encryption.html
11 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Encrypting Files — ownCloud User Manual 7.0 documentation</title>
<link rel="stylesheet" href="../_static/style.css" type="text/css" />
<link rel="stylesheet" href="../_static/pygments.css" type="text/css" />
<link rel="stylesheet" href="../_static/style.css" type="text/css" />
<link rel="stylesheet" href="../_static/bootstrap-sphinx.css" type="text/css" />
<script type="text/javascript">
var DOCUMENTATION_OPTIONS = {
URL_ROOT: '../',
VERSION: '7.0',
COLLAPSE_INDEX: false,
FILE_SUFFIX: '.html',
HAS_SOURCE: true
};
</script>
<script type="text/javascript" src="../_static/jquery.js"></script>
<script type="text/javascript" src="../_static/underscore.js"></script>
<script type="text/javascript" src="../_static/doctools.js"></script>
<script type="text/javascript" src="../_static/bootstrap.js"></script>
<link rel="top" title="ownCloud User Manual 7.0 documentation" href="../index.html" />
<link rel="up" title="Files & Synchronization" href="index.html" />
<link rel="next" title="Storage Quota" href="quota.html" />
<link rel="prev" title="Desktop Synchronization" href="sync.html" />
<script type="text/javascript">
(function () {
/**
* Patch TOC list.
*
* Will mutate the underlying span to have a correct ul for nav.
*
* @param $span: Span containing nested UL's to mutate.
* @param minLevel: Starting level for nested lists. (1: global, 2: local).
*/
var patchToc = function ($ul, minLevel) {
var findA;
// Find all a "internal" tags, traversing recursively.
findA = function ($elem, level) {
var level = level || 0,
$items = $elem.find("> li > a.internal, > ul, > li > ul");
// Iterate everything in order.
$items.each(function (index, item) {
var $item = $(item),
tag = item.tagName.toLowerCase(),
pad = 15 + ((level - minLevel) * 10);
if (tag === 'a' && level >= minLevel) {
// Add to existing padding.
$item.css('padding-left', pad + "px");
console.log(level, $item, 'padding-left', pad + "px");
} else if (tag === 'ul') {
// Recurse.
findA($item, level + 1);
}
});
};
console.log("HERE");
findA($ul);
};
$(document).ready(function () {
// Add styling, structure to TOC's.
$(".dropdown-menu").each(function () {
$(this).find("ul").each(function (index, item){
var $item = $(item);
$item.addClass('unstyled');
});
$(this).find("li").each(function () {
$(this).parent().append(this);
});
});
// Patch in level.
patchToc($("ul.globaltoc"), 2);
patchToc($("ul.localtoc"), 2);
// Enable dropdown.
$('.dropdown-toggle').dropdown();
});
}());
</script>
</head>
<body>
<div class="container">
<div class="content">
<div class="page-header">
<h1><a href="../contents.html">ownCloud User Manual</a></h1>
</div>
<div class="row">
<div class="span3">
<div class="sidebar">
<div class="well">
<div class="menu-support-container">
<ul id="menu-support" class="menu">
<ul>
<li><a href="../contents.html">Overview</a></li>
</ul>
<ul>
<li class="toctree-l1"><a class="reference internal" href="../index.html">ownCloud 7.0 User Documentation</a></li>
</ul>
<ul class="current">
<li class="toctree-l1"><a class="reference internal" href="../whats_new.html">New in ownCloud 7</a></li>
<li class="toctree-l1"><a class="reference internal" href="../webinterface.html">The ownCloud Web Interface</a></li>
<li class="toctree-l1 current"><a class="reference internal" href="index.html">Files & Synchronization</a><ul class="current">
<li class="toctree-l2"><a class="reference internal" href="filesweb.html">Accessing your Files Using the Web Interface</a></li>
<li class="toctree-l2"><a class="reference internal" href="files.html">Accessing Files Using WebDAV</a></li>
<li class="toctree-l2"><a class="reference internal" href="versioncontrol.html">Version Control</a></li>
<li class="toctree-l2"><a class="reference internal" href="server_to_server_using.html">Using Server-to-Server Sharing</a></li>
<li class="toctree-l2"><a class="reference internal" href="deletedfiles.html">Managing Deleted Files</a></li>
<li class="toctree-l2"><a class="reference internal" href="sync.html">Desktop Synchronization</a></li>
<li class="toctree-l2 current"><a class="current reference internal" href="">Encrypting Files</a><ul>
<li class="toctree-l3"><a class="reference internal" href="#enabling-the-encryption-app">Enabling the Encryption App</a></li>
<li class="toctree-l3"><a class="reference internal" href="#decrypting-encrypted-files">Decrypting Encrypted Files</a></li>
<li class="toctree-l3"><a class="reference internal" href="#settings">Settings</a></li>
</ul>
</li>
<li class="toctree-l2"><a class="reference internal" href="quota.html">Storage Quota</a></li>
<li class="toctree-l2"><a class="reference internal" href="configuring_big_file_upload.html">Managing Big Files</a></li>
</ul>
</li>
<li class="toctree-l1"><a class="reference internal" href="../pim/index.html">Contacts & Calendar</a></li>
<li class="toctree-l1"><a class="reference internal" href="../bookmarks.html">Using the Bookmarks App</a></li>
<li class="toctree-l1"><a class="reference internal" href="../documents.html">Documents</a></li>
<li class="toctree-l1"><a class="reference internal" href="../migration.html">User Account Migration</a></li>
<li class="toctree-l1"><a class="reference internal" href="../userpreferences.html">Changing Preferences</a></li>
<li class="toctree-l1"><a class="reference internal" href="../external_storage/google_drive.html">Configuring External Storage</a></li>
</ul>
</ul>
</div>
</div>
</div>
</div>
<div class="span9">
<div class="page-content">
<div class="section" id="encrypting-files">
<h1>Encrypting Files<a class="headerlink" href="#encrypting-files" title="Permalink to this headline">¶</a></h1>
<p>By default, ownCloud provides an Encryption app. This app enables encryption
of all files stored in your ownCloud. Once enabled by the administrator, all of
your files are encrypted automatically.</p>
<p>Encryption and decryption always occurs on the server side. This enables you to
continue to use all other apps to view and edit data. However, this method of
encryption also means that the server administrator can intercept your data.
