Joplin does not encrypt notes at rest. Only data being synced is encrypted; when... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

gareim on July 12, 2021 | parent | context | favorite | on: Show HN: Obsidian for Mobile – Plain-text knowledg...

Joplin does not encrypt notes at rest. Only data being synced is encrypted; when it gets to its destination it’s available unencrypted in an SQLite database. Any program running on your computer can read your Joplin notes at any time. The developer has come out against implementing encryption-at-rest many times throughout the years. Their suggestion is that you use another form of encryption, like veracrypt. Notably, this makes using Joplin with encryption-at-rest impossible on iOS.

https://discourse.joplinapp.org/t/requesting-encryption-of-l...

laurent123456 on July 19, 2021 [–]

For information, iOS is not an issue because all data is encrypted by default anyway. So app-level encryption would be unnecessary.

Those who ask for encryption at rest mainly want it on desktop, as they share their computer with people they (apparently) don't trust.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact