| 主权项 |
1. A computer implemented method comprising:
receiving, by a proxy from a first client node, a file to be stored by a cloud storage server, the proxy and the client node being part of a private network that does not include the cloud storage server; retrieving, by the proxy, an encryption key associated with a user of a client node; encrypting, by the proxy, the file using the encryption key; transmitting, by the proxy, the encrypted file to the cloud storage server; generating, by the proxy, a public link for accessing the file, wherein the public link includes a unique identifier for the file and points to an address of the proxy, and wherein the public link is provided by the first user of the first client node to a second user of a second client node; receiving, by the proxy from said second client node, a request to access the file, the request being initiated via the public link; verifying, by the proxy upon receiving the request, that the public link was previously generated by the proxy; and in response to the verifying, if a copy of the file is not locally available on the proxy:
retrieving, by the proxy, the encrypted file from the cloud storage server;retrieving, by the proxy, a decryption key associated with the first user;decrypting, by the proxy, the encrypted file using the decryption key; andtransmitting, by the proxy, the decrypted file to said second client node. |
