This looks interesting and seems to have some known people on the board of directors such as Stephen Wolfram but I couldn't find pricing or much details as to how it functions. Permanent data storage is a big promise and a non-profit model could work if the people involved are commited.
You pay $10 per Gb but this is a one off payment rather than annual. The money is supposed to go into an endowment that will pay for the storage costs long term.
Aren't one-off payments to cover running costs provably unsustainable? It relies on continuous growth to support old users. I personally would want to rely on a service that might close at any minute because it stopped growing.
The idea is that they'd form an endowment. So they put your $10 in some sort of relatively safe investment, and every year it grows by, say, 1%. So then they have 10¢/year/GB to spend on storage costs.
At 10$/gb they are charging 200 times what you pay for a gb elsewhere for a month. So they are at least getting 200 months worth of money from you upfront. Even aside from what the others mentioned with the endowment.
OK, "guarantee" is a bit strong. But for example, if the keys are generated client-side and they never see the key, like on tarsnap, then I wouldn't have to take them at their word that they totally promise not to look at my files.
The problems here are searchability, padding to hide sensitive file size, and having to move large containers back and forth to make small edits. If the remote backup is designed around a proper client-side encrypting product, you can have all this easily. If the encryption is done with a plugin, you might accidentally forget to pipe backups through it, or you might misconfigure something. So yeah there's things like cryptomator, but they'll never be as properly designed service with automatic client-side encryption.
Mmmn, it's just a promise... Doesn't mean it cannot be broken. Not sure it will survive a change of management, too. Here's a primer for you ;) [0]
It's in your power to do your own mangling before uploading. The same with redundancy: don't put all your eggs in one basket (fancy promises or not). Good luck!
I guess you'd have to do E2EE yourself. (Which _in my opinion_ is the only viable E2EE anyways because I always found it kinda fishy if the party you're trying to protect against also provides the tools you use to protect yourself. But like i said, that's just my opinion.)
>I always found it kinda fishy if the party you're trying to protect against also provides the tools you use to protect yourself.
It actually makes perfect sense the company would want to provide the tools that protect you from them. Take Signal for example, it's a messaging app that does beautiful integration of E2EE into the message transfer product. It's much better than e.g. OTR-plugin developed by Goldberg, Borisov et. al. for Pidgin etc.
What matters is transparency: Does the company allow you to verify their native client does proper client-side encryption, and does that FOSS code have reproducible builds. If yes, then it's much better the company spends some of the revenue from sold space into developing and auditing the client and its cryptographic implementations.
I agree, it's not impossible for a storage provider to also provide trustworthy E2EE. I trust some of these providers as well.
It's just kind of a gut feeling that centralization of power (i.e. possession of the data and knowledge about and control of the encryption mechanism) makes such a service a more attractive target to compromise.
Of course, if you really wanted to get the data of a specific person all you'd have to compromise is the encryption funnel regardless of where the data is stored. But I'm thinking, distributing control over the storage and the encryption is gonna make it a lot harder to do that because there's no single party that knows about both other than you.
The abuse penalizing part is rarely proportional to the income of the company. When the penalty, if you get caught, is just a slap on the wrist, it makes sense to just count is as a fee for making business.
even cryptographic guarantee doesn't mean shit, the "cryptographic guarantee" is exactly what all the scammy blockchain crypto ICO scammers provided.
At the end of the day, these people can just take all that money, keep some for themselves, and say "ok we tried our best but didn't work out, it was an incredible journey!" and be done with it. and nobody can hold them accountable.
If they really want to do their best to "guarantee" permanence, they should guarantee the debt relationship, so if the forever condition doesn't hold after a couple of years, they will be sought out and collected all the money they took.
> If they really want to do their best to "guarantee" permanence, they should guarantee the debt relationship, so if the forever condition doesn't hold after a couple of years, they will be sought out and collected all the money they took.
What's to say that there would still be an organisation left to pay up the debt?
They'll probably need to hold some funds in escrow for it.
Based on who is on their governing board, I think one of the use-cases here is to preserve files you would want to pass on to your descendents. You wouldn't necessarily want to have it cryptographically secured with E2EE.
I have old 5.25" and 3.5" floppies, full of software written by my father during the course of developing his dissertation. He died several years ago.
My original plan was to take whole disk images of it and stash it in the commercial cloud, ... but I'm probably going to stash a copy on permanent.org instead. I have no idea if my descendents would care about it. However, it is a memorial that (if the foundation does what it promises to do), not something I would have to do upkeep after I die.
A while ago one of my cards was stolen and I got a new one. It took a month before I realized my contact lens subscription had stopped. Luckily contact lenses are easy to get and I try to keep some extra around as well.
A bigger problem however was 20 or so years ago was that when I was drafted and I suddenly couldn't check my email for a while and after 14 days I lost access to
- my old address that everyone knew
- all my mail
- and most of my contacts mail addresses
Fixing that is a lot harder and I would be happy to pay a premium to be sure that some things stay around even if my house burns down with my NAS inside while I'm in hospital and my CC is cancelled while I'm unable to notice it.
BTW: feel free to post your suggestions. My best ideas are to ship encrypted disks to one of my brothers/sisters and parts of the passwords to two others In case I lose them or in case I die and someone needs wants access to my accounts.
If I store data with my family there's two kinds: the kind I encrypt because I don't want anyone else to access it and the kind that I don't encrypt because of I want them to be able to access it. Adding a fallible model with several people holding access might end up leaving your data inaccessible...
- Or hidden in a wall and forgotten only to be found by the next owner? Weirder things have happened.
- Or uploaded to the public internet by accident. Warning: (hopefully)[0] wild hyperbole ahead. While I don't have much to hide (today) who knows about the future. I'd rather not want to see my photoalbum indexed to death by clearview and results sold to a future Nazi/Communist/Peta regime who'll use the face database to track down my grandchildren to punish them because their grandfather hated Nazis/wasn't exactly too fond of Communism either/ate meat and owned a rabbit.
- also for anything in the second category I guess the correct solution is an online server + encrypted backups with passwords available for everyone. Or just use backblaze or something and hope I don't become unavailable until some of my kids or their kids are old enough to become sysadmins ;-)
[0]: but who would have thought 100 years ago that lists of people's faith would be used 20 years later to systematically track down people not based on what crimes they had done but rather based on heritage only to round them up and kill them?
If you want to encrypt your data before you upload it, surely you have that option? In fact that really the only way it could work, if they did the encryption and have your back the key, you'd have to trust them that they're not keeping it too.
I can understand why they don't want to add a big barrier to entry by requiring that.
> We may terminate or suspend access to our Service immediately, without prior notice or liability, for any reason whatsoever, including without limitation if you breach the Terms.
Is this normal? So I guess this is not a good place to store a copy of my encrypted password file?
Or am I misunderstanding and it means that they can terminate my account only if/when I breach the Terms?
People who give money to museum and university endowments typically attach conditions that are very much meant to be litigated if they are ever violated. The recipient expects this. They don't make promises to donors, they sign contracts that force them to use the money the way the donor wants them to.
These terms and conditions are ridiculous if they want to be compared to museums and universities.
What does an art museum's art receipt 'termination clause' look like?
When one lodges their collection with a museum "in perpetuity" I'd expect the museum to have a disposal clause that lets them dump non-profitable works?
Works gifted to nations seem to get sold off occasionally, I'd guess that's by virtue of renovation clauses that allow the receiver a veritable carte blanch?
The term that I think you are looking for is called "deaccessioning" and Wikipedia has what I believe is a good page about it. Sometimes there are conditions, and the museum may have to go to court to be allowed to move forward (and a judge may not allow it).
If we're going to compare those terms and conditions, then also consider this: the people who normally give those kinds of endowments are donating at orders of magntitude larger amounts. The size of those endowments gives the donors the leverage to attach those terms and conditions. What's ridiculous to me is expecting that a micro-endownment of $10 is going to give the donor the same kind of leverage.
I think that this is a pretty fair rebuttal, but I'm not sure I personally am convinced. First of all, this entity is inviting the comparison and second, they are saying that $10 is all you need to have something stored in perpetuity.
I wrote elsewhere: I know that there is nothing in the universe that is actually permanent. This is one of the insights from my meditation practice, things come and go. That includes my health and my life. So when I throw that idea out, I can see what they are really offering.
This isn't really meant to benefit you. This is meant to benefit our children. If the foundation survives longer than my own life, then I can put files that may be of value to my children and great-grandchildren. It would be up to them to value the preservation of their own digital history and cultural heritage to continue supporting this mission.
Both the founder of the Internet Archive and someone from the geaneology industry are among the board. I can see this idea being cooked up as, "hey, what if we were able to offer regular people their very own micro Internet Archive?" "What if we were able to pass on digital photos to be discovered by our descendants the way we have been able to discover photos from the late 1800s and 1900s?"
