Context Navigation

P2PSync

Timestamp:: 05/31/17 09:18:34 (8 years ago)
Author:: MichaelRogers
Comment:: --

Legend:

: Unmodified
: Added
: Removed
: Modified

BluePrint/Mobile/P2PSync

-              v15
+              v16
 == User Stories ==
+[https://code.briarproject.org/akwizgran/briar/uploads/655c21456bbc36a83193bdb5e0473f07/SahanaEDENBrambleProjectUseCases.odt User stories document]
+See the [https://code.briarproject.org/akwizgran/briar/uploads/655c21456bbc36a83193bdb5e0473f07/SahanaEDENBrambleProjectUseCases.odt user stories document].
 == Requirements ==
 …
 === Standards ===
 Communication between mobile devices and the destination server should use HTTPS. If the P2P sync component protects the privacy of data subjects by encrypting data before synchronizing it, this should be done using OpenPGP.
+Communication between mobile devices and the destination server should use HTTPS. If the P2P sync component protects the privacy of data subjects by encrypting data between the originating device and the destination server, this should be done using OpenPGP. If the destination server creates delivery confirmations, these should be signed using OpenPGP.
 === System Constraints ===
 …
 ==== 1. Synchronize immutable documents ====
 In this option, the data to be synced consists of immutable documents, each of which originates on one mobile device and is synced to other devices without being modified. Examples of documents might include a completed form or a photo.
 Detecting and resolving conflicts is simple in this option: each data item is identified by its cryptographic hash, which ensures that if two items have the same identifier then they also contain the same data. Therefore from the point of view of the sync protocol, conflicts are always avoided.
+In this option, the data to be synced consists of immutable documents, each of which originates on one mobile device and is synced to other devices without being modified. For example, a completed form or a photo can be treated as an immutable document.
+Detecting and resolving conflicts is simple in this option: each data item is identified by its cryptographic hash, which ensures that if two items have the same identifier then they also contain the same data.
 This option allows documents to be encrypted on the originating device and decrypted on the destination server.
 …
 Detecting and resolving conflicts in this option follows a similar approach to [http://docs.couchdb.org/en/2.0.0/intro/consistency.html CouchDB]. Non-conflicting updates are applied automatically. If a conflict occurs, the P2P sync component stores all conflicting versions of the record and asks the application to resolve the conflict, which may require user intervention, either on the mobile device or on the destination server.
 This option does not allow records to be encrypted on the originating device and decrypted on the destination server. Individual fields can be encrypted, but if a conflict occurs in an encrypted field it may not be possible to resolve it on the mobile device.
+This option does not allow records to be encrypted on the originating device and decrypted on the destination server, as mobile devices need access to the contents of updates. Individual fields can be encrypted, but if a conflict occurs in an encrypted field it can only be resolved on the destination server.
 The destination server confirms delivery of a record by creating a delivery confirmation containing the record's identifier and [https://wiki.apache.org/couchdb/Replication_and_conflicts revision], signed with the server's OpenPGP key. The confirmation can be synced between mobile devices, which can delete the confirmed record if they are storing the same revision and no longer need a local copy (they must keep the record if they are storing a different revision). Multiple revisions of a given record may be confirmed by the destination server.
 ==== Comparison of the options for each use case ====
 The immutable documents option would be well suited to the "Situation Reporting and Assessment" and "Self-Organized Canvassing" use cases, which are primarily concerned with collecting data and delivering it to a central server.
 The "Aid Distribution" use case involves updating information as well as collecting it: for example, recording the fact that an individual who was previously eligible for aid has now received it. The database records option would be well suited to this use case, but the use case could also be handled with immutable documents by using a log structure: a log of documents representing events would be attached to a document representing an individual, for example.
 The "Logistics Management" use case is primarily concerned with managing mutable information. This would be possible with immutable documents using a log structure, but for efficiency it would probably also be necessary to maintain a representation of the current state. The complexity of maintaining two representations of the data might make the database records option preferable for this use case.
