Question for Veilid related to threat model and how advanced encryption and security are

[radumarias]

Feature

I am planning to use Veilid for a feature in this project.

The feature is similar to Shamir's secret sharing. Still, it tries to solve the possible vulnerability that while encrypting the file, one node has the whole key constructed, and at that point, if the key gets into the hands of an attacker, it will be able to decrypt all data.
This approach adds a layer of “secret sharing,” though not in the classical Shamir’s Secret Sharing sense, which is conceptually similar. With this solution, no single entity holds the whole key so that no single entity can decrypt the whole data.

I like veilid a lot, and I also donated some :) While reading the cryptography concepts, https://veilid.com/about-veilid/cryptography/ noticed many concepts and libs common to my project, which I find very nice :)

Threat model

But I'd like to know how advanced Veilid encryption and local data privacy are. I'm particularly interested in the next features (which I'm working on adding to my project).
Are they present in Veilid, and at what level? Please remember that most of these are still works in progress and are marked as WIP.

rencfs features

• [WIP] Data integrity, data is written with WAL to ensure integrity even on crash or power loss
• [WIP] Hide all info for enhanced privacy; all metadata, content, file name, file size, *time fields, files count, and directory structure is encrypted
• Safely manage credentials in memory with mlock(2), mprotect, zeroize, and expiry to mitigate cold boot attacks;
• [WIP] Generate unique nonce in offline mode
• [WIP] Add file inode and chunk index to AAD This prevents blocks from being copied between or within files by an attacker.
• Fast seek on both reads and writes;
• Exposed with FUSE;
• [WIP] Handle long file names
• [WIP] Abstraction layer for Rust File and fs API to use it as lib to switch to using encrypted files by just changing the use statements
• [WIP] Abstraction layer to access the storage with implementations for desktop, Wasm, Android, and iOS and the ability to write your own implementation

Key features of rencfs

Here is the list of all important features https://github.com/radumarias/rencfs?tab=readme-ov-file#key-features

Contribution

Why I'm asking this: If not all are present or not at such a security level as in recnfs, maybe it makes sense to create some plugin/extension or fork based on Veilid to support this.
Please let me know your thoughts.