DEV Community

Cover image for Introducing GenosDB: a P2P Graph Database with Built-In Zero-Trust Security
Esteban Fuster Pozzi
Esteban Fuster Pozzi

Posted on

Introducing GenosDB: a P2P Graph Database with Built-In Zero-Trust Security

#distributedsystems #p2p #genosdb #web3

TL;DR: GenosDB is a peer-to-peer graph database with zero-trust security at the core. Real-time sync, cryptographic identity, and role-based access — no central server. Repo

👋 What is GenosDB?

GenosDB (GDB) is a modular, peer-to-peer graph database designed to embed zero-trust security directly in the data layer.

Instead of bolting on identity or permissions through a central server, every peer independently enforces trust with cryptography.

🔍 The Solution

Most “decentralized” apps cheat: they use P2P storage, but rely on centralized servers for identity and access control. That single point of trust undermines decentralization.

GenosDB flips this:

  • Every operation is signed and verified.
  • Roles and permissions live inside the database.
  • Peers enforce rules locally, not through a server.

🧩 Core Architecture

  • Graph-based: data as nodes and edges.
  • P2P sync: WebRTC or relay-based updates.
  • Reactive queries: subscribe to graph changes in real time.
  • Eventual consistency: async propagation, but cryptographically validated.

🔒 Security Manager

Security isn’t an add-on — it’s the core engine.

  • Identity: every user = Ethereum address (private key secured via WebAuthn or mnemonic).
  • Signed ops: all operations signed + verified.
  • RBAC: roles (guest → superadmin) define permissions, stored in the graph.
  • ACLs: per-node control for fine-grained access.
  • Encrypted storage: data tied to user identity keys.

🚪 Zero-Trust Entry

New peers get one privilege: create their identity node as guest.

No shortcuts. No backdoors. Promotion requires a superadmin.

🕸 Distributed Trust Model

  1. Cryptographic signatures — no impersonation.
  2. Shared rules — uniform, verifiable.
  3. Local enforcement — compromised peers can’t cheat the network.

Security is prioritized over availability: no operation is accepted without verifiable proof.

🌍 Why It Matters

GenosDB shows that:

  • Identity and trust can live inside a database.
  • P2P apps can be zero-trust without servers.
  • Collaborative systems (docs, social, multiplayer) can run on a substrate where every action is verified cryptographically.

📚 Resources

🙌 Invitation

GenosDB is in stable beta: the core engine runs, zero-trust flows are enforced, and P2P sync is live.

Looking for developers to:

  • Experiment with it
  • Stress test it
  • Help shape the roadmap

If you care about security, decentralization, and real-time collaboration, I’d love your feedback.

— Esteban Fuster Pozzi (estebanrfp)

Top comments (0)