The Blog

Recently Featured

Complete Archives

Articles by App

OmniDazzle
OmniDiskSweeper
OmniFocus
OmniGraffle
OmniGraphSketcher
OmniObjectMeter
OmniOutliner
OmniPlan
OmniWeb

Omni Sync Server: Beta no more!

by Brian on March 5, 2012

Howdy, friend-os! Today, I get to do something we’ve been looking forward to for a while now: announce that the Omni Sync Server is coming out of beta.

We’ve had the server up for almost two years now - it launched way back in April of 2010. In that time, the server has been scaled up from a Mac mini here in our offices to a collection of machines in our colocation facility, all working together to help you move your Omni apps’ data back and forth between your OS X and iOS devices, as well as to store backup copies of that data just in case things go totally diggstown and you need them.

When we launched the server, it was an OmniFocus-only affair, but we’ve added support for the server to all of our iOS apps. On the Mac, OmniFocus and OmniPlan have built-in support for the server as well. (The Mac apps that don’t already include support will get it in the future.)

So, to the tens of thousands of folks out there that have been storing your data on the server this whole time: thank you very much for being willing to sign up and help us build this thing. There’s always a seat for you on our little red wagon. To everyone else: if you were interested in using the server but didn’t want to sign up while it was in in a testing phase, we’re rolling out the red carpet for you. Head over to omnigroup.com/sync and set up an account.

Oh, and did we mention that you can have this all for the low, low price of zero? One of the things we learned is that we can build and run a service like this without needing to charge for it. Consider it a delicious after-dinner digestif you get whenever you buy one of our apps. Enjoy!

Comments

Awesome job, guys! I have loved using Omni Sync Server since the beta was first available to me. It’s been miles more reliable than any of the alternatives, and I never have to think about it at all. It just works.

Keep up the great work, and I’ll keep spreading the word!

Todd

03.05.12 3:55 PM

Awesome!!
Keep up the good work guys. Looking forward to Omnifocus 2.0 ;)

Edi

03.05.12 4:02 PM

Great news. Others could learn a few Things from you.

PR

03.05.12 4:10 PM

That’d be a digestif, not an apéritif. Or maybe a chaser, if you think of OmniFocus as strong drink :-)

Bill

03.05.12 4:17 PM

Thanks for a great service and awesome apps. Looking forward to omni outliner pro synching as I use this app for all my notes everyday. Thanks again for all the hard work. John.

John Kendrick

03.05.12 4:30 PM

Sounds awesome. I’ve been using a DreamHost account as a WebDAV sync server for a while. Is there any benefit to moving over to Omni Sync Server?

Kevin Ballard

03.05.12 4:32 PM
Team Member

Apéritif/digestif confusion repaired. We regret the error. Thanks to Bill and @antiorario who both pointed out the mistake! We have the best customers ever. :-D

Brian

03.05.12 4:35 PM
Team Member

Thanks to everyone for the kind words - we’re really grateful!

Kevin B, if your existing sync setup is working well for you, sticking with it as a completely reasonable move. Main advantage to someone in your position would be a greater ability on our part to help if something unexpected ever happens to your files or data. Of course, the privacy/security implications of sharing your data with any third party solution also need to be considered.

The main advantages of our service accrue to folks still syncing via iDisk/MobileMe (going away in June) or who are paying for third-party WebDAV hosting in order to sync their data and would prefer a no-cost/no-subscription option to do so…

Brian

03.05.12 4:40 PM

At the moment I am using a highly secure WebDav to host my sync files. Could you describe what security measures you have in place for your sync service? Is the data encrypted at rest? If so, is there a common encryption key or is it specific to user?

Michael

03.05.12 5:20 PM
Team Member

Kevin: If you’re already paying for the DreamHost account for other reasons, then you wouldn’t save any money with our service. If your data’s on the Omni Sync Server and something goes wrong, you could simply ask us to take a peek and see what’s gone wrong, rather than figuring out how to send us a copy of your database. Performance times might be better or worse, depending on your geographic distance from our servers in Seattle.

Lizard

03.05.12 5:36 PM

This is why I love OmniGroup. The server has been running great since the upgrades over the summer. I can’t wait to see future abilities of Omni Sync Server.

