On Fri, Nov 12, 2010 at 02:20:35PM -0800, ron minnich wrote: > On Fri, Nov 12, 2010 at 2:15 PM, Eric Van Hensbergen wrote: > > > No, that's true.  I think this is actually a huge open issue for > > existing distributed file systems in general and I'm not sure of a > > good way around. > > yeah, we had lots of discussion of this about 8 years ago with 9grid > and never worked it out. One proposal would be... > What's your global identify? A public (SPKI) key or, more robustly, a halo of subkeys. > How do you name it? By the shortest path from the key currently used as root, which probably is the same as your public identity, so it gets stringified as "" or "." or "self" or somesuch. > How do you map it to a local identity? There's less need to, since most rights checks would be done using the key directly, but eve's factotum also probably has a SPKI key, and your identity can be stringified into a path of names if necessary. --nwf;