[tahoe-lafs-trac-stream] [Tahoe-LAFS] #3826: HTTP storage protocol design change: switch all secrets to http headers
Tahoe-LAFS
trac at tahoe-lafs.org
Thu Nov 11 16:33:41 UTC 2021
#3826: HTTP storage protocol design change: switch all secrets to http headers
-----------------------------+-----------------------------------
Reporter: itamarst | Owner: itamarst
Type: enhancement | Status: new
Priority: normal | Milestone: HTTP Storage Protocol
Component: unknown | Version: n/a
Resolution: | Keywords:
Launchpad Bug: |
-----------------------------+-----------------------------------
Comment (by itamarst):
Jean-Paul suggests that storage index logging should be avoided, but is
not fundamentally a problem:
1. Storage indexes are already not particularly secret. The client will
tell approximately ~every storage server it can find about your storage
indexes.
2. Knowing a storage index buys you very little. You can obtain some
ciphertext that you cannot decrypt.
3. A premise of Tahoe is that you only rely on storage servers to return
your ciphertext to you later on. You are _not_ relying on them to not make
your ciphertext public.
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/3826#comment:2>
Tahoe-LAFS <https://Tahoe-LAFS.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list