In simple terms, encryption applies a secret code to your files. This secret code is referred to as an encryption key. Files you want to include in your backup are encrypted on your computer before they are sent over the Internet to the Mozy data center. Your files remain encrypted when stored in the Mozy data center and can only be read if you have both the encryption key and the means to read the encrypted file.
When you install the Mozy backup software, you select the type of encryption you want to use for your backups. Exactly which types of encryption are available depends on the type of account you have. MozyHome accounts can choose between standard and personal encryption. If you use MozyPro or MozyEnterprise, your administrator determines the encryption types you can choose from or whether you can choose at all.
The encryption used at the time you install the backup software is permanently associated with all files backed up from that computer. This means that after you install the backup software, the only way to change your encryption type is to uninstall, delete that computer from your account, then reinstall, choosing the new encryption type at that time. You will need to upload all your files again.
Standard Mozy encryption uses a 448-bit Blowfish encryption key which is shared among a portion of Mozy customers.
Mozy separately stores the key. This lets us automatically decrypt your files when you download or restore the files you back up. Mozy Stash always uses standard encryption to ensure your files can be synced among your computers, regardless of what type of encryption they each use. For more information, see Mozy Encryption Options.
Personal Key Encryption
With personal encryption, the 256-bit AES encryption key is provided by you and known only to you. When you install the Mozy backup software and choose personal encryption, you are asked to enter your key. The key can be any combination of characters, symbols, or numbers, and can be as short or long as you like. When you provide the key, you can type it, paste it, or import it from a plain text file.
To ensure you can download and restore your files, you must either remember your key indefinitely, or you can save it and store it separately. If you choose to save it, a plain text file is saved to the location you choose. The file contains only the characters you entered when creating your key. To ensure you can always provide your key, it's best not to save it only on your computer, which could fail, or only anywhere else which you could easily lose or damage, such as a USB stick.
Mozy does not store your personal encryption key. This means that if you lose your key, we cannot decrypt the files if you try to download and restore them. Even under force of law, Mozy cannot decrypt your files if you choose personal encryption. For more information, see Mozy Encryption Options.
When you reinstall the backup software (such as when you have a new, upgraded, or reinstalled hard drive or OS, or an entirely new computer), you can avoid backing up all your files again by ensuring all your files are on the computer, and then providing the same personal encryption key during installation.
If you choose to use personal encryption and you also use the Mozy mobile app, you must provide your personal key to view and download files from the Mozy mobile app. For more information, see Provide Personal Encryption Key in Mozy Mobile App.
Managed Key Encryption
A managed key is a combination of a shared secret and a key you provide. The shared secret is part of a key that is shared among Mozy customers. Combined with the key created by your administrator, called a C-key, the encryption key is unique to your organization. You don't need to remember this key, because it is supplied by your organization.
Managed key encryption is available only to MozyPro and MozyEnterprise users. The key is installed automatically when you install the Mozy backup software and is managed by your administrator. For more information, see Mozy Encryption Options.