Vault model
The vault sits on top of the user’s TinyCloud space and is available through the Node and Web SDKs. When you unlock it, the SDK derives the encryption keys from wallet material and publishes discovery metadata so other principals can share data with you. The important split is:- primary space: encrypted vault data and sharing grants
- public space: discovery metadata only
What the vault is for
- client-side encrypted KV storage
- per-entry encryption and decryption
- sharing encrypted values with another principal
- keeping ciphertext usable across sessions while leaving plaintext local