When viewed from that lens, about what happens to data after you die, $10 is a cheap gamble. This isn't really a promise made to me. This is a promise made to my kids. It may not be a promise that the foundation can keep, but I value contributing to my kid's heritage enough to risk $10.
I am still going to keep my Google Cloud and Dropbox, and whatever. But the 1 GB I have from this foundation is for a time capsule, stuff I really want to have a shot of passing it down. My kids won't care about my cat memes, or my passwords, or stupid videos. But they may want their baby pictures. They may want their grandpa's and grandma's dissertation.
When I die, my Google Cloud drive will shut down. But if things work out with Permanent.org, those files will continue to be there. I won't have to burden my kids directly with its upkeep. And perhaps, when they are older, they will come to value having access to it.
Maybe they have not sold their vision well enough. But I guess, they only need just enough people who gets it to kick this off. They are already 75% of the way there.
I guess the issue I have is that you have mentioned "cheap gamble" and "if things work out". This is not what they are claiming, except in the fine print.
Institutions that last a long time plan for changes in management. Contracts are part of that. I think I understand their vision, but they need to put themselves out there and be willing to be hauled into court to make "permanent" happen. If that's not what they are saying, then I guess I just don't understand.
> Contracts are part of that. I think I understand their vision, but they need to put themselves out there and be willing to be hauled into court to make "permanent" happen.
In cases of severe data loss or organisational insolvency, I'm thinking that there might not be an organisation to haul to court.
What might work for the end users of such an organisation is transparency of some sort, including the publication of regular financial statements and board minutes.
I'm ok with the level of accountability they have, and you are not. As far as a personal decision goes, that is up each of us individually. I'm ok with your decision not to participate.
Personally, I think the consumer protection and litigation has not done the US much favors, culturally speaking. It's gotten to the point that people think that Kickstarting pre-funded products have the same kind of guarantees. I have seen people get ragingly upset when their $5 kickstarter contribution amounted to nothing. I blew $1000 on a kickstarter project once knowing I may never see it again. (I got to go to a nice party out of it and got to meet Neal Stephenson and other fans; that was enough value for the $1k; they definitely did not deliver everything they promised).
It is why early-stage investment opportunities had been iffy -- unsophisticated investors treat what are essentially investments as if they were consumer products with the same kind of consumer product guarantees. It was why the SEC was founded in the first place, to protect "widows and orphans" and other unsophisticated investors ... and why regular folks get locked out of the better opportunities. Because somehow, our consumer mindset does not include an education on being an investor. There are no guarantees, just balancing risk and rewards.
With permanent.org, I'm investing into a future, not buying a product. I've thought through the risks and I made the decision for myself. I mean hell, during this pandemic, I have seen people want guarantees on even things like that their health. Get this treatment, save your life, or your money back? Demand service and sanitization supplies from hospitals, because the customer is always right? And now, I see this bizzare reaction of fear, derision, and ridicule on this non-profit vision. I'm not saying you are ridiculing this, mind; there's already enough of it from other commenters.
Don't get me wrong, I know there are plenty of scams around. It isn't as if I have not been conned before. However, it is often my pride, not my wallet, that has been hurt. I've seen much bigger cons, some even legitimized, with clear public harm. ... Enron causing brownouts to manipulate energy prices. Residential real estate valuation bubble ponzi scheme that is somehow normalized. The travesty called "No Child Left Behind Act" that shifted education further away from educating kids and teaching them to critically think while being emotionally intelligent. I can go on. Permanent.org's flaws in its marketing and messaging, its ambition to try to fund this through an endowment, is such a tiny blip when compared against the much bigger systemic problems and legitimized scams. If someone doesn't want to donate to permanent.org, then don't donate. Why are people getting so upset over this promise of "permanency"?
Nothing is ever permanent. I've seen so many services come and go, that I'm quite sceptical about relying on cloud services for my data. My 25+ years of data is on a local NAS and on an offline copy at a trusted location.
> I'm quite sceptical about relying on cloud services for my data.
I'm quite skeptical about relying on VC-funded or publicly-traded cloud services. An actual non-profit could be a lot more reliable: as long as expenses are less than income, there's no pressure to grow, and it could go on forever.
The big thing I'm skeptical about is growth in data needs. 5GiB free iCloud was more than enough 5 years ago; when I upgraded my iPhone, suddenly all my videos take 8x as much space. $10 for 1GiB forever storage sounds OK now, but what happens in 20 years when a single photo is 500MiB?
If you need more storage, buy some more when you need it. The endowment price should be correspondingly lower.
An interesting side effect is that people are calculating the endowment interest in this thread (a hard thing to do when rates are near-zero and there is a real risk of negative rates in the next 50 years), while the big factor is that storage prices drop dramatically over time.
Imagine if this service had launched 20 years ago. $10 would have bought you .. maybe 20MB? Pretty cheap to store that "forever" now.
> Imagine if this service had launched 20 years ago. $10 would have bought you .. maybe 20MB? Pretty cheap to store that "forever" now.
That's a good point, but I don't think in their favor. At the rate that they're charging, you could prepay for 36 years of storage on S3 (neglecting bandwidth charges, which I know are substantial).
Compounded with your point that data storage costs are tanking, I would actually expect $10 to go even further. Which is also not to mention that they're planning on paying for their costs on interest from their endowment. Turns out I can also put my money in something that generates a profit.
I just don't see the point. They seem like they're trying to build S3 but without any profits, which at best makes them a marginally cheaper option, and at worst, a more expensive and less well featured S3.
They aren't building anything. They are storing data to S3, B2, and Internet Archive [1]. The fact that they are storing to multiple providers means that the costs should be higher than yourself just storing on one provider. That is before taking into consideration that the dividends on the trust need to meet the cost. The return on $10 needs to cover the costs of storing in S3 and B2.
> $10 would have bought you .. maybe 20MB? Pretty cheap to store that "forever" now.
On a macro scale, 20MB is still pretty difficult to store "forever", especially if you need to involve a significant number of trusted people, over a long enough period of time (basically forever), to ensure that it's around.
I am personally a supporter of this foundation's mission -- more because it gives our civilization an alternative to cloud storage that is not controlled by Big Tech.
However, realistically, I don't think we can assume that storage prices will drop forever. That depends upon continued advances and breakthroughs in science, engineering, and commercialization efforts. I recognize that, ironically, Big Tech help drive storage prices down. It may be a generation, or five, or ten, but the tech advance boom won't go on forever.
I don't know if the foundation will be around at that point. It is pretty ambitious, and perhaps, they may have to change their charter. The founder of the Internet Archive is on the governing board of this foundation, and I can easily see this idea cooked up as, "hey, what if every Joe and Mary can have their own micro Internet Archive?" "People have photos of their great great grandmothers 100 years ago, but everyone's stuff is no digital; what if they could have saved that for their kids? Would they have a place to stash it even after they die? ('cause, you know, no subscription fees) Can you depend on Facebook to memorialize that?" (One of the people on their board is involved in a geaneological company)
I think it is a good vision, although their plan is not without risk. (But what isn't?) We're also depending on our descendants to value these personal, mini vaults of data to keep donating to preserve it (if the endownment model does not work). But you know: we would be dead and it would not be up to us to value and preserve our own history.
I am really surprised at the amount of backlash I see on this forum for it.
They chose a 1-time payment model (which funds an interest-generating endowment), which seems a lot weirder than a subscription.
This actually makes sense -- if the goal is long-term set-it-and-forget-it, it solves the problem of getting a new credit card every few years & forgetting to change this service. It also eliminates any recurring payment-processing fees.
The back-of-the-napkin math checks out: accounting for storage, data-transfer, and business overhead, if they pay around $0.20 / GB / year, and they charge $10, then with 0 interest they would still have your files for 50 years, which is probably longer than your children will have your password to this service.
I still wouldn't trust it -- I have a pavlovian response to the combination of "permanence" and "give all your data to this new internet service". Maybe it's irrational here, but still, this product is at the wrong layer of abstraction for me personally :)
I think the idea is to convey that just like a bell has no natural link to food anticipation of which causes salivation, the fact that x has always (at least as far as we remember) come with y which causes z means when we see x, we fear z will happen even though x and y need not necessarily have to come together?
I believe there are people who won’t forgive text drive / Joyent for their dishonesty and sincerely we must never trust the leadership at Joyent with anything as long as they roam the earth.
Pavlovian conditioning [0]:
"a learning procedure in which a biologically potent stimulus (e.g. food) is paired with a previously neutral stimulus (e.g. a bell)."
In my case:
food: losing all my data (or it becoming incredibly difficult to access / control / afford)
bell: uploading all of my data to a new internet product.
