NDEVR OWL · Server

Your data,
stored your way.

The OWL Server is a secure, high-performance backend that powers collaborative 3D workflows, resource management and encrypted file sharing — without ever holding your keys. Stand it up on your own hardware, a Docker container, a NAS or an ARM box, and keep every byte inside your network. It runs fully offline on an air-gapped intranet, with the same zero-knowledge, end-to-end encryption.

Download the server → Talk to us

Windows · Linux · macOS Docker · NAS · ARM Air-gapped capable Zero-knowledge No per-user fees

🗝️

Your server, your keys

Files are stored with envelope encryption — AES for content, EC-based access control for keys. The server never holds what's needed to read them.

🛰️

Air-gapped capable

Runs fully offline on an isolated intranet — no outbound connection required — while keeping the same zero-knowledge guarantees.

📦

Runs on anything

Windows, Linux, macOS, a Docker container, a NAS or an ARM box. One lightweight installer, no heavyweight dependencies.

★ 2026 Edition

Run your own OWL server — on anything

OWL isn't tied to our cloud. Keep every byte inside your network, even on an air-gapped intranet, with no outbound connection required and the same end-to-end encryption.

owl-server — bash

$ ./owl-server --data /srv/owl --bind 0.0.0.0:8443
▸ generating server keys…            done
▸ network: air-gapped (no outbound)   ✓
▸ storage: 4.0 TB encrypted-at-rest   ✓
OWL server up → https://owl.intranet.local
$ ▋

🪟 Windows🐧 Linux🍎 macOS🐳 Docker🗄️ NAS🔧 ARM

Stand it up in one command

Point it at a data directory, bind a port, and it generates its own server keys on first run. There's nothing to phone home to — perfect for regulated, offline or sovereign-data environments.

Every file is stored encrypted at rest. Clients choose which servers to connect to, and your OWL server enforces permissions, versioning and real-time sync without ever being able to read the content it holds.

See exactly how the encryption works →

Under the hood

A backend built for secure collaboration

Everything needed to power encrypted 3D workflows, resource management and team accounts.

🔐

Encrypted file storage

Envelope encryption combines AES for file content with EC-based access control. Files are stored as ciphertext, always.

🎚️

Permission-based access

Granular sharing controls per file and per user, so people see exactly what you grant — and nothing more.

🔄

Real-time sync

WebSocket support keeps viewers, comments and selections live across remote collaborators.

🕓

Resource versioning

Every object carries full version history and traceability — switch, compare and roll back with confidence.

🪪

User identity & auth

Deterministic key generation ties identity to cryptography, with email verification built in.

🔔

Notifications & recovery

Message and version-update notifications across desktop, web and mobile, plus opt-in encrypted password recovery.

The request loop

How the server works

A simple, secure loop: the client asks, the server authenticates and serves ciphertext, the client renders, and changes sync back.

Client request

A client opens a work link and requests a resource by its address and key reference.

Server authenticates

The server validates permissions and returns only the encrypted data the client is authorized to receive.

Client renders

The browser decrypts on-device and renders the 3D scene, media or document with the granted permissions.

Sync back

Comments, markup and new versions are encrypted and synced back over secure, real-time channels.

Light footprint

Server requirements

OWL Server is deliberately lean — it'll run comfortably on hardware you already have.

Operating system

Any

Linux, Windows, macOS, Docker, NAS or ARM.

Disk space

500 MB

For the server itself, plus room for your files.

Memory

300 MB

Minimum RAM to run; scales with load.

Network

Yours

Speed varies by needs — or none at all when air-gapped.

Where OWL excels

How does OWL compare?

Built for security-first, self-hosted and regulated workflows — where owning your data and your backend matters.

Feature	NDEVR OWL	Autodesk Viewer / Forge	Trimble Connect / SketchUp	Unity Reflect / Pixyz
Hosting control	Self-hosted or NDEVR cloud	Fully cloud-managed by Autodesk	Cloud-managed only	Hybrid (cloud + local sync)
Security model	Zero-knowledge encryption	3rd-party OAuth 2.0 standard auth	User-based permission only	Project-based access
Data ownership	Full ownership, local or user infrastructure	Hosted on Autodesk servers	Hosted on Trimble servers	Mostly cloud-managed
Backend / API	Full backend extensibility in C++ / SQL	REST APIs; limited customization	Minimal customization	Unity SDK and scripting
Offline / edge	Yes — air-gapped capable	No	No	Partial (Unity runtime)
License / cost	Per-server, no per-user fees	Pay-per-usage API pricing	Per-seat licensing	Per-seat + runtime royalties

Get it

Download the OWL server

Grab the installer for your platform, or reach out and we'll help you stand it up.

🪟Windows 🐧Linux 🍎macOS 🐳Docker ✉️Contact

Stand up your own OWL server.

Keep your data on your hardware, on your network, under your keys — with the convenience of a modern, encrypted 3D collaboration platform.

Download now → Get the client Talk to us