Leveraging TACo for decentralised access control on Codex

Codex and TACo are two decentralised technologies working towards a common goal: restoring user sovereignty over data.

Codex is a distributed file storage protocol designed for durability and censorship resistance, offering a decentralised alternative to traditional cloud services. TACo (Threshold Access Control) introduces a layer of programmable, decentralised encryption and access control to ensure only authorised users can decrypt stored content.

As demonstrated by its integration with Cyphershare, a proof-of-concept decentralised file-sharing app built using Codex and the Waku peer-to-peer communications tech stack, TACo can reinforce the security and censorship-resistance of the Codex Data Durability Engine (DDE) with programmable access control and end-to-end encryption.

Codex currently operates a public Non-Incentivised Testnet, and TACo is available in testing mode, with production use gated by mainnet configuration.

Let’s examine how decentralised applications can benefit from integrating Codex with TACo.

Distributed Storage with Decentralised Access Control

Integrating Codex and TACo brings native encryption and access control to decentralised storage, creating a secure-by-design architecture for sensitive data. 

Codex provides a robust foundation for storing content in a decentralised, permissionless network, while TACo provides a trustless and secure mechanism for encryption and access control without relying on centralised third-party infrastructure operators.

TACo adds programmable access conditions enforced at the cryptographic level. Content can be encrypted directly in the browser, using public keys generated through a distributed key generation process. Decryption is then tied to TACo conditions, such as whether a user holds a certain token or is accessing the file within a defined time window.

Together, Codex and TACo create a powerful platform for applications that require fine-grained data sharing. Developers can use these tools to build apps that guarantee data availability and user privacy without a central authority, whether it's collaborative tools, governance platforms, or social media networks.

TACo Integration with Cyphershare

Cyphershare is a working proof-of-concept that showcases the functionality that is possible when Codex, TACo, and Waku are combined. It is a decentralised file-sharing dapp that uses TACo to encrypt files in-browser before uploading them to the Codex network. 

Users can set access conditions through TACo, ensuring that only specific recipients can decrypt the files. Waku, the scalable and reliable p2p comms stack, handles the decentralised messaging layer, ensuring file metadata and sharing links are transmitted directly between users securely and without centralised servers.

With TACo integrated within Cyphershare, decentralisation can be preserved at every layer. There are no central servers for storage, messaging, or access control. Encryption keys are generated and shared via decentralised infrastructure, and file persistence is guaranteed by Codex’s resilient storage network. 

Despite this, the user experience remains seamless, allowing users to upload, share, and grant access to files all in one flow.

For developers, Cyphershare also serves as a reference implementation for integrating TACo’s encrypt/decrypt flows with Codex and Waku in practice. 

Try the Cyphershare application here, or visit the TACo documentation for more information on how to integrate the protocol’s decentralised encryption with Codex into your application.

Codex currently operates a Non-Incentivised Testnet, where anyone can install and run a node operating in a peer-to-peer Altruistic Mode.

Help build the future of decentralised storage or integrate Codex into your application. Get started at docs.codex.storage.

Follow us on social media, join our Discord, and subscribe to our newsletter to get the latest updates from Codex.