Session
FOSDEM 2021 Schedule
Collaborative Information and Content Management Applications

ONLYOFFICE: How to provide ultimate security for real-time document collaboration

D.collab
Alex Mikheev
Nowadays, lots of users are concerned about the safety of their confidential data when it comes to online collaboration. And their concerns are fully justified. So we at ONLYOFFICE, an open-source project with the focus on advanced and secure document processing, do our best to provide a comprehensive level of security for online doc editing and collaboration. With GDPR compliant ONLYOFFICE Docs, you get a wide range of security tools and services to protect yourself from unauthorized access, data leaks, or insider actions. Self-hosted ONLYOFFICE can be installed on your own private server, so all your data always stays ‘in-house.’ The server level of data protection is implemented, among other things, with JSON Web Token and configurable cache lifetime. Important is, that no user data is stored on the ONLYOFFICE server. Besides, there are additional security features such as restriction on copying, downloading and printing, watermarking, flexible document permissions, etc. The same applies to the integration of ONLYOFFICE Docs with other open-source services and platforms so that users of the combined solutions also get secure document editing and co-authoring. To make your experience even more secure, last year we implemented: Custom filter access permission that allows hiding the data you don’t want to show before sharing your spreadsheet. In other words, users won’t be able to change the filter you’ve applied before sharing your spreadsheet and will be able to work only with the specified fields. Storage encryption so that you can protect data at rest against breaches. If the storage encryption option is enabled, all the files stored in your ONLYOFFICE will be encrypted using the Advanced Encryption Standard, symmetric block cipher, also known as Rijndael, that encrypt data blocks of 128 bits using symmetric keys of 256 bits. The first version of ONLYOFFICE Private Rooms, protected workplaces where every symbol you type is encrypted using the unbreakable AES-256 algorithm, even if you are co-editing documents with your teammates in real-time. Files that are created, stored and shared within a Private Room never leave the directory and cannot be copied, re-distributed, or decrypted. Document encryption and decryption is performed strictly on the user’s machine end-to-end. Besides, we are now working on multi-functional secure forms for building any document template and secure form filling when your co-author is not permitted to see some parts of the doc.

Additional information

Type devroom

More sessions

2/6/21
Collaborative Information and Content Management Applications
Jens Finkhaeuser
D.collab
The Interpeer Project attempts to provide the technical underpinnings for a human centric next generation internet. As sensors and compute nodes are now (close to) ubiquitous, it follows that there is no longer a static or traceable relationship between ownership of a physical processing unit and the personal identifiable data it processes. A future internet architecture must take this into account, whilst respecting and protecting user's privacy and data protection concerns, also from a ...
2/6/21
Collaborative Information and Content Management Applications
Anca Luca
D.collab
Two years ago I showed how to use XWiki as a development platform to build collaborative content centric applications while last year I did a short demo about how to use XWiki to setup a collaborative intranet in just 20 minutes. This year I propose a demo about how to create a public website with XWiki, and use XWiki like a content management system (but a collaborative one). The appeal of XWiki for such a usage is the possibility to integrate all usages in a single tool (intranet - see last ...
2/6/21
Collaborative Information and Content Management Applications
Michael Meeks
D.collab
The Collabora Online code-base can bring the power of LibreOffice into an iframe inside your web app. Come and hear how we've made that power even prettier and more functional for your user's delectation.
2/6/21
Collaborative Information and Content Management Applications
Mike Finko
D.collab
'No-Code/Low-Code' software by Tiki.org has blurred the lines, allowing for team member participation and engagement on digital and data initiatives on many levels. It goes well beyond many CRM, ERP, PM, etc, offerings which are good at what they do but typically narrow in focus, by giving users a wide mix of hundreds of tools in many categories - Front-end, Back-end, Databases, Admin and Mobile. Big 'Features', supporting 'Features' and countless small but handy plugins all combine, allowing ...
2/6/21
Collaborative Information and Content Management Applications
Silvia Macovei
D.collab
With the global pandemic, many teams have turned to remote work on a full-time basis. Prior, the XWiki team had been working distributively, building open-source software, for over 15 years. Some of us were working remotely full time. Other colleagues opted to go to the office. The majority of the team chose to blend the two, depending on their preferences and needs. Almost a year on, what seemed a temporary change feels like a permanent arrangement. Being able to work entirely remotely has ...
2/6/21
Collaborative Information and Content Management Applications
Jos Poortvliet
D.collab
This presentation will go over what Nextcloud introduced over 2020.
2/6/21
Collaborative Information and Content Management Applications
Ludovic Dubost
D.collab
Using a new collaboration tools can be a challenge when it comes to pre-existing information. In this talk, we will look at available solutions when migrating data to the XWiki Open Source software. We will first review the differences between XWiki and alternate systems, namely Atlassian Confluence, Microsoft Sharepoint and document management systems. Secondly we will show multiple approaches to migrating data into XWiki and improving the quality of the information available. Finally we will ...