Summary of different encryption modes in NC, let's see if I understood it

lobianco · October 22, 2025, 8:01am

I manage for our team a NC instance hosted/managed by Hetzner. Please confirm me that I have understood correctly the 3 main forms of encryption offered by Nextcloud.
The following is based on Data encryption methods in Nextcloud - Nextcloud (a bit outdated) and several other blogs/documentation pages.

NC encryption modes advantages/disadvantages

Server-side single system-wide password

key is kept in NC config space
nc admin users can see users file lists but not content
server admin/hackers of a compromised server can do everything
if remote spaces are used, remote space server admins can see users file lists but not content
nothing change for the user

Server side user-key password

keys are still kept in some NC config space, but are one per user and keys are encrypted by user own passwords
nc admin users can see users file lists but not content
server admin/hackers of a compromised server can do everything provided they hack a bit NC in order to get the users key during a user session (including sync clients)
if remote spaces are used, remote space server admins can see users file lists but not content
users need to remember their own password or bye bye their data

End to End encryption

keys are encrypted by “mnemonic keys” kept in user clients and shown, on the client, at user request
only specific users-chosen sub-folders are encrypted, not the root NC space
nc admin users can’t see anything about the users encrypted folders
server admin/hackers of a compromised server can’t see anything about the users encrypted folders
if remote spaces are used, remote space server admins can’t see anything about the users encrypted folders
if the client is no longer accessible, users need to have saved their “mnemonic keys” or bye bye their data
encrypted folders (and their content) is not shareable and, by default, not visualized in the NC web interface
users can choose to visualize files in the web interface but need their “mnemonic keys” and accept that the server admin (on an hacker) could intercept the keys during this time

lobianco · October 22, 2025, 8:23am

hmmm.. I have enables server side with system-wide master key, but I can still impersonate/see users files or change their password and login as them.

I would like to set the system with the “simple” server side encryption + recommendation for the users to keep their super secrets using something like the cryptomator software.

The threat I want to defend them from is.. myself. I am “ok” trusting the hosting company, but I don’t want to be able to see the users stuff.

lobianco · October 22, 2025, 8:35am

I did want to experiment on server side with user specific keys (on a test NC instance of course) but I can see that Hetzner doesn’t provide the occ commad occ encryption:disable-master-key

jtr · October 22, 2025, 5:37pm

Rather than duplicate my response, please see the in-progress docs revision here. You may find the additional context and comparisons there relevant:

github.com/nextcloud/documentation

docs(admin): restructure and update server-side encryption documentation

master ← jtr/refactor-admin-sse-cfg-chapter

opened 05:30PM - 05 Oct 25 UTC

joshtrichards

+315 -327

This PR updates and improves the server-side encryption documentation. - Adds… context about "encryption" to help readers understand Server-Side Encryption (SSE) in relation to other encryption solutions (within Nextcloud and those provided by operating systems, etc.). - Improves clarity throughout the documentation. - Reorganizes and streamlines content for better readability. - Adds additional reference links. - Fixes outdated comments and notes. - Expands and clarifies information on key management modes and encryption methods. - Consolidates encryption troubleshooting entries from the General Troubleshooting chapter, bringing all related troubleshooting content together. *Note: In-depth implementation details remain in the dedicated "Details" chapter, which is not affected by this PR.. Same goes for occ encryption section in the occ command reference chapter.* ### ☑️ Resolves Follow-up items: - [ ] Review/update #11545 - [ ] Review https://github.com/nextcloud/documentation/labels/feature%3A%20encryption%20%28server-side%29 tagged issues ### 🖼️ Screenshots (works better if you open the screenshot image in a new tab then clicked on again to view it full-size) <img width="1990" height="12381" alt="image" src="https://github.com/user-attachments/assets/4e064b9a-7a08-4582-b516-2d0a8969e345" />

lobianco · October 23, 2025, 5:40am

Thank tou.
I would suggest to add a difference between server admin (& root/hackers) and NC admin. This of course is relevant only for hosted cases, but it may be important, for example to guarantee that the NC admin can’t access user data.

tflidd · October 23, 2025, 12:00pm

This was the use case, the server-side encryption was designed for in the first place.

Everything what happens server-side, an admin can manipulate. Even NC admin, this can depend a lot on the installed apps, and if they can add apps themselves, change group memberships, add external storage, … there are always ways around it.