...
- We were skeptical that any proposed complicated model would be either useful or appropriate for most users. A simple model of having single principals authenticated with full access to a set of tables they own (i.e. like a full access user for each SQL database) would go a long way.
- For the time being, we will punt access control and accounting and assume a trusted data center / single user model.
Interesting bits
- BigTable apparently
- has no delegation
- does authentication with a Google campus-wide mechanism
- showed read access permissions more important than write (secrecy valued over integrity)
Questions
- What does Amazon S3 do?
- Are our network security assumptions sound?