D Pauw

03.05.12 6:21 PM
Team Member

Excellent question, Michael. It wouldn’t be responsible to issue a blanket guarantee of security, but we have worked hard to secure the servers and keep your data as safe as our own is. However, the files aren’t stored in encrypted form on the servers.

We’re interested in doing that eventually, but there are other changes that customers have been asking for more frequently; that’s why the encryption work hasn’t made it to the top of our to-do list yet. If it helps, access to those drives is restricted to our admin-level IT staff, or people from other departments if they use a tool that will automatically email you if they access your information. Accessing a customers’ data without prior permission from them to do so is a fireable offense.

The server is protected by all the same security measures that protect our online store. Communication in both directions is encrypted via HTTPS. (That’s the same technology that most banks use for their online banking systems.) We’re regularly audited by a third party that looks for security vulnerabilities. Your files are just as protected as our financial information and the source code for our products, in other words.

We do gather some information about the files in your account - “X customers have OmniFocus databases in their account”, for example - but respecting your privacy with respect to the *content* of those files is a top priority.

If you want maximum privacy for your files, a server you run yourself is going to be a better choice than any server run by a third party, whether it’s ours, iCloud, Dropbox or any other. Since you run your own server, I suspect you already know that, though. :-)

Hope that helps!

Brian

03.05.12 8:08 PM

Bravo to the folks at Omnigroup. I’ve enjoyed using your products and having the seamless syncing between all my devices a tribute to all your hard work. Again thanks and looking forward to future uses and features of your apps.

Leo the 3rd

03.05.12 8:56 PM

Fantastic! Can’t wait to use it for OmniOutliner.

You say “we’ve added support for the server to all of our iOS apps”. I just updated my iPad OmniOutliner but I’m not seeing any options related to Omni sync, is that still to come?

Thanks for the great service, it’s been working flawlessly for me on OmniFocus for a long time now.

omnivorous

03.05.12 10:19 PM

>there are other changes that customers have been asking for more frequently; that’s why the encryption work hasn’t made it to the top of our to-do list yet.

This is what happens all too often - preventive security measures are not taken seriously until *after* the app is broken into, private data dumped straight from the database and traded on torrents. Then customers, *finally*, start asking questions, and very loudly.

The fact that few people ask for basic security features does not mean everyone else are ok without them.

VO

03.05.12 11:30 PM

Thanks for this; especially the zero price tag.

I’ve been using it for ages and it has made OF truly useful for me for the first time.

MobileMe Synching was atrociously slow over here in Europe and the iCloud forces one to choose between either having full featured apps (hello sandboxing) or living without real synchronization (hello Yojimbo).

Now if Apple could just create a synching service that was open to ALL Mac software.. wait a minute they could.. they just want the extra cash for the Mac App Store version? Talk about putting the user first.. they could learn something from you guys: offer a free service to make your existing paid products even more compelling.

Frank Reiff

03.06.12 1:38 AM

Are there any compelling reasons to switch from syncing via Dropbox to this?  thanks.

Jax

03.06.12 5:19 AM

Congratulations- I always found it exciting moving out of a beta stage when releasing my own software.
-Adam

Adam

03.06.12 9:11 AM

I was going to write a message saying “can’t I please pay for it?” because I like rewarding those who make good products with some compensation and thus helping insure the continuation. But, instead it occurred to me that the best way to help compensate the Omni Group is to go buy a product or two for a needy friend, relative, or co-worker. Worse case, the don’t use it and Omni Group gets the money. Best case, you revolutionize their life and Omni Group gets the money. Win-win.

