From a2e1f13fd8e14511e93d6cf2a847e36cd8a16056 Mon Sep 17 00:00:00 2001 From: Zooko O'Whielacronx Date: Fri, 1 Feb 2008 11:39:23 -0700 Subject: [PATCH] docs: update docs/about.html with Amber --- docs/about.html | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/docs/about.html b/docs/about.html index 39ec09af..89dcb9ad 100644 --- a/docs/about.html +++ b/docs/about.html @@ -15,15 +15,15 @@

http://allmydata.org

Overview

-

A "storage grid" comprises a number of storage servers. A storage server has local attached storage (typically one or more SATA hard disks). A "gateway" uses the storage servers and provides to its clients a filesystem over a standard protocol such as HTTP(S), FUSE, or SMB.

-

Users do not rely on storage servers to provide confidentiality nor integrity for the data -- instead all of the data is encrypted and integrity checked by the gateway, so that the servers are not able to nor alter the contents of the files.

-

Users do rely on the storage servers for availability -- the ciphertext is erasure-coded and distributed across N different storage servers (the default value for N is 12) so that it can be recovered from any K of these servers (the default value of K is 3). Therefore only the simulaneous failure of N-K+1 (with the defaults, 10) servers can make the data unavailable. Phrasing this in terms of reliance, we say that the users rely on the gateway for the confidentiality and integrity of the data, and on any 3 of the 12 servers for the availability of the data.

-

The typical deployment mode is that each user runs her own gateway on her own machine. This way she needs to rely only on her own machine for the confidentiality and integrity of the data, and she can take advantage of tighter filesystem interfaces such as FUSE and SMB.

-

An alternate deployment mode is that the gateway runs on a remote machine and the user connects to it over HTTPS. This means that the operator of the gateway can view and modify the user's data (the user relies on the gateway for confidentiality and integrity), but it means that the user can access the filesystem with a client that doesn't have the gateway software installed, such as an Internet kiosk or cell phone.

-

A user who has read-write access to a file or directory can give another user read-write access to that file or directory, or can give another user read-only access to that file or directory. A user who has read-only access to a file or directory can give another user read-only access to it.

-

When linking a file or directory into a parent directory, you can use a read-write link or a read-only link. If you use a read-write link, then anyone who has read-write access to the parent directory can gain read-write access to the child, but anyone who has read-only access to the parent directory can gain only read-only access to the child. If you use a read-only link, then anyone who has either read-write or read-only access to the parent directory can gain read-only access to the child.

+

A "storage grid" is made up of a number of storage servers. A storage server has local attached storage (typically one or more SATA hard disks). A "gateway" uses the storage servers and provides to its clients a filesystem over a standard protocol such as HTTP(S), FUSE, or SMB.

+

Users do not rely on storage servers to provide confidentiality nor integrity for the data -- instead all of the data is encrypted and integrity-checked by the gateway, so that the servers can neither read nor alter the contents of the files.

+

Users do rely on storage servers for availability. The ciphertext is erasure-coded and distributed across N storage servers (the default value for N is 12) so that it can be recovered from any K of these servers (the default value of K is 3). Therefore only the simultaneous failure of N-K+1 (with the defaults, 10) servers can make the data unavailable. Phrasing this in terms of reliance, we say that the users rely on the gateway for the confidentiality and integrity of the data, and on any 3 of the 12 servers for the availability of the data.

+

In the typical deployment mode each user runs her own gateway on her own machine. This way she need rely only on her own machine for the confidentiality and integrity of the data, and she can take advantage of filesystem integration using FUSE or SMB.

+

An alternate deployment mode is that the gateway runs on a remote machine and the user connects to it over HTTPS. This means that the operator of the gateway can view and modify the user's data (the user relies on the gateway for confidentiality and integrity), but the user can access the filesystem with a client that doesn't have the gateway software installed, such as an Internet kiosk or cell phone.

+

A user who has read-write access to a file or directory in this filesystem can give another user read-write access to that file or directory, or read-only access to that file or directory. A user who has read-only access to a file or directory can give another user read-only access to it.

+

When linking a file or directory into a parent directory, you can use a read-write link or a read-only link. If you use a read-write link, then anyone who has read-write access to the parent directory can gain read-write access to the child, and anyone who has read-only access to the parent directory can gain read-only access to the child. If you use a read-only link, then anyone who has either read-write or read-only access to the parent directory can gain read-only access to the child.

There are two kinds of files: immutable and mutable. Immutable files have the property that once they have been uploaded to the storage grid they can't be modified. Mutable ones can be modified.

-

For much more technical detail, please see The Doc Page on the Wiki, and the other files in the docs directory of the source tree.

+

For more technical detail, please see architecture.txt, the The Doc Page on the Wiki, and the other files in the docs directory of the source tree.

Installing

To install Tahoe, please see install.html.

-- 2.45.2