[hcs-d] Webmail

Ivan Krstić krstic at solarsail.hcs.harvard.edu
Thu Oct 30 15:16:10 EDT 2008

On Oct 30, 2008, at 12:39 PM, Jason Gao wrote:
> As for S3, they just provide storage buckets. FAS could encrypt data
> when stored, and decrypt it after retrieval for use on their own mail
> application

You're not thinking this through. How do you provide e.g. search  
capabilities? Either you have to maintain a *separate*, non-S3 system  
to store the unencrypted indices, or you have to fetch from S3 and  
decrypt a (potentially large) per-user index on every search, and  
fetch-update-store the index on every new message received. The former  
option negates much of the benefit of using S3 in the first place, and  
the latter is just wankery.

Ivan Krstić <krstic at solarsail.hcs.harvard.edu> | http://radian.org

More information about the hcs-discuss mailing list