| ▲ | drdaeman an hour ago | |||||||
That’s incorrect. E2EE means encrypted data leaves the device, stored encrypted, and server(s) have no keys to decrypt it, only your (or other) client software does. | ||||||||
| ▲ | gchamonlive 41 minutes ago | parent [-] | |||||||
It's encryption both at rest and on transit. At rest there are levels of encryption, at object level or at filesystem level. E2ee for immich would mean the objects are encrypted and transmitting the data is encrypted. If the scenario is the server is stolen, you need encryption at rest. Even at FS level is enough. | ||||||||
| ||||||||