News

Microsoft Adds 'Personal Vault' Security for Consumer OneDrive Storage

Microsoft announced last week that its OneDrive cloud-based storage service for consumers now has a new security feature called "Personal Vault" that's available worldwide.

Personal Vault essentially is a "protected area in OneDrive" that's designed for storing more sensitive files. It's notable for requiring two-factor authentication to verify user identities before permitting file access. Microsoft first introduced Personal Vault back in June. It took two years to build the feature, which was first rolled out to limited markets in Australia, Canada and New Zealand in July, according Ryan Hoge, a principal group program manager for OneDrive Mobile, in a Monday Microsoft "Intrazone" talk.

OneDrive consumer users might use Personal Vault to store files after scanning IDs, tax documents or budgets, or it can be used to store photos, according to Paul Diamond, a product marketing manager for OneDrive, in the Monday talk. OneDrive's "scan and shoot" capability for capturing photos of documents will work with Personal Vault.

Diamond said he typically gets questions about whether Personal Vault was added because the rest of OneDrive is insecure. "The answer is, 'No,'" he said. Microsoft already includes a number of security features in OneDrive, including ransomware detection and recovery, suspicious login monitoring, file encryption at rest and transit, mass file deletion notification, virus scanning on download for known threats and version history for all file types. OneDrive also has password-protected sharing links, as well as expired sharing links, Diamond added.

OneDrive users will know that they have access to Personal Vault because it'll show up as a gray vault-like icon in a OneDrive application.

The Personal Vault icon in OneDrive for consumer users (source: Sept. 30, 2019 Microsoft blog post).

Storage limits using Personal Vault are based on consumer OneDrive subscription types. For instance, Office 365 Personal or Office 365 Home subscribers don't have any Personal Vault file storage limits beyond their general subscription storage limits. Users of Microsoft's free consumer OneDrive plan with 5GB of storage or its "standalone" 100GB OneDrive plan are limited to storing "up to three files in Personal Vault."

A two-factor authentication scheme, beyond a password, is required to gain access to Personal Vault. The second factor to enable authentication might include providing a person's "fingerprint, face, PIN, or a code sent to you via email or SMS," Microsoft's announcement clarified.

Personal Vault also can verify user identities via the Microsoft Authenticator App, according to Diamond. He added that "we ask browsers not to cache information" when browsers are used to access Personal Vault. Hoge said that Personal Vault will work with various biometric access authentication methods on mobile devices, too.

For Windows 10 PCs, Personal Vault uses BitLocker encryption, which is Microsoft's drive encryption technology. Personal Vault restricts file sharing by default and will automatically lock document access after a period of inactivity. Users can set that inactivity interval, if wanted.

Personal Vault is available in OneDrive applications for Android 6.0 or higher devices, as well as iOS 11.3 or higher devices. It's also available with OneDrive on the PC or the OneDrive.com service accessed through a browser.

About the Author

Kurt Mackie is senior news producer for 1105 Media's Converge360 group.

Featured

  • Microsoft Appoints Althoff as New CEO for Commercial Business

    Microsoft CEO and chairman Satya Nadella on Wednesday announced the promotion of Judson Althoff to CEO of the company's commercial business, presenting the move as a response to the dramatic industrywide shifts caused by AI.

  • Broadcom Revamps VMware Partner Program Again

    Broadcom recently announced a significant update regarding its VMware Cloud Service Provider (VCSP) program, coinciding with the release of VMware Cloud Foundation (VCF) 9.0, a key component in Broadcom’s private cloud strategy.

  • Closeup of the new Copilot keyboard key

    Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

    Microsoft has rolled out a new public preview for collaborative "always on" agents in Microsoft 365 Copilot, bringing enhanced, context-aware tools into Teams channels, meetings, SharePoint sites, Planner workstreams and Viva Engage communities.

  • Windows 365 Cloud Apps Now Available for Public Preview

    Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.