Key distribution

We assume that users authenticate each other to obtain relevant keys to read and write data on the disk via a secure channel - we do not introduce new authentication mechanisms in this paper. Furthermore, all these exchanges are carried out on-demand; if users want to read/write a file, they contact the file owner (or possibly other readers/writers) to obtain the relevant key. Keys are never broadcast to all users.