Access Control
I think one of the key innovations in web3.storage was recognition that following roles in the system could be played by different actors
Resource owner - Actor that generated a space and has full authority over it.
Service customer - Actor responsible for handling billing for a provided service
Service consumer - Actors that are (cryptographically) authorized to perform set of operations on resource(s).
In traditional systems customer = owner, which implies they have to handle access control.
Roles