Client-side encryption and decryption mean that all encryption and decryption operations happen directly on your device, rather than on a server. With this method, your sensitive data is encrypted before leaving your device and only decrypted when it reaches its intended destination or when you need to access it. This guarantees that neither the server nor the service provider has access to your plaintext data, greatly enhancing security and privacy.

How Locktera Share SaaS Platform Implements Client-Side Encryption and Decryption:

Locktera Share ensures that all encryption and decryption happen on your device with certain limitations discussed below, giving you full control over your data's security. Here's how it works:

Encryption and Decryption Process:

When you upload data, Locktera ensures that encrypted containers are created on your device before transmission. This way, your data is fully encrypted while in transit. When the data reaches its intended recipient, it is decrypted directly on their device, ensuring that no third party can access the data during the process.

Handling Special Files (Microsoft Office and Google Productivity Files):

Microsoft Office and Google productivity files (i.e. Docs, Sheets, Slides), are converted to pdf format to enable secure viewing in Locktera. These file types are transferred to the server via a TLS 1.3 secured channel where they are converted to PDFs. Both the original document and the pdf version are encrypted in a secure Locktera container on the server. The pdf file is used to display the contents in the secure Locktera viewer and the original file is available for download.  

Client-Side Encryption and Decryption for Complete Privacy:

For organizations that demand 100% client-side encryption and decryption, Microsoft Office files or other content that cannot be converted on the client device must either be processed as PDFs before upload or shared as downloadable files. This guarantees that both encryption and decryption take place solely on your device, with no access granted to the server.

Limitations of Client-Side Encryption and Decryption:

Client-side encryption and decryption are limited to 1TB of storage on Locktera Share due to browser constraints. Please note client-side encryption requires approximately 100% more storage space on your device until the file is encrypted. 

Server side Encryption and Decryption Limitations:

Locktera’s server-side encryption supports up to 8 TB of data, providing robust security for large-scale data storage. This limit is available to organizations using the Locktera CORE API platform, allowing you to integrate Locktera’s encryption capabilities directly into your proprietary software for enhanced security and data protection.