diff --git a/content/concepts/compute-to-data.md b/content/concepts/compute-to-data.md index 7a78a353..78acdb2e 100644 --- a/content/concepts/compute-to-data.md +++ b/content/concepts/compute-to-data.md @@ -20,24 +20,6 @@ The most basic scenario for a Publisher is to provide access to the datasets the [This page](https://oceanprotocol.com/technology/compute-to-data) elaborates on the benefits. -## Datasets & Algorithms - -With Compute-to-Data, datasets are not allowed to leave the premises of the data holder, only algorithms can be permitted to run on them under certain conditions within an isolated and secure environment. Algorithms are an asset type just like datasets. They too can have a pool or a fixed price to determine their price whenever they are used. - - -Algorithms can be public or private by setting `"attributes.main.type"` value in DDO as follows: - -- `"access"` - public. The algorithm can be downloaded, given appropriate datatoken. -- `"compute"` - private. The algorithm is only available to use as part of a compute job without any way to download it. The Algorithm must be published on the same Ocean Provider as the dataset it's targeted to run on. - -For each dataset, publishers can choose to allow various permission levels for algorithms to run: - -- allow selected algorithms, referenced by their DID -- allow all algorithms published within a network or marketplace -- allow raw algorithms, for advanced use cases circumventing algorithm as an asset type, but most prone to data escape - -All implementations should set permissions to private by default: upon publishing a compute dataset, no algorithms should be allowed to run on it. This is to prevent data escape by a rogue algorithm being written in a way to extract all data from a dataset. - ## Further Reading - [Compute-to-Data architecture](/tutorials/compute-to-data-architecture/) diff --git a/content/tutorials/compute-to-data-datasets-algorithms.md b/content/tutorials/compute-to-data-datasets-algorithms.md new file mode 100644 index 00000000..e926d795 --- /dev/null +++ b/content/tutorials/compute-to-data-datasets-algorithms.md @@ -0,0 +1,22 @@ +--- +title: Compute-to-Data +description: Datasets and Algorithms +--- + +## Datasets & Algorithms + +With Compute-to-Data, datasets are not allowed to leave the premises of the data holder, only algorithms can be permitted to run on them under certain conditions within an isolated and secure environment. Algorithms are an asset type just like datasets. They too can have a pool or a fixed price to determine their price whenever they are used. + + +Algorithms can be public or private by setting `"attributes.main.type"` value in DDO as follows: + +- `"access"` - public. The algorithm can be downloaded, given appropriate datatoken. +- `"compute"` - private. The algorithm is only available to use as part of a compute job without any way to download it. The Algorithm must be published on the same Ocean Provider as the dataset it's targeted to run on. + +For each dataset, publishers can choose to allow various permission levels for algorithms to run: + +- allow selected algorithms, referenced by their DID +- allow all algorithms published within a network or marketplace +- allow raw algorithms, for advanced use cases circumventing algorithm as an asset type, but most prone to data escape + +All implementations should set permissions to private by default: upon publishing a compute dataset, no algorithms should be allowed to run on it. This is to prevent data escape by a rogue algorithm being written in a way to extract all data from a dataset. diff --git a/data/sidebars/tutorials.yml b/data/sidebars/tutorials.yml index 9c1d99d1..74dca187 100644 --- a/data/sidebars/tutorials.yml +++ b/data/sidebars/tutorials.yml @@ -41,6 +41,8 @@ link: /tutorials/compute-to-data-architecture/ - title: Writing Algorithms link: /tutorials/compute-to-data-algorithms/ + - title: Datasets and algorithms + link: /tutorials/compute-to-data-datasets-algorithms/ - title: Run a Compute-to-Data Environment link: /tutorials/compute-to-data/ - title: Minikube Compute-to-Data Environment