End to End Encryption (E2EE) Integrated Support #11770
Description
Is your feature request related to a problem? Please describe.
OCIS as I understand it currently lacks clientside encryption (e2ee). I am looking for this feature to be part of OCIS itself, for a few reasons.
Describe the solution you'd like
I want to be able to create "vaults" (encrypted folder, library, space, whatever), that is decrypted clientside. The user would input their vault password for the vault they are trying to access. An option on desktop/android clients to have this password stored locally would be nice. Browsers I imagine would be fine with a simple caching policy.
My users on principle want absolute certainty of their data's security, even from me as the server host, and this is the way to achieve that.
Describe alternatives you've considered
I tried Seafile and it did implement this general functionality, but has a lot of other issues that make it undesirable.
I tried setting up Cryptomator on top of OCIS which does function, but lacks one of the most important features of synchronization: the ability to choose what files are downloaded and which are not. While it is theoretically possible you could make an insane amount of Cryptomator stores to granularize this, this scenario is pedantic as this would rapidly become unmanageable.
Additional context
None that I can think of immediately