4
3
Bittorrent just announced Bittorrent Sync, which as I understand it is a pure P2P sync solution without a central server that stores your data: Instead, all nodes in the network replicate amongst themselves.
The downside is that it only works if two nodes that need to exchange files are online at the same time. You can get working by having a dedicated server on your network that is always on. However, if you place that in the cloud, you risk others getting to your data.
Is there a way to place a node in a mode where it can replicate all the encrypted data (so that other nodes can always pull the latest data from it), but does not have the ability to decrypt it itself (so that if someone steals the node, your data is not compromised)?
Did you consider disk encryption on the middleman node? – Satoh – 2013-04-24T03:43:27.583
1That would protected the data when the server is shut down, but not when it is active (which it is supposed to be all the time), because then the disk would be mounted. – Thilo – 2013-04-24T04:00:41.673
I'd like a clarification on "if you place that in the cloud, you risk others getting to your data.". Is it by breach of server? Because they can only get the data via bittorrent sync if they know the secret. – ptman – 2013-04-24T08:02:13.213
1Please note that the data itself is not encrypted, only the connection, which is based on the "secret". Bit-torrent's main purpose is speed and efficiency, not security. So if disk encryption is not enough for you, your server cannot send you data without having the unencrypted files on it. At least with bit-torrent sync. – Satoh – 2013-04-24T14:36:04.320
The sync spec mentions "relay servers" that facilitate connections between nodes that are firewalled. Those can work without knowing the secret. I guess what I am looking at is a "proxying relay server" that can push data between nodes even when they are not online at the same time. – Thilo – 2013-04-25T03:29:34.330