----
Most companies have unsustainable business models (grow forever).
For startups, this is especially true (rapid growth forever).
This is a new internet company, but their whole shtick is that they have a sustainable business model. Given that data, maybe my bias is unfair.
I'm skeptical of "sustainable business" claims, as they trend zero cyclical models. So, if this is how this group is doing business every week, month, and year, they just have a different approach, not a sustainable one.
Sustainable means a business shifts between periods of focused growth and periods of focused stabilization. You grind for acquisition for awhile, then you pivot into shoring up operations during a period of controlled churn. Sustainable business should be able to withstand any sudden, dramatic shifts in the market or loss of accounts, and have enough resources on-hand to have something like a continuity plan for revenue.
How many people have their Geocities site pulled from them?
I think this foundation's mission is great. I'm not expecting things to be "permanent". I already know that there is no such thing as anything that is permanent, including our lives and our health. If there is no such thing as absolute permanence in anything, then I can throw that idea out and look at the rest of what they are offering. To me, it is irrational to think that just because someone _doesn't_ say their stuff is "permanent" doesn't mean you can trust them as well.
What I see in this foundation is something that supports the internet that is not controlled by Big Tech. I think about my children and where we are going in our society, and I think that is something that I value. I valued it enough to have already pledged a donation for the price of two latte.
It's indeed better than that: storage costs decrease over time (probably at an exponential rate), which means that, in theory, you can pay upfront to have your data stored until the end of time (or our civilization). Well, at least if they can protect the money from inflation. (I've played with the numbers a few years ago when I got upset that my bank won't preserve my records nor my statements, at least in an accessible form, for more than 6 months.)
> While the endowment model of the Permanent Legacy Foundation is designed to keep yourmaterials into perpetuity, it is not designed to be a high-traffic heavy-bandwidth hosting site.With the exception of approved nonprofit partners, we do not allow references of embedded15Permanent Legacy Foundation Manifesto
materials on external sites for, and we must reserve the right to throttle or block abusive traffic
"Permanent" and "free tier" sounds like a particularly terrible combination.
The market failure here is the classic "market for lemons" problem. Too many people have been burned by "forever" pricing that turned out to mean "a few years", or the bankruptcy or acquishutdown of a company. So any new entrant will face intense skepticism, no matter how sincerely they are trying.
So far the only permanent pricing that's worked for me is my grandfathered permanent Pinboard account, and that has a bus factor of one and a bit.
Storage is suited for it though. Most data, and especially photos, stops being accessed after some time and could stop consume bandwidth and electricity given properly designed infrastructure. Not that there is even a need to keep it forever, removing data not accessed in say five years or a decade is likely to still meet realistic durability guarantees any organization could provide, if it ever comes to that, which might be the case once they run out of physical space. Because of that such service can be offered as a "forever" service as long as the rate of new payments is enough for running it. But this is also where it gets tricky, the price they are shooting for right now is crazy unrealistic, it's at least an order of magnitude higher than competitive range, so they won't have many customers who can multiply and won't be able to attract enough customers to sustain it.
> removing data not accessed in say five years or a decade is likely to still meet realistic durability guarantees any organization could provide
This is exactly the sort of policy that a "permanent" storage facility must promise never to enact. The whole point of something like this is for stuff you don't need regularly but want to keep forever.
Every year or so I log into the dropbox account that has a copy of my wedding photos in. I don't need to look at them, but I want to keep them.
The non-profit take on this is new, however, there are for profit cloud services that offer similar one-time payment "lifetime" plans.
Pcloud for example charges a one-time lifetime 0.35 cents per GB, and their marketing language states:
"We have defined a Lifetime account as 99 years or the lifetime of the account holder, whichever is shorter."
Some thoughts on this:
It probably works better at scale if you control the storage infrastructure (to control the costs). If you are reselling Amazon, and 10 years from now they either raise the price significantly, or discontinue the storage you are using, how would you maintain the service without new (renewal) cash flow.
To solve this later in life you would want to / need to migrate the data to newer better more cost efficient storage. There are large scale costs associated with doing this. Dropbox eventually moved away from Amazon for these reasons, which provided balance sheet savings but it gets fuzzy when factoring the real world costs of owning and maintaining large scale storage infrastructure.
Offering 1 GB free and file sharing between accounts is an invitation for nefarious activities, and it seems like the only way they could manage that would involve breaking one of Permanent.org's core tenets ... Someone will have to look at the files to police it. Or the free 1 GB becomes a liability, not a loss leader. How will they do this?
Once they have your money and a few years have passed there might be an incentive for the organization to gradually degrade the service. Make it more and more difficult to use, in an effort to keep costs down.
And 10 years later when they lose interest in the project, what would stop them from selling the whole thing (cashing out) to a for profit firm ..... Looking at you .ORG / ICANN?
So Backblaze B2 costs $0.005/GB per month for storage. Let's see what are my options here, I could prepay 166 years at an unknown company with an unclear record of operations (I see the governing board is full of rather famous people but still -- that's not ops) and financials. Or I could just keep going with a company which has proven over 13 years it is solid both ops and financials wise.
Not to mention you could have a fund that pays the backblaze bill and as that monthly price dwindles over time the interest on your money would pay it in perpetuity.
If something like permanent.org is setup intelligently they can even have a plan for a backblaze demise (god forbid) and use the fund to migrate to another provider(s) in that case.
> Not to mention you could have a fund that pays the backblaze bill and as that monthly price dwindles over time the interest on your money would pay it in perpetuity.
Assuming we're talking about storage in perpetuity without the need for maintenance, the fund would need someone trusted to administer it.
I personally wish there was an inexpensive, trusted place for me to deposit a large sum of money, and have it automatically paid to service providers to maintain my domain/hosting/online identity in perpetuity, or until my deposit/endowment runs out.
If you don't need to have your data in the cloud, there's also the option of just buying the drives, backing up your data and then putting them in a box, no need to keep them spinning unless you need frequent access to said data.
B2 is $0.06/GB/year, while a regular HDD would cost ~$0.03/GB/drive-lifespan.
This was mostly a cost comparison I wanted to show, as the solutions of rolling your own set up at home vs a cloud set up are definitely very different.
At 10TB, you're paying $600/year on B2, a price at which you could outright buy two 10TB drives and stick them in a larger NAS setup with ZFS or a simpler RAID-1 array.
That's reasonable. Alternatively, I'm using Arq[0] (locally encrypted before upload, uploads to tons of different services, I'm using AWS S3 and Google Storage) so I'm paying ~$7/month for about 40G stored. And I don't have to worry about local drives dying or being stolen. Just another option.
> but I thought it was advisable to power up spinning platter disks at least every so often, once a year say?
Is there a specific reason why you would need to do that? I'm not really aware of any.
> And where are you keeping this backup, same box?
This is ultimately up to you, depending on what kind of redundancy you deem necessary and whether you have multiple physical locations where you could store the said drives.
The ball bearings have lubricant that can shift over time due to gravity. And the metal parts might weld to each other over time if they are not moved.
I think the welding takes more than a year. The lubricant settling probably depends on the quality of the drive and the ambient temperature. And I guess the ball bearings would be pretty tolerant (since you only have to move them a little to get the lubricant on them again), it's more likely that the heads would stick.
These days, hard drives probably scrub themselves periodically, looking for and rewriting sectors with high error correction error rates.
SSD’s definitely do this.
Even if hard disks don’t do this, mean time to repair is a crucial parameter in raid durability calculations. If you spin the drives up once a year, the mean time to repair is 6 months. Most raid systems are likely to lose data if it takes more than a few days to repair.
Don't forget B2 involves putting that data onto multiple hard-drives and ensuring it isn't lost. What if that single disk were to be lost? You're paying Backblaze to ensure that GB can be accessed in the future
B2 costs more than that, unless you never download anything. (Not taking into account exploits like utilizing Bandwidth Alliance and Cloudfare free tier to get free egress.)
> The Service is offered primarily as a platform to cache and serve web pages and websites. Unless explicitly included as a part of a Paid Service purchased by you, you agree to use the Service solely for the purpose of serving web pages as viewed through a web browser or other functionally equivalent applications and rendering Hypertext Markup Language (HTML) or other functional equivalents. Use of the Service for serving video (unless purchased separately as a Paid Service) or a disproportionate percentage of pictures, audio files, or other non-HTML content, is prohibited.
It’s okay at least for serving images (as long as you use workers): https://news.ycombinator.com/item?id=20791660 from CloudFlare CEO. It’s not clear to me if piping terabytes over terabytes of, say, opaque data would violate anything.
This is a clever exploit none the less (not a pejorative).