Server-side encryption is especially useful if you use external storage. It
ensures that the external storage provider is not able to read your data.</p>
<div class="admonition note">
<p class="first admonition-title">Note</p>
<p class="last">Once the Encryption app is enabled, your log-in password is required
to decrypt and access your data. By default, your data will be lost if you
cannot use your log-in password to retrieve it. If you want to protect yourself
against password loss, store your log-in password in a secure place or enable
the recovery-key feature as described below.</p>
</div>
<p>The current version of the Encryption app encrypts all files stored in ownCloud except the following:</p>
<ul class="simple">
<li>Old files in the trash bin (files that were deleted prior to the encryption app being enabled).</li>
<li>Image thumbnails from the Gallery app.</li>
<li>Previews from the Files app.</li>
<li>The search index from the full text search app.</li>
</ul>
<div class="admonition note">
<p class="first admonition-title">Note</p>
<p class="last">All data is stored directly on the ownCloud server, eliminating
exposure of your data to third party storage providers.</p>
</div>
<div class="section" id="enabling-the-encryption-app">
<h2>Enabling the Encryption App<a class="headerlink" href="#enabling-the-encryption-app" title="Permalink to this headline">¶</a></h2>
<p>Though ownCloud provides the Encryption app in the server download, it is
disabled by default. To enable the Encryption app:</p>
<ol class="arabic">
<li><p class="first">Access the ownCloud server as administrator.</p>
</li>
<li><p class="first">In the Apps Selection Menu, click “+”.</p>
<p>All apps appear in the Apps Information field.</p>
</li>
<li><p class="first">Scroll down the apps list and click the Encryption app.</p>
<div class="figure">
<img alt="../_images/encryption_enabling.png" src="../_images/encryption_enabling.png" />
</div>
<p><strong>Encryption app (Enabling)</strong></p>
</li>
<li><p class="first">Click the <em class="guilabel">Enable</em> button.</p>
<p>The Encryption app is enabled.</p>
</li>
</ol>
</div>
<div class="section" id="decrypting-encrypted-files">
<h2>Decrypting Encrypted Files<a class="headerlink" href="#decrypting-encrypted-files" title="Permalink to this headline">¶</a></h2>
<p>If the Encryption app is disabled after users have already stored encrypted
data, users are prompted to decrypt their files again in their personal
settings. Once done, users can continue to use their ownCloud without
encryption.</p>
</div>
<div class="section" id="settings">
<h2>Settings<a class="headerlink" href="#settings" title="Permalink to this headline">¶</a></h2>
<p>Once the encryption app is enabled, additional settings appear on the Admin
settings page. These settings include the ability to:</p>
<ul class="simple">
<li>Set a recovery key password.</li>
<li>Enable or disable the use of the recovery key password.</li>
</ul>
<div class="section" id="recovery-key-password">
<h3>Recovery Key Password<a class="headerlink" href="#recovery-key-password" title="Permalink to this headline">¶</a></h3>
<p>If the administrator enabled the recovery key feature, you can choose to use
this feature for your account. If you enable “Password recovery” the
administrator can read your data with a special password. This feature enables
the administrator to recover your files in the event you lose your password. If
the recovery key is not enabled, then there is no way to restore your files if
you lose your login password.</p>
</div>
<div class="section" id="change-private-key-password">
<h3>Change Private Key Password<a class="headerlink" href="#change-private-key-password" title="Permalink to this headline">¶</a></h3>
<p>This option is only available if your log-in password, but not your encryption
password, was changed by your administrator. This can occur if your ownCloud
provider uses a external user back-end (for example, LDAP) and changed your
login password using that back-end configuration. In this case, you can set
your encryption password to your new login password by providing your old and
new login password. The Encryption app works only if your login password and
your encryption password are identical.</p>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</body>
</html>