The SAFE Network is a secure, autonomous, data-centric, peer-to-peer network. Files stored on the network are split up into pieces, encrypted and spread throughout the network, rather than residing on a central server or data centre.

The following components and features represent key aspects of the Network:

The Authenticator

Before browsing on the SAFE Network, users need to create an account via the Authenticator application. The Authenticator enables users to securely authenticate themselves onto the SAFE Network, and protects network login credentials from apps. It also manages application authorisations - applications must be authorised by the user - to be able to connect to the SAFE Network, on behalf of the user. The user can revoke the granted access at any time from the Authenticator.

The Authenticator is bundled with the SAFE Browser and registers a custom URL scheme safe-auth://. Similarly every app registers their own safe-prefixed url-scheme. The process for authentication is as follows:

Application requests access

The application authorises with the Authenticator with the needed access permissions. The application can create its own container and request access to default containers or other applications' containers through the authorisation request.

User grants access

When the user approves the request, application specific encryption keys are generated. The application will be identified in the network using its keys. When the user grants or denies authorisation, the application will receive a URI.

Application connects to the Network

Applications can connect to the SAFE Network on behalf of the user by using the URI received.

Network Types

Applications can be developed on the Network using one of the three network types depending on development stages.