When personal machines are incorporated into distributed
systems a new mixture of threats is exposed.
The security effort in the MobyDick project
is aimed at understanding how privacy can be protected
in this new environment. Our claim is that
a two-step process for authentication and authorisation
is required, but also sufficient. The research
vehicle is a distributed file repository.