Hard drives should not be left unattended for even a few years with any expectation that they will still function when plugged back in. Sure, many will, but it's a crap shoot: Under ideal conditions an unused hard drive can be expected to retain data for 9 to 20 years. [0]
I found the approximate time frame in a few places, but never with any primary source. I also came across the claim that hard drives used to be more mechanically robust, and perhaps failed less often for such reasons. Again, I couldn't source it though.
Well yes but I heard that b4. You should just put on your calendar to plug them in (and update the backup) once in a while. I do not think it is about mechanical robustness. It is about the way the data is stored with magnetic tech, it think HDDs should be operated every once in a while to have a better chance of not loosing the data. But 9 days sounds awfully short.
Having tried to keep "permanent" backups of my personal digital data for 35+ years, I should point out that one should not underestimate the problem of technological change.
The "device" you use today will, in all probability, not be usable after a number of years, no matter whether you spin it up regularly and maintain it in a working condition.
I have backups in countless floppies, diskettes, Zip drives, 9-track, QIC, DAT, SCSI, ...
I've never heard of Blackblaze B2 but it seems good according to some reviews and cheaper. Does it have a Desktop app or UI or something like that? I'd love to replace Dropbox with this. If not, someone should do a UI wrapper around B2 and charge for it ;)
What's also interesting about this question is that storage density continues to double every several years. It would be safe to assume that the entire current planetary storage would fit on a thumb drive 166 years from now. Maybe by then it'll be magneto-spintronic-DNA time crystals.
I think your comment just put a lot of people on to Backblaze B2. At least you did for me. I was using S3 but I think I'll consider Backblaze now as an alternative.
One of the downsides of B2, especially for people located outside the US/Europe, is that they only have datacenters in the US west coast, and in Netherlands.
Backblaze B2 also requires a verified mobile phone number in order to use it - even if you've already given them a credit card.
I would love there to be an option available at Backblaze B2 pricing, without a massive invasion of privacy. Right now I'm using Linode's Object storage, which is priced at $0.02/GB per month which is still reasonably priced for my needs.
Interestingly there was another site with an identical concept posted a number of years ago, which had a very simple website (teal background and virtually unstyled text IIRC). I remember it causing comments to be skeptical partly for the barebones site alone. Looking at Permanent.org's archive.org results it doesn't appear to be the same site though which makes me wonder how many other sites have tried this.
I'm not a huge fan of their "What We Do" page if I'm honest.
Aside from the title the first thing you read is "The Democratization of Permanence" - from my probably dumb, mostly mainstream with a bit of tech self this just screams "You're gonna need your thinking cap on for this one"
Can't you just say "we host files and it costs like 50 bucks a year" or whatever you actually do? Once you've done that you can whip out your thesaurus and put whatever you want on the page, just answer the question first.
This combination of "Nonprofit" and "Permanent" is an oxymoron. And the fact that the people who run this operation don't realize this means this initiative is doomed.
These people use museum endowment as an analogy, but especially judging from that analogy I don't think they have any idea how this thing works. Storing someone else's data forever is completely different from how museum is run. The analogy is so ridiculous that it's not even funny.
Where this analogy may apply is sites like Waybackmachine, because they're at least doing it for the greater good. But I'm pretty sure these guys will throw away some random guy's private file archive the moment they run out of money.
Normally I'm all for silly experiments that come from ignorance, and I'm fine with various consumer startups that come and go along with their user data, because sometimes this ignorance leads to success. But in this case these people are playing with someone else's data AND asking for money, and claiming to store these forever in my view is no different from a scam artist. Intentional or not, this to me is no different from a scam.
I would say the companies who are at least honest about exploiting our data such as Google and Facebook are more ethical.
In today’s world though Google or FB decommissioning that product segment is just as likely. Just because it is Google doesn’t mean they will spend every last penny to keep it running. Once it stop becoming profitable, you better figure out what to do with your data. Hopefully one still has the primary local copy and not wondering how to do bulk download
Apart from that I agree this non-profit competition should only be used to kill industries that charge an exorbitant amount for there services. At least many of the popular cloud storage companies are as “non-outrageous-profit” as it gets. They make money from efficiency/dedup or other management efficiency
Yes, i am just pointing out a simple thing here. At least Google is not lying. They don't claim they will "permanently" store private data forever for free. These guys are. And while doing so, using companies like Google as the devil in order to present themselves as the savior.
It's almost like a conman claiming to have invented a perpetual motion machine and asking people for money, and furthermore, going around criticizing all the other people who build and sell normal machines are the bad guys for selling inferior products.
Yes you're right. In fact the fact that they are asking for you money is what ticks me off the most.
Let me put it this way instead. They are essentially saying they will pay for the hosting and data access usage and networking costs forever, and you can enjoy all these things for free forever, if you "only" pay an upfront cost. And that's a lie. There's no such thing as forever, especially if it's run by beings that won't be around forever. The scammy people behind this initiative will all die in hundred years. Without an economically viable model, it will all go.
In my eyes, what they are doing is essentially trying to make it big with a one time splash, and don't care what happens next. No different from all the scammy blockchain ICOs that promise "forever immutable storage".
So it's a ponzi scheme for cloud storage dependent on people continuing to pay to store new items in order for them to pay for their current costs.
Although the idea is to create a fund and operate off the interest. Let's look at their prices.
$1000 for 100 Gigabytes or $100 for 10 Gigabytes. Basically it's $10/GB. With like a very safe dividend allocation they can probably get a 2% annual return on their investments, which means they need to only spend $0.20/year on my 1GB of data.
They say their plan is perfect for phone or hard drive backups, and they offer continuous file migration. Let's say I completely replace the contents of my GB every 3 months. We can't use AWS S3 One-zone because they advertise "Redudant backup".
S3 Standard Infrequent access is $0.0125 per GB per month, so that's $0.15/year/GB. Maybe they can use AWS S3 Glacier although I'm not exactly sure how it'd work with the continuous migrations. That would be $0.048/year/GB which is a lot more feasible. Data ingress into AWS is free, but egress isn't. If we download our GB 4 times per year that's $0.04 in egress. There's also some costs for PUT, COPY, POST, LIST, GET, SELECT requests, so let's say that for our 1 GB it'll amount to $0.01 per year.
That means it'll cost us $0.098/year/GB for our storage service that we can only download from 4 times/year and does not give us millisecond-access to our data.
I'm sure they can find a storage solution that's cheaper than using AWS S3 Standard Infrequent Access so they still have a good response time for data, but overall it seems feasible.
if these people actually cared about people owning their own data, they would have released a toolkit or an application that lets each individual do what you've just described. Instead of asking for money.
This is a somewhat ridiculous position. If I hope to preserve data for my children, I'm not going to hand them a box with jerry-rigged software and hardware that they then have to maintain. I want someone to maintain that for them.
If I'm looking for my blog, or my tweets, or a set of family photos and videos to live on forever, I absolutely want them under control of a foundation that outlives me and my relatives interest in maintaining that data.
So you just made the claim this is essentially a scam and the people don't know what they are doing (considering the people on the board that's quite a rich claim). JCharante just showed with a back of the envelope calculation that it seems feasible.
Why don't you refute the argument and tell us why it isn't?
You made some pretty bold claims, so I would be nice if you can back them up.
>>> There's no such thing as forever, especially if it's run by beings that won't be around forever. The scammy people behind this initiative will all die in hundred years.
> if these people actually cared about people owning their own data, they would have released a toolkit or an application that lets each individual do what you've just described. Instead of asking for money.
The only way human beings can successfully store data (especially symbolic/digital data) for long terms is by creating institutions to maintain it.
Even granite tablet buried in a cave for 10,000 years will require a continuous series of institutions maintain the knowledge to successfully interpret it, otherwise you'll just end up with something like Linear A.
> they would have released a toolkit or an application that lets each individual do what you've just described
Where is this individual going to store their data? On the unreliable hard drive on their personal computer, which they never back up?
A toolkit or an application isn't hardware. Solving the problem of reliable long-term data storage requires hardware. Hardware costs money. Basically this service is competing with my ISP, my hosting company, etc. to be a long-term data storage provider.
I don't know whether they will be around forever, but if we assume they're not trying to scam people, the math can be done. How much does storage amount X cost per year (=$Y), how much money would you need to continuously generate $Y per year? The one-time fee you'd need is $Y.
Whether their math is sound, I have no idea. Whether it's a good idea I don't know either. I don't need "permanent" storage as in "for ever and ever and ever". But that's not necessarily a scam.
I think people all seek a permanent legacy of some sort. I don't think our digital junk really fits. There are IRL costs to hoarding junk; I'm really not sure any benefits - of keeping _all_ someone's digital miscellany - justify those costs?
> I think people all seek a permanent legacy of some sort. I don't think our digital junk really fits. There are IRL costs to hoarding junk; I'm really not sure any benefits - of keeping _all_ someone's digital miscellany - justify those costs?
