File encryption for untrusted remote file systems

by Vasil Kolev

Storing files on an untrusted file system doesn't seem to be a properly resolved problem - most solutions create an filesystem image and run their own filesystem over it. To overcome the limitation of this and make it possible to integrate end-to-end (e.g. user-side) encryption into our remote/cloud storage system, we had to design a system that layers on top of the primitives we already provide in the API.

The talk will present the road to the current design, the design and whatever source code we've written until now, as we understand very well that there's no reason to trust a closed system.