I don´t know if you take it into account:
1 - ideally nobody should be able to inspect anything in his local (or remote) IPFS storage unless he provides the IPFS address.
2- This means that the content should be encrypted by default. Otherwise privacy will be compromised.
3- enchription/decription of the content in the storage, that addresses the previous points can be done transparently using IPFS hashes with some additional layer. this layer could provide symetrical transparent encryption/decription without breaking compatibility with previous versions of IPFS.
What is the philosophy of IPFS around these points? I think that hashing can/should be used no only for content addressing but also for privacy, since only the ones who know the IPFS address should be able to access it.
Am I right? can be done? is it done already?