* Everything is encrypted at rest

* We have fine grained capability-based access control

* If I share a file with two people, they can't see that I've shared it with the other person

* Access revocation with key rotation (on the same fine grained level)

* Peergos is resistant to quantum computer based attacks (unshared files are already safe, and shared ones will be)

* Peergos doesn't rely on out of band sharing of keys (we use TOFU on a publicly auditable append only PKI)