+The immutable documents option is well suited to the "Situation Reporting and Assessment" and "Self-Organized Canvassing" use cases, which are primarily concerned with collecting data and delivering it to a central server.
+The "Aid Distribution" use case involves updating information as well as collecting it: for example, recording the fact that an individual who was previously eligible for aid has now received it. The database records option is well suited to this use case, but the use case can also be handled with immutable documents by using a log structure: for example, a log of documents representing events is attached to a document representing an individual.
+The "Logistics Management" use case is primarily concerned with managing mutable information. This can be handled with immutable documents using a log structure, but for efficiency it may also be necessary to maintain a representation of the current state. The complexity of maintaining two representations of the data may make the database records option preferable for this use case.
 === Data Model ===
+(e.g. EER or class diagrams)
+TODO
 === Workflows ===
 …
 The Bramble protocols [https://code.briarproject.org/akwizgran/briar-spec/blob/master/protocols/BTP.md BTP] and [https://code.briarproject.org/akwizgran/briar-spec/blob/master/protocols/BSP.md BSP] will be used for syncing data between peers. In Bramble terminology, the P2P sync component will be a BSP client. New modules for discovering, authenticating and storing peers will be developed, or the existing Bramble modules will be generalised.
+The structure of the BSP client, and the interface between the P2P sync component and the !EdenMobile app, depend on which design option is chosen.
+In both options, the P2P sync component exposes the following capabilities to the !EdenMobile app:
+* Activate and deactivate P2P sync.
+* Discover and authenticate peers.
+* Optionally store peer identities in the component's database.
+* Optionally configure a destination server and store the configuration in the component's database.
+* Optionally encrypt the component's database with a password-derived key.
+The P2P sync component also implements the following capabilities internally:
+* Connect to the destination server when internet access is available.
+* Synchronize data with peers and the destination server.
+* Authenticate delivery confirmations received from peers and the destination server.
+The component has the following dependencies:
+* Bramble
+* OpenPGP
+==== 1. Synchronize immutable documents ====
+In this option, the P2P sync component exposes the following extra capabilities to the app:
+* Store immutable documents in the component's database.
+* Optionally encrypt documents with the destination server's public key before storing them.
+* Choose documents from the component's database to be synchronized.
+The P2P sync component implements the following extra capabilities internally:
+* Delete documents that were received from peers and have been confirmed by the server.
+==== 2. Synchronize database records ====
+In this option, the P2P sync component exposes the following extra capabilities to the app:
+* Choose records from the app's database to be synchronized.
+This option requires the app's database to be ported from the [https://github.com/nolanlawson/cordova-plugin-sqlite-2 Cordova SQLite plugin] to [https://pouchdb.com/ PouchDB], which [https://pouchdb.com/adapters.html wraps] the SQLite plugin. The [https://github.com/pouchdb-community/pouchdb-replication-stream PouchDB Replication Stream] module extracts changes from the database to be synced via Bramble.
+This option has the following extra dependencies:
+* PouchDB
+* PouchDB Replication Stream
 == Current Implementation ==
+N/A
 == Planned Implementation ==
+=== Milestones ===
+TODO
 == Future Extensions ==
+<List of features which could be included, but are outside of the scope of this extension>
+TODO
 == Outstanding Questions ==
+<Questions about the features or design that haven't been (and need to be) answered>
+TODO
 == References ==
+<Links to external resources>
+* [http://developer.servalproject.org/dokuwiki/doku.php?id=content:servalmesh:main_page Serval Mesh]
+* [https://briarproject.org/ Briar]
+* [https://github.com/casific/murmur Murmur]
+* [http://whispercomm.org/shout/ Anonymouse]
+* [https://code.briarproject.org/akwizgran/briar/uploads/655c21456bbc36a83193bdb5e0473f07/SahanaEDENBrambleProjectUseCases.odt User stories]
+* [http://docs.couchdb.org/en/2.0.0/intro/consistency.html CouchDB: Consistency]
+* [https://wiki.apache.org/couchdb/Replication_and_conflicts CouchDB: Replication and conflicts]
+* [https://code.briarproject.org/akwizgran/briar/tree/master Bramble]
+* [https://code.briarproject.org/akwizgran/briar-spec/blob/master/protocols/BTP.md BTP]
+* [https://code.briarproject.org/akwizgran/briar-spec/blob/master/protocols/BSP.md BSP]
+* [https://github.com/nolanlawson/cordova-plugin-sqlite-2 Cordova SQLite Plugin]
+* [https://pouchdb.com/ PouchDB]
+* [https://pouchdb.com/adapters.html PouchDB: Adapters]
+* [https://github.com/pouchdb-community/pouchdb-replication-stream PouchDB Replication Stream]
 ----