[Ndn-interest] repo-ng and least-authority storage
Corbin
cds at corbinsimpson.com
Tue Jun 27 19:37:27 PDT 2017
Hi,
I want to know if the following security design is provider-independent; that is, whether it still holds even if I don't trust the NDN nodes running repo-ng.
To make a cap for a file, generate a secret key and nonce, use libsodium to put the file in a box with the key and nonce, and finally, insert the box in a repo with a random name. The name, key, and nonce form a capability for the file; the capability is necessary and sufficient for file retrieval.
This is a lot less work than Tahoe-LAFS has to put in! Would it really work?
Peace,~ C.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.lists.cs.ucla.edu/pipermail/ndn-interest/attachments/20170627/f725316b/attachment.html>
More information about the Ndn-interest
mailing list