niklas/amduat-api
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
amduat-api/notes/Encrypted Block Storage Across Domains.md
Carl Niklas Rydberg 1d552bd46a Added some notes that needs to be analyzed.
2026-01-17 00:19:49 +01:00

242 lines
4.5 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

Yes — **you can, and this is actually a *very strong* pattern** in your model.
But it only works if you are precise about **what is being trusted** and **what is being hidden**.
The short version:
> **Yes: you can store encrypted blocks from a personal domain inside a public domain, safely, as long as encryption is treated as content and keys are never part of federation.**
Below is the clean, formal way to do it.
---
# Encrypted Block Storage Across Domains
---
## 1. Core principle (non-negotiable)
> **Public domains may store bytes they cannot interpret, validate, or decrypt — but never assert meaning for them.**
The *meaning* stays private.
The *storage* is outsourced.
---
## 2. What is actually stored in the public domain
The public domain stores:
* **Encrypted ASL blocks**
* Content-addressed by ciphertext hash
* Snapshot-pinned
* Garbage-collectable under public policy
It does **not** store:
* Keys
* Key identifiers
* Decryption metadata
* Plaintext hashes
* Domain semantics
---
## 3. Encryption model (minimal and safe)
### 3.1 Block encryption
Before block sealing:
```
plaintext_block
→ encrypt(K)
→ ciphertext_block
→ BlockID = HASH(ciphertext_block)
```
Important:
* Encryption happens **before sealing**
* BlockID is over ciphertext
* Deterministic encryption is NOT required
* Randomized AEAD is fine
---
### 3.2 Key ownership
* Keys belong **only** to the personal domain
* Keys are **never federated**
* Keys are not referenced by ArtifactIndex entries
Encryption keys are **out-of-band capability**.
---
## 4. How the public domain sees these blocks
From the public domains perspective:
* These are opaque blocks
* They are indistinguishable from random data
* They have no semantic index entries
* They cannot be interpreted or replayed
This is good.
---
## 5. How your personal domain references them
Your personal domain keeps:
* ArtifactIndex entries referencing ciphertext BlockIDs
* Decryption metadata *locally* (or derivable)
* Snapshot-pinned authority over interpretation
Example:
```
Artifact(personal-photo-archive)
→ BlockID(ciphertext)
→ Decrypt with K
```
---
## 6. Cross-domain reference mechanics
There are **two distinct references**:
### 6.1 Storage reference (public domain)
Public domain:
* Owns physical blocks
* Manages retention
* Applies GC per its policy
No semantic claims.
---
### 6.2 Semantic reference (personal domain)
Personal domain:
* Owns ArtifactKey → ArtifactLocation
* Owns decryption
* Owns provenance
* Owns meaning
---
## 7. Trust & threat model (explicit)
### Public domain can:
* Delete data (availability loss)
* Rate-limit access
* Mirror data
### Public domain cannot:
* Read content
* Forge artifacts
* Alter meaning
* Impersonate you
If they delete data, integrity still holds — availability is a *separate* concern.
---
## 8. Federation and publication rules
### What you publish to public domain
You publish:
* Encrypted blocks
* Optional block size metadata
* No ArtifactIndex
* No TGK edges
This is **storage federation**, not semantic federation.
---
### What you never publish
* Plaintext artifacts
* PERs
* Index entries
* Keys
* Origin attestations
---
## 9. Optional: Explicit Storage-Only Contract (recommended)
To make this explicit, define:
```text
StorageOnlyContract {
provider_domain : DomainID
consumer_domain : DomainID
retention_terms : enum
confidentiality : "opaque-bytes-only"
}
```
This contract is:
* Snapshot-pinned
* Signed by both domains
* Human-auditable
---
## 10. Recovery flow (important)
If you later need to recover:
1. Fetch ciphertext blocks from public domain
2. Verify hash
3. Decrypt with private keys
4. Reconstruct artifacts via personal index
5. Replay snapshots
Public domain never learns anything.
---
## 11. Why this is safe even under hostile public domains
Because:
✔ Integrity is content-addressed
✔ Meaning is private
✔ Keys never cross domains
✔ No trust in storage provider
✔ Replay remains deterministic
This is **zero-knowledge storage federation**.
---
## 12. One-sentence takeaway
> **Public domains can safely store your encrypted blocks as opaque content, while all meaning, authority, and trust remain entirely within your personal domain.**
---
If you want next, we can:
* Specify **key derivation & rotation** compatible with snapshots
* Define **encrypted block GC safety**
* Model **multi-provider encrypted storage**
* Show **how to publish selectively decrypted subsets later**
This is a powerful capability — and youre using it correctly.
Reference in a new issue View git blame Copy permalink