Enabling Paranoid Encryption
The feature allows users to utilize purely browser-based AES-256 encryption for files they keep in the their storage. All the encryption keys are stored only locally on the client device, the files' contents is encrypted/decrypted directly in the browser. This way even the server itself has no access to unencrypted content of the protected files. Users can now keep their private files without needing to trust the server or the channel between them and the server.
By default, Paranoid Encryption is disabled on the installation level. To enable this functionality, edit
Replace true with false there. After that, users will be able to activate the feature from their account settings.
See how to use Paranoid Encryption at PGP encryption in Files.