In June of this year, Microsoft added an additional security feature called Personal Vault to its competitors, Dropbox, specifically for its own OneDrive cloud. This feature requires users to verify through 2-Step Verification (2SV). Protect your own files. Microsoft announced on September 30 that this is only available for OneDrive users in Australia, New Zealand, and Canada, and is fully open to Global OneDrive users.
When Microsoft introduced the OneDrive Personal Vault in June, it was planned to be available to Global OneDrive users by the end of this year, in addition to indicating that it is suitable for a certain part of the market. It is now clear that the global opening schedule has been three months ahead of schedule.
2-step identity verification personal safe, free version users only save 3 files
Just like its name, Personal Vault requires users to verify logins through two steps. The so-called two-step verification means that the user needs to go through fingerprint or face recognition, PIN code, or via email, in addition to the existing account. A one-time password sent by the newsletter or Microsoft Authenticator for a second identity verification process. More troublesome is that this feature requires the user to re-verify each time they use it.
Two-factor authentication is a way to enhance data access protection. In addition to the familiar passwords, you need to do something else. This will complicate the lives of attackers who are trying to "crack" someone else's account.
Imagine a safe place. With a special scroll wheel, you can choose the correct access code, but you still need to use the key. The access code ("I know") and the key ("I have it") are two different factors.
Or a trip from London to Helsinki. You show your passport to the Finnish border guards ("I have") and then press your finger on the dedicated device to scan the fingerprint ("I have"). This is also a two-factor authentication.
If the second factor is another password (code), they say "two-step verification."
The second most common type of factor:
- Key file. When creating protection, you can specify a file (any) on the disk. In the future, you will need to "render" the file to access your resources. Losing or changing the file (even the smallest one) will also mean that it is inaccessible. This protection is especially used by the KeePassXC password manager and the Veracrypt file and disk encryption program.
- SMS code. The system asks you to enter a one-time code that will be sent to your mobile number. This is the most common option and is usually provided by default.
- Time code. You need to generate a one-time code in advance. For example, this is handy if you are unable to use your phone.
- Mobile app. The application generates a one-time code on a mobile device (for example, a smartphone). No internet connection or SIM card is required. It is important to ensure that the time on your device is correct. By default, we usually recommend this method.
- Hardware token. The device is a USB memory stick. In terms of meaning, it is closest to the key used to unlock the apartment door.
If two-factor authentication is not already enabled, consider enabling it. Whenever possible, it is best to avoid using SMS. In addition to the fact that the technology itself is not secure, authentication is actually associated with the SIM card.
In any case, under the protection of the security mechanism, even if the user's mobile SIM card is stolen, or the PIM code and mail account are stolen, there is a second line of defense to ensure the security of the Personal Vault storage file. Microsoft recommends that once a user's primary account is stolen, Personal Vault can be used to back up confidential documents such as sensitive financial information such as passport copies or tax records.
Although Personal Vault is currently available to all OneDrive users, there are still some limitations. For users who use OneDrive Free or a standalone 100GB storage solution, up to 3 files can be stored in the Personal Vault. There is no limit to the number of files that Office 365 subscribers can store in Personal Vault, and users can save space until they are full.
Scan and take photos directly, new OneDrvie storage expansion solution
In addition to a stronger identity verification mechanism, the Personal Vault comes with additional security features, including the “Scan and Take” direct upload function, which means users can skip the device storage such as mobile albums and directly scan the files and photos directly. Upload to the Personal Vault. In addition, Personal Vault automatically locks the restricted file share after the system has been idle for a period of time, preventing the possibility of accidental sharing. Personal Vault will automatically sync files to the BitLocker encryption area of the Windows 10 PC built-in hard drive.