Open Source Document Management System | OpenKM

Does anyone know what type of encryption does the OpenKM uses?
How strong is the encryption?

And in the event if the user forgets the password or did not pass down the password before leaving the organization,
is the file still accessible???

You're talking about documents encripted or which encription is used by store password in database ( to login ) ?

I case you're talking about login, can be configured several in login-config.xml, now is set to md5.

If you're talking about encription module to crypt documents, it's used phrase encription. But easilly we could use RSA or others encription types. Really we've implemented the more easiest, and normal crypt module, but can be extended easilly to others, really I've not done, because I think it'll not be which normally use the users, and if some customer demands it, we'll implement the rest.

Oops... sorry to confused you...

I was referring to encryption for documents.
My client has this requirement to segregate the files and folders, for sensitive or confidential documents with encryption requirements.

They would like us to evaluate if the OpenKM encryption is sufficient, or if we can implement additional encryption module to address their concerns.
But have not been able to find any other instances related to encryption in your forum.

Thank you in advance!

encription is based on java library, that covers RSA, AES, phrase etc... but I've only implemented by phrase because I think was most general case, and I thinked will not be very usual. Basically we're using javax.crypto packages and cipherName = "PBEWithSHA1AndDESede".

Understand how runs it's easilly applet encripts localy the document ( if document is not yet uploaded or if it's yet uploaded and user wants to crypt ). Crypt process is always executed locally and then the file is uploaded.

We could implement other local crypt types if it was necessary or for example we could implement general repository encription for all repository or only some parts. We was thinking on it, but really until now nobody has demanded us it. Obviously the repository encription or some folders ... it means there's some general crypt procedure for all.