blockstagram
an idea by dyrk.
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665365/blockstagram-icon-192x192.png)
whats wrong with Instagram ?
they own your images
(if they go offline, your images do)
all or nothing access control
their image urls are public
Approach
- Keep your profile on your own machine!
- Encrypt the images before storing them!
- Provide access to every follower individually!
obvious disclaimer: you always can
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665113/baby_screenshot.jpg)
make a screenshot
some facts about instagram
- a Facebook company
- owns 40bn photos
- 800 million monthly active users
- business model: analyse your photos to present ads
- (they may use your pictures for anything)
- they can be hacked (2017!), sold, ddosed at any time
Blockstagram
decentralized instagram
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665365/blockstagram-icon-192x192.png)
Safely Persisting images
- blockstack.id: source for trusted user profiles
- use a distributed file storage
- use blockstack's gaia hub
- or bring your own trusted storage
- look ma, no public image urls
- (getFile API)
- symmetrically encrypt image data
store images
dyrk.id
image/<md5>
image/<md5>
image/<md5>
storage
custom symmetric
aes certificate
![](https://imgflip.com/s/meme/Beard-Baby.jpg)
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665291/baby.jpg)
There is no "image server"
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665106/Screen_Shot_2018-03-04_at_12.14.30.png)
it even looks like instagram
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665394/Screen_Shot_2018-03-04_at_15.01.56.png)
Share your images
dyrk.id
![](https://imgflip.com/s/meme/Beard-Baby.jpg)
custom symmetric
aes certificate
"password"
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665291/baby.jpg)
Others cannot read your images
dyrk.id
stadolf.id
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665291/baby.jpg)
1. encrypt your secret
dyrk.id
stadolf.id
public
key
dyrk encrypts his secret aes key
("password") with stadolf's public key
"please add me"
ok
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665291/baby.jpg)
2. share the secret
dyrk.id
stadolf.id
public
key
private
stadolf decrypts dyrk's key with his private key.
He now has dyrk's key to the file
stored
@stadolf
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665291/baby.jpg)
3. grant access
dyrk.id
![](https://imgflip.com/s/meme/Beard-Baby.jpg)
stadolf.id
public
4. revoke access (Poc)
- create a new AES key
- reencrypt all the images' hashed locations
- your followers' old "password" stops working
- every follower repeats the grant step
- followers you don't want don't get the new password
Is dyrk happy now?
- safe, encrypted storage of his images
- simple & private access management
- it looks like Instagram (meh)
I think he's happy now :)
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665334/dd.jpg)
(c) Facebook
Is the team happy now?
(c) Instagram
![](https://s3.amazonaws.com/media-p.slid.es/uploads/833354/images/4665583/DXc5aKSXUAAMW2z.jpg)
(c) Twitter
People ❤️
Robert
Nathan
Timo
Ben
Peter
Markus
Stefan
Artur
blockstagram
By Stefan Adolf
blockstagram
- 1,267