I think with a lot of things there's a J shaped value curve. Over long periods of time, things of small value (including literal garbage) become historical and archeological treasure.
Also this doesn't seems like it's really mean to be storage for random "junk":
> Permanent.org isn't just another digital box or drive. It's a digital archive.
> Upload your most important digital materials to your archive and customize the archive profile to represent you. Create multiple archives for other people and organizations. Then establish relationships to share materials between them and create everlasting connections. Collaborate with your community by adding members to any archive to curate a shared history.
That implies there's a certain level of curation that's supposed to go into the archive, so more diaries and important records than your "Downloads" folder.
> I think with a lot of things there's a J shaped value curve. Over long periods of time, things of small value (including literal garbage) become historical and archeological treasure.
Isn't that mostly because of it becoming a rare insight into a time that is long gone? With perfect preservation, would literal scraps of garbage from 10k years ago be individually interesting?
Their governing board includes Brewster Kahle (Internet Archive), Mark Surman (Mozilla Foundation), Stephan Wolfram (Wolfram Alpha), and Paul Vixie (Internet Systems Consortium).
> These people use museum endowment as an analogy, but especially judging from that analogy I don't think they have any idea how this thing works. Storing someone else's data forever is completely different from how museum is run. The analogy is so ridiculous that it's not even funny.
OK, enlighten me. Because to me (an admittedly financial layperson) it makes sense. I give them a one-time payment, they put it in the bank with lots of others' payments and live off the interest. I don't see where the problem lies.
And yeah, I'm sure they will close down the minute they run out of money. That's no different than a for-profit doing the same as soon as it stops being profitable. To me though, this is way easier to understand how it could be around forever unlike the for-profit boys which have a totally different goal.
I give them one time payment, store a gigabyte of video, and share with millions of people. People keep watching and using up all the network costs and hosting costs. How are these guys going to keep going "permanently"?
I don't think that is the service they are offering. It simply says storage. The only sharing mentioned is sharing with other user's archives.... not public access.
But regardless, we have no idea what backend they are using. Hell, I can go to S3 right now, put a gig out there, and a million hits only cost me pennies. And in theory, that cost will only continue to shrink.
I would like to see more details on this. Bandwidth-limited sharing would still be economically feasible up to a point.
If they have run the numbers and are careful to leave a generous safety margin, I can see this working out. Eventually it will fail, as everything does, but it could last a very long time before that happens.
One more thought: if they are successful, they may accumulate a substantial endowment, at which point the primary risk is capture of that endowment by unethical board members. They have a good board right now, but will that always be the case? Time will tell.
We're making a lot of assumptions about a service that should probably be making things a lot more clear before they start taking money. My assumption is that "sharing" means sharing with family, etc. as opposed to publishing.
Traffic is as close to free as it's going to get. Sure, AWS/GCP/Azure charge a lot as a lock-in strategy, but for example DigitalOcean charges $5/TB, while Hetzner and OVH don't charge for traffic for dedicated servers at all.
Okay, your previous post was pretty unclear, but given this explanation, I'm giving you a rare (for me) downvote. You're speaking way too confidently about things that are definitely more ambiguous than you're letting on. It's important to be right, especially when you're crapping on other people's work.
I've also posted some skepticism about what they're doing, but the difference is that I'm asking questions rather than making assumptions.
They don't mention anything about hosting or streaming your data - just storing it. I assume the backend will be something similar to glacier or just slow, cold storage.
archive.org is a different beast because it deals with publicly available data. This is why the museum endowment analogy may make more sense with archive.org. There will always be people who want to help the "greater good".
But when it comes to private data hosting, for each repository there is exactly one person who wants it to stay alive.
Lastly, archive.org never started out asking people for money promising something the impossible. These guys will hide behind the word "promise" when they want to exit scam or just give up after a couple of months after taking people's money. "Hey we only gave you a promise, we never said we will guarantee and even pay back money if we can't keep the promise", this is what they will say.
Lol. Read his post history today - he certainly did not know that. He has been firing from the hip left and right making shit up to trash this organization.
> Intentional or not, this to me is no different from a scam.
You don't get to redefine a word and then claim it fits the definition. Scam is intentional deception, which is most certainly not what's happenning here.
I understand permanence is hard to achieve, but why do you claim it correlates with for-profit as opposed to nonprofit motivations?
A subjective look at the world suggests that institutions which have preserved artifacts (including digital artifacts) over a long time scale have been likelier to be non-profit than for-profit.
"I would say the companies who are at least honest about exploiting our data such as Google and Facebook are more ethical."
Luckily, those are not your only two choices - there are cloud storage providers that are simultaneously privacy minded[1], technically sophisticated[2], and honest about their business practices[3].
Nope. Non profit doesn't mean they do it for free. It means that the goal of the organization is not making profit. They'll still pay their employees and they'll still charge for their service (even if they'll call it a tax-deductible donation). At least this is my understanding.
Let's see. A non-profit, charging up-front and touting affiliation of famous people in unexplained capacity and showcasing use cases based on human interest stories of finely tuned social relevance.
Grift sense intensifies.
Math is roughly $500 for 50GB of storage in perpetuity.
I think you could essentially replicate this by putting the $500 in a high interest savings account paying blackblaze from that and you'd have about ~100GB worth of storage on that setup today. Over time that ratio should get better.
I assume that he was running the calculations for the blackblaze B2 service which is $.06/GB/year for storage, so at 1.6% APR on your $500 principal that works out to over 100GB
They compare themselves to museums, libraries and universities, but maybe the better analogy would be a graveyard: you pay once for a small amount of storage that is yours forever (or at least until the nearby airport needs to add a runway.)
Even that is far from adequate analogy if you think about the economics behind these things.
Buying a graveyard is essentially buying a piece of land (and maybe some very little amount of ongoing maintenance cost)
A web storage is not only for storing on a hard drive because unless you can reliably read from it, it means nothing. And THIS costs a lot of money, for maintenance and ongoing innovation to keep the costs down.
If storing someone else's data for free at scale was such an easy problem, none of the web startups would be going down.
214 comments
[ 2.7 ms ] story [ 239 ms ] threadCombine that with underlying costs (storage, data transfer, computing power) which are trending downward and there’s no reason it shouldn’t work.
Say they raise enough to earn interest on their capital.
Say they make 1% interest per year.
Storing a GB costs $10. 1% of that is 10c.
How much does it cost to store a GB for a year?
Amazon charge ~1c/m for infrequent access and 0.4c/m for Glacier.
So somewhere between 12c and 5c a year.
> We will never mine your data, claim your copyright or invade your privacy.
That sounds great and all, but I don't want your word, I want cryptographic guarantees. Are there any?
EDIT: https://www.permanent.org/digital-archives/services/privacy-... doesn't mention anything, so I guess not.
It's in your power to do your own mangling before uploading. The same with redundancy: don't put all your eggs in one basket (fancy promises or not). Good luck!
[0] https://www.youtube.com/watch?v=Nl8IVv4Y4bQ
It actually makes perfect sense the company would want to provide the tools that protect you from them. Take Signal for example, it's a messaging app that does beautiful integration of E2EE into the message transfer product. It's much better than e.g. OTR-plugin developed by Goldberg, Borisov et. al. for Pidgin etc.
What matters is transparency: Does the company allow you to verify their native client does proper client-side encryption, and does that FOSS code have reproducible builds. If yes, then it's much better the company spends some of the revenue from sold space into developing and auditing the client and its cryptographic implementations.
It's just kind of a gut feeling that centralization of power (i.e. possession of the data and knowledge about and control of the encryption mechanism) makes such a service a more attractive target to compromise.
Of course, if you really wanted to get the data of a specific person all you'd have to compromise is the encryption funnel regardless of where the data is stored. But I'm thinking, distributing control over the storage and the encryption is gonna make it a lot harder to do that because there's no single party that knows about both other than you.
At the end of the day, these people can just take all that money, keep some for themselves, and say "ok we tried our best but didn't work out, it was an incredible journey!" and be done with it. and nobody can hold them accountable.
If they really want to do their best to "guarantee" permanence, they should guarantee the debt relationship, so if the forever condition doesn't hold after a couple of years, they will be sought out and collected all the money they took.
What's to say that there would still be an organisation left to pay up the debt?
They'll probably need to hold some funds in escrow for it.
[1]: https://rclone.org/crypt/
I have old 5.25" and 3.5" floppies, full of software written by my father during the course of developing his dissertation. He died several years ago.
My original plan was to take whole disk images of it and stash it in the commercial cloud, ... but I'm probably going to stash a copy on permanent.org instead. I have no idea if my descendents would care about it. However, it is a memorial that (if the foundation does what it promises to do), not something I would have to do upkeep after I die.
