You guys have mentioned using AES-128 encryption. So the decryption part is done on the client side. Does it necessarily involve creating a decrypted temporary file? Is there any option in which no decrypted temporary file is created?
Decrypted temporary file is not created, it happens in memory.