Home / Glossary / End-to-end encryption
What is End-to-End Encryption?
Abbreviation: E2EE
End-to-end encryption ensures only the endpoints (sender, receiver) can read message content — intermediaries (including the platform vendor) cannot. osFoundry uses E2EE for realtime channels and synced workspace data.
Detail
In E2EE, encryption keys live with the user; data is encrypted before leaving the device and decrypted only at the destination. Servers store ciphertext only — they can deliver it but can’t read it.
Key management is the hardest part. Recovery (lost device, lost key) requires careful design without breaking the encryption promise.
How osFoundry approaches End-to-End Encryption
osFoundry’s realtime channels are E2EE. Workspace data sync uses authenticated encryption with workspace-controlled keys.
Related terms
Related features