-
Notifications
You must be signed in to change notification settings - Fork 17
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Discussion: Hiding data stored on registries #21
Comments
A few comments: Encryption and privacy are complex topics with a bunch of use cases and threat models; I would be specific about what use cases you want to address and what specific privacy properties you want to preserve. Some use cases it sounds like you might be describing are:
These use-cases have different technical requirements, for example a mechanism for securely distributing keys to multiple parties (non-trivial!) or even devices controlled by the same user. It seems to me that there are two mechanisms that would work with the existing system:
What use cases would not be covered by the above? In terms of implementation, I think adding features at the hypercore level will be much harder to pull off than building a library layer on top of hypercore (perhaps adding an abstraction layer between hypercore and hyperdb?). |
Related to #14
Some data should be private and not exposed with any third parties, but people will still need it backed up somewhere (pinned) so that they can be sure they have access to it between devices.
Dat should provide a mechanism for this out of the box.
Some ideas to consider:
dat://encryptionstrategy:encryptionkeyhere@daturlhere/mysecretdata.html
Wanted to have some feedback on others' ideas before working on anything.
For a start I'm going to play around with a wrapper for the DatArchive API for encrypting contents and files. Will look into using WebCrypto for the actual functionality.
The text was updated successfully, but these errors were encountered: