Sharing of folder with encrypted folder

nextcloud / end_to_end_encryption_rfc

🔒 Specification for end-to-end encryption used by Nextcloud sync & mobile apps

Other

31 stars 15 forks source link

Sharing of folder with encrypted folder #41

Open tobiasKaminsky opened 5 years ago

tobiasKaminsky commented 5 years ago

create folder "/Folder"
create subfolder in it "/Folder/subfolder"
mark subfolder as encrypted
share /Folder

--> this will create problems, e.g. other user can overwrite metadata file if they upload a file into the encrypted subfolder

We need to check this before allowing to share…

tobiasKaminsky commented 5 years ago

@camilasan @marinofaggiana

marinofaggiana commented 5 years ago

@tobiasKaminsky yes, this is a true issue ....

tobiasKaminsky commented 5 years ago

We need to check this before allowing to share…

Even more problematic is, that a malicious admin still can share this. So we have to make sure during runtime on clients that this is the correct folder.

One solution would be that our clients refuse to upload/modify metadata file if they had a problem with decrypting it.