Dean Johnson

03.06.12 10:41 AM
Team Member

Jax,

OmniFocus and DropBox have made different design decisions about how to handle data and data conflicts, so they really aren’t compatible. Several customers have lost data syncing OmniFocus via DropBox. You can find more details about this on our forums, including this thread:  http://forums.omnigroup.com/showthread.php?t=13130

Lizard

03.06.12 1:00 PM

Jax,

the Omni Sync Server and Dropbox are two very different animals.  As Lizard said, Dropbox isn’t suitable for OmniFocus’ syncing needs.  It is however suitable for Omni’s document-oriented apps on the Mac, such as OmniOutliner, OmniGraffle, OmniGraphSketcher, and OmniPlan.  The OSS came about to provide OmniFocus customers who didn’t want to pay for MobileMe just to sync with an effective, convenient solution, and when the iPad apps showed up, it was a natural place for them to store files as well, even though they do not sync like OmniFocus.  OmniPlan 2 and the upcoming OmniPlan iPad app use the OSS for their special sync needs, though any compliant WebDAV server should work. 

If you are happy with storing your documents on Dropbox, there’s no need to switch.  If you’re storing documents on MobileMe or using it for OmniFocus and/or OmniPlan syncing, it’s worth trying out the OSS, because Apple is going to pull the rug out from under us soon :-(

Bill

03.06.12 5:16 PM

Omnivorous,

there’s no sync support for OmniOutliner present, but there is support in the iPad app for storing and fetching documents from the Omni Sync Server.  See the Copy from/Export to WebDAV options in the document chooser.  On the Mac, you can mount the volume from the Finder’s Go->Connect to Server… menu for easy access.

VO,

it’s not like Omni is not taking *any* precautions here about the security of your data.  More could be taken, yes, but in the mean time you’ve got the option of using a server you control and secure, and the traffic is encrypted in transit.  I doubt Apple encrypts your iCloud data on their servers, and Dropbox uses the same key for everyone, so your data isn’t protected from their prying eyes any more than it is at Omni.

Bill

03.06.12 5:30 PM

Bill,

I am not implying that you plan on browsing the lolcat photos attached to my world domination plans managed in Omnifocus. I (and some others) want you to implement a single definitive control that makes most of your other security measures redundant - client-controlled encryption.

By the way Apple appears to use encryption (albeit server side) - https://support.apple.com/kb/HT4865

And Dropbox… they had exactly the problem I am referring to, and which you are not immune from - http://news.cnet.com/8301-31921_3-20072755-281/dropbox-confirms-security-glitch-no-password-required/

Schneier says in https://www.schneier.com/blog/archives/2011/05/dropbox_securit.html “The meta-issue is pretty simple. If you expect a cloud provider to do anything more interesting than simply store your files for you and give them back to you at a later date, they are going to have to have access to the plaintext.”

You are simply storing our files, right?

VO

03.07.12 1:17 AM
Team Member

VO: I work for Omni, unlike Bill, so it would probably be more appropriate to address those questions to me. (Bill is another Omni customer, like you.)

I should note that we do plan to offer things which are more interesting than simply storing your files: for example, we’d like to provide a web API for accessing your OmniFocus database from anywhere.

But that said, client-side encryption is exactly how I’d like to solve this privacy issue. Before we can implement that, though, we have to make sure that our apps would qualify as a “mass market encryption item” under the export classification ruling issued by the United States Commerce Department. (Or, if we’re unable to get that designation for some reason, I guess we’ll need to register each of our apps so that we have an Encryption Registration Number.) We’re working on this process right now.

Once we know we can actually legally ship client-side encryption, then we’ll still have to figure out the design questions. I’m not the local expert, but for OmniFocus, for example, it might be nice to use asymmetric encryption so you could send email to the cloud and have it land, encrypted via your public key, in your OmniFocus database. We’ll need to figure out how to handle key management: in particular, we need to figure out how best to transfer your key between devices to allow syncing between them in the first place, and whether we want to try to offer some sort of key registration/recovery (and if so, what system we use to keep those keys secure from anyone but you—simple client-side pass-phrase encryption?).

I’d welcome any thoughts you (or anyone else) might have about how we should design encryption into our apps; please feel free to email me directly at .(JavaScript must be enabled to view this email address).

(But all that said, I should note that our first priority right now is to automate syncing of our document-based apps, so you don’t have to manually import and export files from the cloud each time you want to use them.)

Ken Case

03.07.12 2:51 AM

Awesome! Thanks a lot guys. I will be heading over to the server right now. What great service!

Martin Smith

03.20.12 1:38 PM
Commenting is not available in this channel entry.