Changes
Page history
Update encryption info
authored
Mar 21, 2021
by
Marius David Wieschollek
Show whitespace changes
Inline
Side-by-side
Users/Encryption/Enable-End-to-End-Encryption.md
View page @
917f5463
The passwords app offers strong client side encryption which
protects all your data with a master password
.
The passwords app offers strong client side encryption which
requires anyone trying to decrypt your passwords to know the encryption passphrase
.
## Enabling Client Side Encryption
## Enabling Client Side Encryption
> :warning: Some third-party clients do not support encryption
> :warning: Some third-party clients do not support encryption
#### Important Information
#### Important Information
By default, the encryption setup will encrypt all existing passwords, folders and tags except
shared passwords
.
-
By default, the encryption setup will encrypt all existing passwords, folders and tags except
those who are shared
.
All p
assword
revisions but the current will be deleted.
-
All p
revious
revisions but the current will be deleted.
The encryption setup will also create a new password entry with your
master password
.
-
The encryption setup will also create a new password entry with your
encryption passphrase
.
If you do not want this, switch the settings view to
`Advanced`
in the top right corner and uncheck the options in step 5 of the setup.
If you do not want this, switch the settings view to
`Advanced`
in the top right corner and uncheck the options in step 5 of the setup.
The encryption setup will create the new entries before deleting.
-
The encryption setup will create the new entries before deleting
any old ones
.
So even if something goes wrong, there should be no data loss.
So even if something goes wrong, there should be no data loss.
#### Enabling Client Side Encryption
#### Enabling Client Side Encryption
1.
Open the Settings (
`More > Settings`
)
1.
Open the Settings (
`More > Settings`
)
2.
Locate the
`Encryption`
section at the end of the
`Security`
section.
2.
Locate the
`Encryption`
section at the end of the
`Security`
section.
3.
Click the
`Activate`
button next to
`End-to-End Encryption`
.
3.
Click the
`Activate`
button next to
`End-to-End Encryption`
.
4.
The setup wizard will appear. Click continue to see the master password dialog.
4.
The setup wizard will appear. Click continue to see the encryption passphrase dialog.
5.
Enter the master password with at least 12 characters and confirm it.
5.
Choose an encryption passphrase with at least 12 characters and confirm it.
> :warning: Do not use your Nextcloud password.
> Every Nextcloud app can read your Nextcloud password and it offers no security
6.
Click
`Save`
.
6.
Click
`Save`
.
The encryption setup will automatically encrypt all folders and passwords
The encryption setup will automatically encrypt all folders and passwords
...
@@ -27,7 +29,7 @@ The encryption setup will automatically encrypt all folders and passwords
...
@@ -27,7 +29,7 @@ The encryption setup will automatically encrypt all folders and passwords
## Disabling Client Side Encryption
## Disabling Client Side Encryption
There is no built-in option to disable client side encryption.
There is no built-in option to disable client side encryption.
Passwords offers hidden passwords, which make it impossible to guarantee that all passwords have been decrypted.
Passwords offers hidden passwords, which make it impossible to guarantee that all passwords have been decrypted.
This would either prevent removing the
master passwords
or leave some passwords un
de
crypt
abl
e.
This would either prevent removing the
encryption passphrase
or leave some passwords un
readable and permanently en
crypte
d
.
If you're sure that you do not have any hidden passwords, you can try the following steps:
If you're sure that you do not have any hidden passwords, you can try the following steps:
> :exclamation: This process will delete any hidden items and all settings
> :exclamation: This process will delete any hidden items and all settings
...
...
...
...
