![]() Ultimately, the encryption-key and some information to help find the right Storage nodes become part of the "capability string" ( read more about the encoding process). Storage nodes are a data repository for shares users do not rely on them for integrity or confidentiality of the data. These segments then become shares, which are stored on particular Storage nodes. So, for example, a "2-of-3" erasure-encoding means that the segment is split into a total of 3 pieces, but any 2 of them are enough to reconstruct the original ( read more about ZFEC). When adding a value, the client first encrypts it (with a symmetric key), then splits it into segments of manageable sizes, and then erasure-encodes these for redundancy. There is also a feature called "magic folder" built on top of the filesystem layer which automatically synchronizes a directory between two participants. On top of the key-value store is built a file storage layer, with directories, allowing you to share sub-trees with others (without, for example, revealing the existence or contents of parent directories).Ī "backup" command exists on top of the file storage layer, backing up a directory of files to the Grid. The store uses relatively short strings (around 100 bytes) called capabilities as the keys and arbitrary binary data (up to "dozens of gigabytes" and beyond) for the values. Data StorageĪt the lowest level, Tahoe-LAFS is essentially a key-value store. Starting with version 1.12.0, Tahoe-LAFS has added Tor support to give users the option of connecting anonymously and to give node operators the option of offering anonymous services. Filecaps come in up to three variants: a read-cap, a verify-cap and (for mutable files) a write-cap. A filecap is a short cryptographic string containing enough information to retrieve, re-assemble and decrypt the shares. ![]() Shares are encrypted chunks of data distributed across many storage servers. Using a Tahoe-LAFS client, you turn a large file into a redundant collection of shares referenced via a filecap. This means that data stored using Tahoe-LAFS remains confidential and retrievable even if some storage servers fail or are taken over by an attacker. Tahoe-LAFS is a free and open source decentralized data storage system, with provider-independent security and fine-grained access control. And please support the Tor Project! We're at the heart of Internet freedom. Check out our blog each day to learn about our fellow travelers. During the month of December, we're highlighting other organizations and projects that rely on Tor, build on Tor, or are accomplishing their missions better because Tor exists.
0 Comments
Leave a Reply. |