Open in app

Sign in

Write

Sign in

Shadowname

Aleksej Sokolov
Sep 3, 2022

--

Working with file service I realized, that we need not only alternative ID but also user shadowname.

URL: http://[IP]/files/pub/AlternativeID-Shadowname-FileHash

AlternativeID = sign(user_private_key, “node.url-node.nonce-username-user.nonce-alternative-123”)
Used to verify the user

FileHash = MD5(filename)
Filehash is needed to determine which file to download not showing real file name for security reasons

Shadowname = MD5(Username-node.url-node.nonce-username-user.nonce)
Generated when user gets registered (joined) and stored in local users db (.json file by default). Used to determine the user from which to download file.

Advantages:

  1. If we are using pregenerated ID for each file, we need separate database for that. That means more code and less reliable.
  2. Owner of file remains anonymous

TODO:

  1. Use Shadowname everywhere instead of username to increase security.

Sign up to discover human stories that deepen your understanding of the world.

Free

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Membership

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Blockchain
Microservices
File Sharing
Security

--

--

Aleksej Sokolov
Aleksej Sokolov

Written by Aleksej Sokolov

11 Followers
3 Following

Ideologist & Main Developer at PrivateNess

No responses yet

Write a response

What are your thoughts?

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams