Back in June I wrote about an exciting confluence of digital auth tech:

(1) The commodification of #OIDC infrastructure, (2) the emergence of #FedCM, (3) and the compatibility of both with #indieauth .

In short, it is now easier than ever to log into web applications using your own website as an identity provider. Or at least, it would be, if your favorite web apps supported these agency-enhancing technologies.

https://blog.erlend.sh/indie-social-sign-in-could-go-mainstream

#opensource #indieweb #identity

https://writing.exchange/@erlend/113091679196090320

  • originalucifer@moist.catsweat.com
    link
    fedilink
    arrow-up
    4
    ·
    3 months ago

    yeah, ive read from some other corners nostr is really being abused by bad actors due to the same anonymity you seem to require of it.

    nostr is basically not moderate-able, which is a non-starter for the rest of us who dont really give a shit about 5 9s of anonymity and are attempting to maintain communities of decent humans.

    • demesisx@infosec.pub
      link
      fedilink
      English
      arrow-up
      10
      arrow-down
      3
      ·
      3 months ago

      “I” seem to require? No. I’m deferring to the cypherpunk manifesto which rings true over and over again.

      IMO, anonymity should be able to be switched on and off at will by the user. Selective disclosure using homomorphic encryption coupled with digital identity can achieve both, IMO.

      In particular, businesses require anonymity in much of their chain of custody…and I think that’s fair.