Private Storage with nilDB
What is Private Storage
Nillion's decentralized storage system keeps sensitive data secret by storing encrypted shares across a cluster of nilDB nodes. Each nilDB node stores a separate share of the encrypted data, ensuring no single node can reveal the original value.
This approach offers stronger security than traditional databases where all data sits in one place. Because secretvaults splits sensitive data between nodes, a breach of any single node only reveals a useless share. You need to combine multiple shares to reconstruct and decrypt the original data.
How it Works
Private storage is enabled using Nillion's blindfold libraries (which implement secret sharing) and Nillion's secretvaults SDKs (which simplify interacting with nilDB clusters).
- Data Encryption: Sensitive fields are encrypted using cryptographic keys
- Share Generation: Encrypted data is mathematically split into multiple shares
- Distributed Storage: Each nilDB node stores only one share of the encrypted data
- Secure Retrieval: Multiple shares must be combined to reconstruct the original data
- Automatic Decryption: The secretvaults libraries handle share recombination and decryption from nilDB nodes
How to Use Private Storage
Interact with the private storage solution using the TypeScript or Python secretvaults libraries. First register as a builder or user, define data collections, then securely store and retrieve data.
For Builders (Applications)
- Get Nillion Network Access to connect to nilDB nodes
- Define collections with schemas programmatically or by using the no-code, visual, Collection Explorer Tool (recommended)
- Store and query data
- Create aggregation queries
For Users (Data Owners)
- Connect to a nilDB cluster
- Store private data with access controls
- Manage permissions on your data
- Grant and revoke access
Learn more about the key concepts here