That said, storage is one of those things that feels as though it should be charged on a subscription basis.
A while ago one of my cards was stolen and I got a new one. It took a month before I realized my contact lens subscription had stopped. Luckily contact lenses are easy to get and I try to keep some extra around as well.
A bigger problem however was 20 or so years ago was that when I was drafted and I suddenly couldn't check my email for a while and after 14 days I lost access to
- my old address that everyone knew
- all my mail
- and most of my contacts mail addresses
Fixing that is a lot harder and I would be happy to pay a premium to be sure that some things stay around even if my house burns down with my NAS inside while I'm in hospital and my CC is cancelled while I'm unable to notice it.
BTW: feel free to post your suggestions. My best ideas are to ship encrypted disks to one of my brothers/sisters and parts of the passwords to two others In case I lose them or in case I die and someone needs wants access to my accounts.
If I store data with my family there's two kinds: the kind I encrypt because I don't want anyone else to access it and the kind that I don't encrypt because of I want them to be able to access it. Adding a fallible model with several people holding access might end up leaving your data inaccessible...
- What if the disks are stolen?
- Or hidden in a wall and forgotten only to be found by the next owner? Weirder things have happened.
- Or uploaded to the public internet by accident. Warning: (hopefully)[0] wild hyperbole ahead. While I don't have much to hide (today) who knows about the future. I'd rather not want to see my photoalbum indexed to death by clearview and results sold to a future Nazi/Communist/Peta regime who'll use the face database to track down my grandchildren to punish them because their grandfather hated Nazis/wasn't exactly too fond of Communism either/ate meat and owned a rabbit.
- also for anything in the second category I guess the correct solution is an online server + encrypted backups with passwords available for everyone. Or just use backblaze or something and hope I don't become unavailable until some of my kids or their kids are old enough to become sysadmins ;-)
[0]: but who would have thought 100 years ago that lists of people's faith would be used 20 years later to systematically track down people not based on what crimes they had done but rather based on heritage only to round them up and kill them?
What I want to know if this uses any form of zero-knowledge cryptography features or not.
I guess not - since it can pull data directly from FB.
I can understand why they don't want to add a big barrier to entry by requiring that.
> We may terminate or suspend access to our Service immediately, without prior notice or liability, for any reason whatsoever, including without limitation if you breach the Terms.
Is this normal? So I guess this is not a good place to store a copy of my encrypted password file?
Or am I misunderstanding and it means that they can terminate my account only if/when I breach the Terms?
Pretty clear cut, any reason whatsoever.
Which is fine for a free service, but is going to be a pretty big drag on the number of people willing to "donate" $1000.
These terms and conditions are ridiculous if they want to be compared to museums and universities.
When one lodges their collection with a museum "in perpetuity" I'd expect the museum to have a disposal clause that lets them dump non-profitable works?
Works gifted to nations seem to get sold off occasionally, I'd guess that's by virtue of renovation clauses that allow the receiver a veritable carte blanch?
https://en.wikipedia.org/wiki/Deaccessioning_(museum)
This isn't really meant to benefit you. This is meant to benefit our children. If the foundation survives longer than my own life, then I can put files that may be of value to my children and great-grandchildren. It would be up to them to value the preservation of their own digital history and cultural heritage to continue supporting this mission.
Both the founder of the Internet Archive and someone from the geaneology industry are among the board. I can see this idea being cooked up as, "hey, what if we were able to offer regular people their very own micro Internet Archive?" "What if we were able to pass on digital photos to be discovered by our descendants the way we have been able to discover photos from the late 1800s and 1900s?"
When viewed from that lens, about what happens to data after you die, $10 is a cheap gamble. This isn't really a promise made to me. This is a promise made to my kids. It may not be a promise that the foundation can keep, but I value contributing to my kid's heritage enough to risk $10.
I am still going to keep my Google Cloud and Dropbox, and whatever. But the 1 GB I have from this foundation is for a time capsule, stuff I really want to have a shot of passing it down. My kids won't care about my cat memes, or my passwords, or stupid videos. But they may want their baby pictures. They may want their grandpa's and grandma's dissertation.
When I die, my Google Cloud drive will shut down. But if things work out with Permanent.org, those files will continue to be there. I won't have to burden my kids directly with its upkeep. And perhaps, when they are older, they will come to value having access to it.
Maybe they have not sold their vision well enough. But I guess, they only need just enough people who gets it to kick this off. They are already 75% of the way there.
Institutions that last a long time plan for changes in management. Contracts are part of that. I think I understand their vision, but they need to put themselves out there and be willing to be hauled into court to make "permanent" happen. If that's not what they are saying, then I guess I just don't understand.
In cases of severe data loss or organisational insolvency, I'm thinking that there might not be an organisation to haul to court.
What might work for the end users of such an organisation is transparency of some sort, including the publication of regular financial statements and board minutes.
Personally, I think the consumer protection and litigation has not done the US much favors, culturally speaking. It's gotten to the point that people think that Kickstarting pre-funded products have the same kind of guarantees. I have seen people get ragingly upset when their $5 kickstarter contribution amounted to nothing. I blew $1000 on a kickstarter project once knowing I may never see it again. (I got to go to a nice party out of it and got to meet Neal Stephenson and other fans; that was enough value for the $1k; they definitely did not deliver everything they promised).
It is why early-stage investment opportunities had been iffy -- unsophisticated investors treat what are essentially investments as if they were consumer products with the same kind of consumer product guarantees. It was why the SEC was founded in the first place, to protect "widows and orphans" and other unsophisticated investors ... and why regular folks get locked out of the better opportunities. Because somehow, our consumer mindset does not include an education on being an investor. There are no guarantees, just balancing risk and rewards.
With permanent.org, I'm investing into a future, not buying a product. I've thought through the risks and I made the decision for myself. I mean hell, during this pandemic, I have seen people want guarantees on even things like that their health. Get this treatment, save your life, or your money back? Demand service and sanitization supplies from hospitals, because the customer is always right? And now, I see this bizzare reaction of fear, derision, and ridicule on this non-profit vision. I'm not saying you are ridiculing this, mind; there's already enough of it from other commenters.
Don't get me wrong, I know there are plenty of scams around. It isn't as if I have not been conned before. However, it is often my pride, not my wallet, that has been hurt. I've seen much bigger cons, some even legitimized, with clear public harm. ... Enron causing brownouts to manipulate energy prices. Residential real estate valuation bubble ponzi scheme that is somehow normalized. The travesty called "No Child Left Behind Act" that shifted education further away from educating kids and teaching them to critically think while being emotionally intelligent. I can go on. Permanent.org's flaws in its marketing and messaging, its ambition to try to fund this through an endowment, is such a tiny blip when compared against the much bigger systemic problems and legitimized scams. If someone doesn't want to donate to permanent.org, then don't donate. Why are people getting so upset over this promise of "permanency"?
If they can remove my files for any reason, how can I trust them not to delete my files? This clause does not make any sense for a service like this.
Nothing is ever permanent. I've seen so many services come and go, that I'm quite sceptical about relying on cloud services for my data. My 25+ years of data is on a local NAS and on an offline copy at a trusted location.
I'm quite skeptical about relying on VC-funded or publicly-traded cloud services. An actual non-profit could be a lot more reliable: as long as expenses are less than income, there's no pressure to grow, and it could go on forever.
The big thing I'm skeptical about is growth in data needs. 5GiB free iCloud was more than enough 5 years ago; when I upgraded my iPhone, suddenly all my videos take 8x as much space. $10 for 1GiB forever storage sounds OK now, but what happens in 20 years when a single photo is 500MiB?
An interesting side effect is that people are calculating the endowment interest in this thread (a hard thing to do when rates are near-zero and there is a real risk of negative rates in the next 50 years), while the big factor is that storage prices drop dramatically over time.
Imagine if this service had launched 20 years ago. $10 would have bought you .. maybe 20MB? Pretty cheap to store that "forever" now.
That's a good point, but I don't think in their favor. At the rate that they're charging, you could prepay for 36 years of storage on S3 (neglecting bandwidth charges, which I know are substantial).
Compounded with your point that data storage costs are tanking, I would actually expect $10 to go even further. Which is also not to mention that they're planning on paying for their costs on interest from their endowment. Turns out I can also put my money in something that generates a profit.
I just don't see the point. They seem like they're trying to build S3 but without any profits, which at best makes them a marginally cheaper option, and at worst, a more expensive and less well featured S3.
https://www.permanent.org/digital-archives/maintaining-acces...
On a macro scale, 20MB is still pretty difficult to store "forever", especially if you need to involve a significant number of trusted people, over a long enough period of time (basically forever), to ensure that it's around.
