top | item 44028021

(no title)

wim | 9 months ago

We're building https://thymer.com/ to do this. Real-time collaboration, local-first + end-to-end-encrypted (and optionally self-hosted).

discuss

I_am_tiberius|9 months ago

Cool. May I ask how you implement the collaborative e2e? Do you encrypt the content multiple times - once for every user?

wim|9 months ago

The workspace data is encrypted with a (symmetric) workspace key. Each user gets hteir own encrypted copy of that key, using the user's public key. By wrapping the data-encryption key for each user the content is only encrypted once but each authorized user can decrypt it.