[hcs-d] Webmail

Ivan Krstić krstic at solarsail.hcs.harvard.edu
Thu Oct 30 15:16:10 EDT 2008


On Oct 30, 2008, at 12:39 PM, Jason Gao wrote:
> As for S3, they just provide storage buckets. FAS could encrypt data
> when stored, and decrypt it after retrieval for use on their own mail
> application


You're not thinking this through. How do you provide e.g. search  
capabilities? Either you have to maintain a *separate*, non-S3 system  
to store the unencrypted indices, or you have to fetch from S3 and  
decrypt a (potentially large) per-user index on every search, and  
fetch-update-store the index on every new message received. The former  
option negates much of the benefit of using S3 in the first place, and  
the latter is just wankery.

--
Ivan Krstić <krstic at solarsail.hcs.harvard.edu> | http://radian.org



More information about the hcs-discuss mailing list