However, realistically, I don't think we can assume that storage prices will drop forever. That depends upon continued advances and breakthroughs in science, engineering, and commercialization efforts. I recognize that, ironically, Big Tech help drive storage prices down. It may be a generation, or five, or ten, but the tech advance boom won't go on forever.
I don't know if the foundation will be around at that point. It is pretty ambitious, and perhaps, they may have to change their charter. The founder of the Internet Archive is on the governing board of this foundation, and I can easily see this idea cooked up as, "hey, what if every Joe and Mary can have their own micro Internet Archive?" "People have photos of their great great grandmothers 100 years ago, but everyone's stuff is no digital; what if they could have saved that for their kids? Would they have a place to stash it even after they die? ('cause, you know, no subscription fees) Can you depend on Facebook to memorialize that?" (One of the people on their board is involved in a geaneological company)
I think it is a good vision, although their plan is not without risk. (But what isn't?) We're also depending on our descendants to value these personal, mini vaults of data to keep donating to preserve it (if the endownment model does not work). But you know: we would be dead and it would not be up to us to value and preserve our own history.
I am really surprised at the amount of backlash I see on this forum for it.
Nothing in our throw-away society is. It could be with some radical changes. But that's another story
This actually makes sense -- if the goal is long-term set-it-and-forget-it, it solves the problem of getting a new credit card every few years & forgetting to change this service. It also eliminates any recurring payment-processing fees.
The back-of-the-napkin math checks out: accounting for storage, data-transfer, and business overhead, if they pay around $0.20 / GB / year, and they charge $10, then with 0 interest they would still have your files for 50 years, which is probably longer than your children will have your password to this service.
I still wouldn't trust it -- I have a pavlovian response to the combination of "permanence" and "give all your data to this new internet service". Maybe it's irrational here, but still, this product is at the wrong layer of abstraction for me personally :)
The concept of (consumer-grade?) permanent data storage triggers some response from him.
I believe there are people who won’t forgive text drive / Joyent for their dishonesty and sincerely we must never trust the leadership at Joyent with anything as long as they roam the earth.
https://www.chargebee.com/blog/lifetime-plans-its-time-rethi...
In my case:
food: losing all my data (or it becoming incredibly difficult to access / control / afford)
bell: uploading all of my data to a new internet product.
----
Most companies have unsustainable business models (grow forever).
For startups, this is especially true (rapid growth forever).
This is a new internet company, but their whole shtick is that they have a sustainable business model. Given that data, maybe my bias is unfair.
[0] https://en.wikipedia.org/wiki/Classical_conditioning
Sustainable means a business shifts between periods of focused growth and periods of focused stabilization. You grind for acquisition for awhile, then you pivot into shoring up operations during a period of controlled churn. Sustainable business should be able to withstand any sudden, dramatic shifts in the market or loss of accounts, and have enough resources on-hand to have something like a continuity plan for revenue.
How many people have their Geocities site pulled from them?
I think this foundation's mission is great. I'm not expecting things to be "permanent". I already know that there is no such thing as anything that is permanent, including our lives and our health. If there is no such thing as absolute permanence in anything, then I can throw that idea out and look at the rest of what they are offering. To me, it is irrational to think that just because someone _doesn't_ say their stuff is "permanent" doesn't mean you can trust them as well.
What I see in this foundation is something that supports the internet that is not controlled by Big Tech. I think about my children and where we are going in our society, and I think that is something that I value. I valued it enough to have already pledged a donation for the price of two latte.
Yes, nothing is forever, but with some luck this could live as long as our civilization..
Assuming some interest on the endowment is one way this could work out, falling costs of cloud storage is another.
Who knows what S3 prices will look like in 50 years?
> While the endowment model of the Permanent Legacy Foundation is designed to keep yourmaterials into perpetuity, it is not designed to be a high-traffic heavy-bandwidth hosting site.With the exception of approved nonprofit partners, we do not allow references of embedded15Permanent Legacy Foundation Manifesto materials on external sites for, and we must reserve the right to throttle or block abusive traffic
[1] https://www.permanent.org/wp-content/uploads/2019/05/Permane...
https://vdsina.ru/pricing/eternal-server
The market failure here is the classic "market for lemons" problem. Too many people have been burned by "forever" pricing that turned out to mean "a few years", or the bankruptcy or acquishutdown of a company. So any new entrant will face intense skepticism, no matter how sincerely they are trying.
So far the only permanent pricing that's worked for me is my grandfathered permanent Pinboard account, and that has a bus factor of one and a bit.
This is exactly the sort of policy that a "permanent" storage facility must promise never to enact. The whole point of something like this is for stuff you don't need regularly but want to keep forever.
Every year or so I log into the dropbox account that has a copy of my wedding photos in. I don't need to look at them, but I want to keep them.
Pcloud for example charges a one-time lifetime 0.35 cents per GB, and their marketing language states:
"We have defined a Lifetime account as 99 years or the lifetime of the account holder, whichever is shorter."
Some thoughts on this:
It probably works better at scale if you control the storage infrastructure (to control the costs). If you are reselling Amazon, and 10 years from now they either raise the price significantly, or discontinue the storage you are using, how would you maintain the service without new (renewal) cash flow.
To solve this later in life you would want to / need to migrate the data to newer better more cost efficient storage. There are large scale costs associated with doing this. Dropbox eventually moved away from Amazon for these reasons, which provided balance sheet savings but it gets fuzzy when factoring the real world costs of owning and maintaining large scale storage infrastructure.
Offering 1 GB free and file sharing between accounts is an invitation for nefarious activities, and it seems like the only way they could manage that would involve breaking one of Permanent.org's core tenets ... Someone will have to look at the files to police it. Or the free 1 GB becomes a liability, not a loss leader. How will they do this?
Once they have your money and a few years have passed there might be an incentive for the organization to gradually degrade the service. Make it more and more difficult to use, in an effort to keep costs down.
And 10 years later when they lose interest in the project, what would stop them from selling the whole thing (cashing out) to a for profit firm ..... Looking at you .ORG / ICANN?
If something like permanent.org is setup intelligently they can even have a plan for a backblaze demise (god forbid) and use the fund to migrate to another provider(s) in that case.
Assuming we're talking about storage in perpetuity without the need for maintenance, the fund would need someone trusted to administer it.
I personally wish there was an inexpensive, trusted place for me to deposit a large sum of money, and have it automatically paid to service providers to maintain my domain/hosting/online identity in perpetuity, or until my deposit/endowment runs out.
This sounds like what I want, only just for data.
B2 is $0.06/GB/year, while a regular HDD would cost ~$0.03/GB/drive-lifespan.
At 10TB, you're paying $600/year on B2, a price at which you could outright buy two 10TB drives and stick them in a larger NAS setup with ZFS or a simpler RAID-1 array.
[0] https://www.arqbackup.com
https://www.duplicati.com does that for free being open-source thing, all platforms supported.
Are you sure about that? I'm no expert, but I thought it was advisable to power up spinning platter disks at least every so often, once a year say?
And where are you keeping this backup, same box?
Is there a specific reason why you would need to do that? I'm not really aware of any.
> And where are you keeping this backup, same box?
This is ultimately up to you, depending on what kind of redundancy you deem necessary and whether you have multiple physical locations where you could store the said drives.
https://en.wikipedia.org/wiki/Stiction#Hard_disk_drives
SSD’s definitely do this.
Even if hard disks don’t do this, mean time to repair is a crucial parameter in raid durability calculations. If you spin the drives up once a year, the mean time to repair is 6 months. Most raid systems are likely to lose data if it takes more than a few days to repair.
This was a cost analysis, mostly for those that can't afford B2. You can buy two drives for the cost of a year at Backblaze and have N+1 redundancy.
> You're paying Backblaze to ensure that GB can be accessed in the future
No doubt, which is why I prefaced this with "If you don't need to have your data in the cloud".
> The Service is offered primarily as a platform to cache and serve web pages and websites. Unless explicitly included as a part of a Paid Service purchased by you, you agree to use the Service solely for the purpose of serving web pages as viewed through a web browser or other functionally equivalent applications and rendering Hypertext Markup Language (HTML) or other functional equivalents. Use of the Service for serving video (unless purchased separately as a Paid Service) or a disproportionate percentage of pictures, audio files, or other non-HTML content, is prohibited.
This is a clever exploit none the less (not a pejorative).
[0] https://blog.macsales.com/43702-we-bet-you-didnt-know-that-y...
The "device" you use today will, in all probability, not be usable after a number of years, no matter whether you spin it up regularly and maintain it in a working condition.
I have backups in countless floppies, diskettes, Zip drives, 9-track, QIC, DAT, SCSI, ...
I would love there to be an option available at Backblaze B2 pricing, without a massive invasion of privacy. Right now I'm using Linode's Object storage, which is priced at $0.02/GB per month which is still reasonably priced for my needs.
