Banyan starts with files. We take a filesystem locally on your machine (in the case of the CLI) or an empty filesystem initialized to take files (for the SDK and webapp) and put it into a content-addressed, versioned, audit-logged, and encrypted format, called BanyanFS. You can read more about it here: Drives and BanyanFS.

We track the most recent root hash and manifest of blocks to keep live in our infrastructure, on GCP. People who can write to a given drive are allowed to write blocks to the network (metered under that drive) and update the root hash in our infrastructure.

Banyan keeps track of how much data you store and retrieve. We have integrated with Stripe and bill all users in USD.

One day we might integrate crypto- let us know if you're interested so we can prioritize that feature https://banyan.computer/contact

Coming soon: we'll add lifecycling policies to the clients, making it so they can flag blocks for expiry.

Lifecycle policies will look like "don't keep old versions that have been out of date for more than five years" or "only keep the past three versions".

When our infrastructure gets an expiry request, we forward it to the appropriate storage providers to queue the data for deletion, and stop billing the customer for the storage as soon as it's removed from the network.

Fulfillment of expiry requests is covered by our SLA and can be validated on Filecoin. It may take longer to tombstone old data on cold storage than on hot storage.

We select where your data goes inside our infrastructure, based on a variety of factors including SP performance, available capacity, sealing capacity, and more.

Banyan SPs are vetted and monitored for performance and uptime. To make extra sure that your data is reliably live, we built our monitoring system to run alongside Filecoin's Boost and Lotus. It handles uptime and outage monitoring, ACLs, serving hot data, staging cold data for onboarding to Filecoin, and more.

Learn more here: Storage Providers.

Your local copy of BanyanFS's headers knows which blocks are where, and which ones correspond to which file. When you open a file, it isn't necessarily stored locally. Your client will first get a signed grant from the Banyan servers to check the permissions, then it'll fetch it for you from a storage provider that has a copy. The SP is running our monitoring binary to check that you have access to that block and have paid for the bandwidth, which checks the signature on the grant and then sends you the data.

Items on the roadmap include better load-balancing to ensure that you get a fast download speed on the first try, or torrent-style download from multiple SPs to optimize throughput.

We do ACLs by having clients get a retrieval grant from our servers, which check who has read access to which drives. Then the client presents that to the SP, whose monitoring binary checks the signature, and then they send the data back.

We enforce the ACLs on the SP side (i.e., making sure they don't just hand your data out to people who fail the ACL check) using our binary and a contractual agreement between Banyan and the SP.

This is somewhat inspired by Kerberos. We use UCAN for our retrieval grants.

Read more here: Permissioned Retrievals.

Banyan's self-healing properties ensure user data remains protected. If one or more SP experiences issues (i.e. network outage or hardware failure), a user's data is automatically replicated and stored on working SPs. Our infrastructure orchestrates failure detection and the data move. Learn more here.

Our S3 API is coming very soon. See S3 Compatibility Layer.

IPFS availability (for blocks, or for UnixFS-formatted files) is further out. If you would pay us for this and have a sizable amount of data, reach out on our website (and we might prioritize this feature higher).