[tahoe-dev] [tahoe-lafs] #990: Web gateway should avoid caching plaintext
tahoe-lafs
trac at allmydata.org
Thu Mar 11 23:04:13 UTC 2010
#990: Web gateway should avoid caching plaintext
-------------------------------------------------------------+--------------
Reporter: jsgf | Owner: nobody
Type: defect | Status: new
Priority: major | Milestone: 1.7.0
Component: code-frontend | Version: 1.6.0
Keywords: confidentiality download cache webapi sftp ftpd | Launchpad_bug:
-------------------------------------------------------------+--------------
Comment(by zooko):
My favorite solution to this would be to implement #320 (add streaming
(on-line) upload to HTTP interface) so that the gateway doesn't use the
disk at all. #320 would offer great improvements, IMO, in performance and
flexibility.
You have to give up on convergent encryption whenever you choose streaming
upload (although I wonder if we could get some of it back by defining an
encryption key from the secure hash of each segment in turn (including the
added convergence secret) and using that key to encrypt the next
segment..).
--
Ticket URL: <http://allmydata.org/trac/tahoe/ticket/990#comment:5>
tahoe-lafs <http://allmydata.org>
secure decentralized file storage grid
More information about the tahoe-dev
mailing list