A Distributed VPN, File Sharing and Backup System

This project is still very much in its conceptual phase, but we currently expect it to have the following features:

  • it will be based either on GNU/Linux or FreeBSD;
  • downloads will be available for VirtualBox and the Raspberry Pi;
  • it will use a combination of passwords and a DHT-based system to discover trusted peers, and to establish redundant links between nodes with, and without, NAT-traversal;
  • it will come preinstalled with a set of collaboration tools, mail, voice- and video-conferencing software; and
  • it will provide multiple security enclaves — at a minimum:
    • a lower-security network that has access to one encrypted filesystem, and to which laptops and other systems can be connected to (e.g. for more secure voice- or video-conferencing); and
    • a higher-security network that can only be accessed from the Raspberry Pi's console, which will have access to the lower- and higher-security networks' encrypted filesystems, and which can be used for more sensitive communications (e.g. emails, voice- and/or video-conferencing).

It might also include some printer-sharing capabilities.

  1. Wikipedia article on Distributed Hash Tables
  2. Wikipedia article on FreeNet
  3. Wikipedia article on the Kademlia protocol
  4. The GNUnet homepage


description:
A downloadable security appliance for creating distributed virtual private networks, and secure file shares and backups
author:
prd
created:
2013-06-10
lastupdated:
2013-06-10
type:
system, live distribution, infrastructure
tag:
security, secure communications, encryption
status:
draft
namespace:
projects