5.16.

Things to consider when using Cryptomator

The same file can only be processed by one Cryptomator user at a time. If several users open the same file at the same time, only the changes made by the most recent user will be saved in the file.

The password used for encryption must be shared securely between several people using the same storage location. The encryption key can be shared, for example by secure mail or through a CollabRoom group.

The same version of Cryptomator must be used if encrypted data is processed on more than one computers. The newer version of Cryptomator can edit the recording to the format it uses, but the older version of Cryptomator cannot unlock the newer version of the recording.

NOTE! Don't forget your password. If you forget your password, there is no way to recover it.

Installation of Cryptomator

Cryptomator can be used on Windows, Macintosh and Linux computers. On Windows computers hosted by Digital Services, Cryptomator can be found and installed from the Software Center.

Picture of the Software Center. You can search for Cryptomator in the "search" field in the top right corner.

The program can also be found in the software menu of MacIntosh computers maintained by Digital Services.

Using Cryptomator

Creating a new encrypted storage location

To start creating a new crypt location, click the "+Add Vault" button

The Cryptomator home page when you open the application. You can create a new vault from the bottom left corner of the application where it says + Add Vault.

The next step is to choose where to store the data to be encrypted.

The form asks you to select a storage location. Options are OneDrive or Custom Logation.

The storage status is displayed as a directory in the selected storage location.

Choose a password for encrypted storage.

The form asks you to choose a password.

NOTE! Don't forget your password. If you forget your password, there is no way to recover it. You should keep your own passwords in a password wallet.

The encrypted vault is created with the "Create Vault" button. Cryptomator confirms the created vault and suggests opening it:

The form will show a picture with a green ball and a "successful" mark in the middle. You will also be asked to open a new encrypted storage.

Opening an encrypted storage

Encrypted storage locations can be directly open in Cryptomator or they can be opened from the file "masterkey.cryptomator", found in the storage location.

Cryptomator remembers the created storage locations and displays them as a list.

The right-hand side of the program lists the encrypted storage locations.

A storage location will ask for password when you clicking it.

Picture shows a window asking for the password of the encrypted storage.

The password can also be saved on the computer by selecting "Remember Password". Cryptomator will then store the password on the computer where you are running Cryptomator using the computer's operating system service. The storage location password is encrypted with your username password. Cryptomator opens the storage location on the same operating system service.

If an encrypted storage location is not found in the Cryptomator list, it can also open directly to the file "masterkey.cryptomator". Opening the storage location is then done by selecting "Open Existing Vault".

The image shows a robot, below which you will find the options "Create New Vault" or "Open Existing Vault".

Find the location in the file manager that opens and click on the file "masterkey.cryptomator" in the location directory:

The image shows the File Explorer where you will find the file masterkey.cryptomator.

Clicking adds a storage location to the Cryptomator list and you can open it by clicking on it.