- CrashPlan for Home
Each device on a CrashPlan for Home Family subscription can restore from every other device's cloud backups, since the devices are on the same account. This article describes password options for Family Plans, as well as the rationale behind this behavior.
Securing backup archives on a family plan
The only way to enforce separate security for the devices on a Family Plan so that other computers on the plan cannot restore from each others' archives is to set the 448-bit encryption with custom 448-bit key option.
While the 448-bit encryption with custom 448-bit key security setting allows you to set different custom encryption keys for each device in a Family Plan, it's important to note that this is CrashPlan's strictest security setting. As such, there are consequences for using this option. Due to the severity of upgrading your security, this option is highly discouraged.
Upgrading security to 448-bit encryption with custom 448-bit key results in the following:
- All previously backed up files associated with the old encryption key are deleted from the backup archive and backup starts over. This applies to all of the devices on the account.
- You can never change a device's data key (without completely restarting the backup).
- If you lose or forget your archive password or your custom 448-bit key, there is no way to recover the backed up files. Our Customer Champions have no way to assist in recovery.
- You can never downgrade your security setting.
For these reasons, our Customer Champions strongly recommend against this configuration for the purpose of securing different archives within a Family Plan. Before using this option, we encourage a careful reading of the documentation on CrashPlan security and encryption settings.
We hear from lots of users who want this functionality in a more user-friendly form. However, this feature will not be implemented, as stated in our support forums by Code42 co-founder, Matthew Dornquast:
"Please understand the lack of [a individual password] feature is our primary protection against abusers. Presumably, family members don't need business like security between themselves. I realize there are exceptions, and it would be nice to have--the easiest work around is to require "password" on crashplan UI launch. Only have a single individual (Family IT person - dad/mom) know the password."