[tahoe-dev] the only Cloud storage system which is privacy-compatible -- a diagram

Toby Murray toby.murray at comlab.ox.ac.uk
Thu May 28 07:56:05 PDT 2009


On Wed, 2009-05-27 at 09:20 -0600, Zooko Wilcox-O'Hearn wrote:
> The user does not rely on the storage servers for  
> confidentiality or integrity. 

That's probably true but not completely precise.

The following statements are (AFAIK) true and are more precise. They
also make clear that there is a subtle difference here on what the user
relies upon between confidentiality and integrity.

A user does not rely on the storage grid as a whole, nor any of the
individual storage servers that comprise it, for confidentiality. 

A user does not rely on any particular storage server for integrity;
however, he/she does rely on the storage grid as a whole for
integrity.  

Availability is analogous to integrity here, I think, so:

A user does not rely on any particular storage server for availability;
however, he/she does rely on the storage grid as a whole for
availability.  

I'm not arguing that the text of this page should be changed but merely
trying to clarify that original statement.

Cheers

Toby



More information about the tahoe-dev mailing list