Tahoe Least-Authority File System for secure, distributed data storage

Looking for a solution to give you an edge in the ongoing struggle between you and the authorities over the privacy of your data? Then you should take a look at Tahoe Least-Authority File System, or Tahoe-LAFS. Or just LAFS.

It is a secure and distributed file system used in the S4 Cloud storage service of Least Authority Enterprises. Zooko Wilcox-O’Hearn, founder and CEO of Least Authority Enterprises, is one of the creators of LAFS.

There are three components that work to make creating a secure distributed file storage system using LAFS possible. The first is the LAFS client software, which is a Free Software available under the GNU General Public License (GPL). Binary packages are available on most Linux distributions, and on NetBSD.

The second part is the Tahoe-LAFS gateway, which can be the same computer where the LAFS client is installed on or an intermediary computer between the client and the storage servers. The third and final part are, of course, the storage servers.

The key benefit of LAFS is that it is designed to offer provider-independent security. Which means that privacy and security of your data is initiated on the client end of the system, so that by the time the data reaches the remote storage servers, you can be sure that read-access to unauthorized persons will be very difficult. It is said to be impossible, but that assumes that there are no yet-to-be-discovered bugs in the software that can be exploited.

The image below is taken from the Least Authority website and slightly modified to show that the client and LAFS gateway can be the same computer where the client is installed. For an interactive demonstration of how LAFS works, visit this site.
Tahoe-LAFS Least authority file system secure cloud storage

To use LAFS in a manner that guarantees provider-independent security for my paranoid self, I’ll rather have the LAFS gateway be the on same computer where the LAFS client is installed on. That’s about the way we can begin to talk about verifiable end-to-end security that will satisfy me. That means not having to rely on a third party. The Tahoe-LAFS FAQ offers all the basic information you need to know about this file system.

I am in the process of using LAFS to provide secure Cloud Storage on plain-vanilla Cloud services and will post an update on a separate article when that exercise is completed. For a list of companies that offer secure Cloud storage services, see 4 host-proof or PRISM-proof Cloud storage services.

Related Posts

Install HY-D-V1 desktop on Ubuntu 13.04 HY-D-V1 Desktop is a new desktop interface built atop GNOME 3 using a combination of Webkit, JavaScript, Python and HTML. It is the desktop environmen...
MATE vs Cinnamon Read an updated version of this article at Your choice: Cinnamon or MATE. MATE and Cinnamon are two recent additions to the list of desktop environ...
Disk encryption on Fedora 13 Disk encryption is one very important tool that you can use to enhance the physical security posture of our computer, and Fedora is the only distribut...
How to delete DigiNotar CA certificate from Firefox DigiNotar B.V., a unit of VASCO Data Security International, Inc., is an Internet Trust Service Provider based in the Netherlands. Part of their busin...
How to upgrade Fedora 20 Cinnamon to Fedora 21 Cinnamon FedUp (FEDora UPgrader) is the recommended tool for upgrading a recent Fedora installation. It's a very neat tool for upgrading a system and I think o...
How to protect against image hotlinking in Nginx This short tutorial shows how I configured Nginx to protect against hotlinking of images used in my articles. Protecting against image hotlinking in N...

We Recommend These Vendors

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

One Comment

  1. Commerce is what it is, but you think your ads are actually obstructing your messege.

Leave a Comment

Your email address will not be published. Required fields are marked *