AO.space Protects Your Personal Data and Privacy
Have you ever faced issues like personal data loss or privacy breaches? In the digital era, protecting our personal data and privacy has become a headache. Just as we keep our furniture safe in our homes, we require space in the digital world to protect our personal data.
AO.space helps keep your personal data safe. It uses techniques like end-to-end encryption and device-based authentication to give you full control over your accounts and personal data. You can access your data anytime and anywhere thanks to features like transparent platform forwarding, point-to-point (P2P) acceleration, and direct LAN connection. AO.space also leverages progressive web application and cloud native technologies to build an application ecosystem that seamlessly integrates the frontend and backend.
System Architecture
The architectural design of AO.space consists of three major components: server, platform, and client. The server, deployed on a long-running, connected device like a personal server, is the core of AO.space. Clients are regularly used devices like smartphones, tablets, and computers. AO.space offers clients for Web, iOS, and Android. The platform provides network services without the capability to decipher user data.
AO.space Server
The server consists of software, hardware, and an OS (such as openEuler). On top of the OS, various space-related services and essential modules are deployed as containers, including:
Web service (Nginx) : handles incoming traffic to AO.space.
Agent : bridges the clients, platform, and server.
Gateway : routes, forwards, encrypts, decrypts, and authenticates API traffic, and authorizes requests to the AO.space application layer.
AOFS : combines object storage and file storage to store and manage space files.
Preview : generates previews for space files.
ContainerMgr : communicates with underlying container services.
SQL instance (PostgreSQL) : stores and manages data in relational databases.
NoSQL instance (Redis) : stores and manages data in non-relational databases and provides messaging capabilities.
Network client : helps in transiting network traffic from the Internet to the office or home network through network address translation (NAT) and establishes P2P connections with AO.space clients.
Applications : expand the functionality of AO.space. These built-in or third-party applications (such as CardDAV and CalDAV) can be accessed using the space domain name.
AO.space Clients
Clients, as the frontend of the AO.space system, give you access to all AO.space functions. AO.space offers Web, iOS, and Android clients that incorporate key modules, including:
End-to-end Encrypted Channel
File
Device
Space Application
Developer Option
Security
AO.space Platform
The responsibility of the AO.space platform is to establish a transparent communication channel for personal equipment. It includes the following modules:
Base Service : provides the registration service of AO.space, and coordinates and manages platform network resources (domain names, communication channels, etc.).
Endpoint : handles and dispatches the overall traffic within the AO.space ecosystem.
Transit Server : forwards network traffic so that you can securely access the server through the Internet.
Open Source Practices
The AO.space project has been open-sourced in its entirety. At openEuler Summit 2023, AO.space introduced an open source solution based on openEuler, aiming at protecting personal data security and privacy. During the event, AO.space was contributed to the openEuler community, so that more developers can jointly explore personal privacy protection techniques on this basis.
Find more personal data and privacy protection solutions in AO.space and openEuler!