So in designing security of our app, the ultimate solution would allow us to provide use of our app without hosting user data at all. Alternatively, we could host user data, but do so in a way that is encrypted with a key we do not have access to and couldn’t see our users’ data even if we wanted to.
I’m hoping that when the dgraph team starts planning enterprise security features, we could brainstorm ways this could be accomplished.
An interesting article about a startup called Blockstack. Our ideas are in the same vein…how can you allow users to use a service but have absolute control over the data used and generated by that service. https://venturebeat.com/2017/12/04/blockstack-raises-52-million-to-build-a-parallel-internet-where-you-own-all-your-data/