can be lost if:

• the user loses access to the cloud account

• the user or provider deletes the stored information

• the cloud provider closes the user’s account or ceases all operations

Non-duress attacks include:

• an attacker gains access to the user’s cloud account

• physical theft of the device in an unlocked state