Open v6ak opened 7 years ago
First draft:
All items of Merkle tree are encrypted and somehow linked to the particular VM. TODO: describe details.
MAC is not needed for any node except the root one, because other node's ciphertext are authenticated by hash stored in a node that is already authenticated.
List of directory item descriptions ordered by name.
Just content of the file.
Why?
BackupStorageVM<->dom0 interface
Rather a simple key-value interface:
dom0 <-> BDVM interface
The interface should be very similar to BackupStorageVM<->dom0, but dom0 has to verify the permissions and maybe handle encryption.
Directory structure
Directory structure would be implemented on top of the mentioned key-value storage as Merkle tree.
What to decide