Aside from the title the first thing you read is "The Democratization of Permanence" - from my probably dumb, mostly mainstream with a bit of tech self this just screams "You're gonna need your thinking cap on for this one"
Can't you just say "we host files and it costs like 50 bucks a year" or whatever you actually do? Once you've done that you can whip out your thesaurus and put whatever you want on the page, just answer the question first.
https://www.arweave.org/
https://siasky.net/
There's a typo on some of the marketing copy: "A new paridigm".
These people use museum endowment as an analogy, but especially judging from that analogy I don't think they have any idea how this thing works. Storing someone else's data forever is completely different from how museum is run. The analogy is so ridiculous that it's not even funny.
Where this analogy may apply is sites like Waybackmachine, because they're at least doing it for the greater good. But I'm pretty sure these guys will throw away some random guy's private file archive the moment they run out of money.
Normally I'm all for silly experiments that come from ignorance, and I'm fine with various consumer startups that come and go along with their user data, because sometimes this ignorance leads to success. But in this case these people are playing with someone else's data AND asking for money, and claiming to store these forever in my view is no different from a scam artist. Intentional or not, this to me is no different from a scam.
I would say the companies who are at least honest about exploiting our data such as Google and Facebook are more ethical.
Apart from that I agree this non-profit competition should only be used to kill industries that charge an exorbitant amount for there services. At least many of the popular cloud storage companies are as “non-outrageous-profit” as it gets. They make money from efficiency/dedup or other management efficiency
It's almost like a conman claiming to have invented a perpetual motion machine and asking people for money, and furthermore, going around criticizing all the other people who build and sell normal machines are the bad guys for selling inferior products.
No, they're not. They're claiming they will permanently store private data for a one-time fee.
Let me put it this way instead. They are essentially saying they will pay for the hosting and data access usage and networking costs forever, and you can enjoy all these things for free forever, if you "only" pay an upfront cost. And that's a lie. There's no such thing as forever, especially if it's run by beings that won't be around forever. The scammy people behind this initiative will all die in hundred years. Without an economically viable model, it will all go.
In my eyes, what they are doing is essentially trying to make it big with a one time splash, and don't care what happens next. No different from all the scammy blockchain ICOs that promise "forever immutable storage".
Although the idea is to create a fund and operate off the interest. Let's look at their prices.
$1000 for 100 Gigabytes or $100 for 10 Gigabytes. Basically it's $10/GB. With like a very safe dividend allocation they can probably get a 2% annual return on their investments, which means they need to only spend $0.20/year on my 1GB of data.
They say their plan is perfect for phone or hard drive backups, and they offer continuous file migration. Let's say I completely replace the contents of my GB every 3 months. We can't use AWS S3 One-zone because they advertise "Redudant backup".
S3 Standard Infrequent access is $0.0125 per GB per month, so that's $0.15/year/GB. Maybe they can use AWS S3 Glacier although I'm not exactly sure how it'd work with the continuous migrations. That would be $0.048/year/GB which is a lot more feasible. Data ingress into AWS is free, but egress isn't. If we download our GB 4 times per year that's $0.04 in egress. There's also some costs for PUT, COPY, POST, LIST, GET, SELECT requests, so let's say that for our 1 GB it'll amount to $0.01 per year.
That means it'll cost us $0.098/year/GB for our storage service that we can only download from 4 times/year and does not give us millisecond-access to our data.
I'm sure they can find a storage solution that's cheaper than using AWS S3 Standard Infrequent Access so they still have a good response time for data, but overall it seems feasible.
If I'm looking for my blog, or my tweets, or a set of family photos and videos to live on forever, I absolutely want them under control of a foundation that outlives me and my relatives interest in maintaining that data.
Why don't you refute the argument and tell us why it isn't? You made some pretty bold claims, so I would be nice if you can back them up.
> if these people actually cared about people owning their own data, they would have released a toolkit or an application that lets each individual do what you've just described. Instead of asking for money.
The only way human beings can successfully store data (especially symbolic/digital data) for long terms is by creating institutions to maintain it.
Even granite tablet buried in a cave for 10,000 years will require a continuous series of institutions maintain the knowledge to successfully interpret it, otherwise you'll just end up with something like Linear A.
Where is this individual going to store their data? On the unreliable hard drive on their personal computer, which they never back up?
A toolkit or an application isn't hardware. Solving the problem of reliable long-term data storage requires hardware. Hardware costs money. Basically this service is competing with my ISP, my hosting company, etc. to be a long-term data storage provider.
Whether their math is sound, I have no idea. Whether it's a good idea I don't know either. I don't need "permanent" storage as in "for ever and ever and ever". But that's not necessarily a scam.
I think with a lot of things there's a J shaped value curve. Over long periods of time, things of small value (including literal garbage) become historical and archeological treasure.
Also this doesn't seems like it's really mean to be storage for random "junk":
> Permanent.org isn't just another digital box or drive. It's a digital archive.
> Upload your most important digital materials to your archive and customize the archive profile to represent you. Create multiple archives for other people and organizations. Then establish relationships to share materials between them and create everlasting connections. Collaborate with your community by adding members to any archive to curate a shared history.
That implies there's a certain level of curation that's supposed to go into the archive, so more diaries and important records than your "Downloads" folder.
Isn't that mostly because of it becoming a rare insight into a time that is long gone? With perfect preservation, would literal scraps of garbage from 10k years ago be individually interesting?
The question is if you can trust this non-profit?
Maybe if other credible non-profits were backing it.
OK, enlighten me. Because to me (an admittedly financial layperson) it makes sense. I give them a one-time payment, they put it in the bank with lots of others' payments and live off the interest. I don't see where the problem lies.
And yeah, I'm sure they will close down the minute they run out of money. That's no different than a for-profit doing the same as soon as it stops being profitable. To me though, this is way easier to understand how it could be around forever unlike the for-profit boys which have a totally different goal.
But regardless, we have no idea what backend they are using. Hell, I can go to S3 right now, put a gig out there, and a million hits only cost me pennies. And in theory, that cost will only continue to shrink.
I would like to see more details on this. Bandwidth-limited sharing would still be economically feasible up to a point.
If they have run the numbers and are careful to leave a generous safety margin, I can see this working out. Eventually it will fail, as everything does, but it could last a very long time before that happens.
One more thought: if they are successful, they may accumulate a substantial endowment, at which point the primary risk is capture of that endowment by unethical board members. They have a good board right now, but will that always be the case? Time will tell.
You don't have to make any assumptions. It's right there on the web page that was linked to:
"You choose what files or folders you want to share, who you want to share them with and what level of access that Archive should have."
A million hits on a 1 gig file would cost you $50,000.
I've also posted some skepticism about what they're doing, but the difference is that I'm asking questions rather than making assumptions.
Why are you making things up at this point?
But when it comes to private data hosting, for each repository there is exactly one person who wants it to stay alive.
Lastly, archive.org never started out asking people for money promising something the impossible. These guys will hide behind the word "promise" when they want to exit scam or just give up after a couple of months after taking people's money. "Hey we only gave you a promise, we never said we will guarantee and even pay back money if we can't keep the promise", this is what they will say.
You don't get to redefine a word and then claim it fits the definition. Scam is intentional deception, which is most certainly not what's happenning here.
"Non profit" has nothing to do with it. Thinking any service is permanent is pretty naive.
A subjective look at the world suggests that institutions which have preserved artifacts (including digital artifacts) over a long time scale have been likelier to be non-profit than for-profit.
It seems you have some political beef with this being a non-profit.
Luckily, those are not your only two choices - there are cloud storage providers that are simultaneously privacy minded[1], technically sophisticated[2], and honest about their business practices[3].
[1] https://www.rsync.net/resources/notices/canary.txt
[2] https://www.rsync.net/resources/howto/remote_commands.html
[3] https://www.rsync.net/resources/regulatory/pci.html
Nonprofit mainly means that they're not a company beholden to shareholders, and that they can't be sold or acquired.
I think you could essentially replicate this by putting the $500 in a high interest savings account paying blackblaze from that and you'd have about ~100GB worth of storage on that setup today. Over time that ratio should get better.
I assume that he was running the calculations for the blackblaze B2 service which is $.06/GB/year for storage, so at 1.6% APR on your $500 principal that works out to over 100GB
Buying a graveyard is essentially buying a piece of land (and maybe some very little amount of ongoing maintenance cost)
A web storage is not only for storing on a hard drive because unless you can reliably read from it, it means nothing. And THIS costs a lot of money, for maintenance and ongoing innovation to keep the costs down.
If storing someone else's data for free at scale was such an easy problem, none of the web startups would be going down.
If one thinks further, they'll also want to plan for the possibility of state-enforced exhumation or eminent domain, among other things.