Apple already shipped attestation on the web, and we barely noticed
httptoolkit.com
There's been a lot of concern recently about the Web Environment Integrity proposal, developed by a selection of authors from Google, and…
    • zephyrvs@lemmy.ml
      5·
      11 months ago

      Yep, looks like we’re headed to the cyberpunk dystopia, full steam ahead. Wait until they crash the banks and have CBDCs ready to go.

      • Haui@discuss.tchncs.de
        3·
        11 months ago

        There are a billion different ways to make this life worse… I often wonder if politicians or the voting majority ever watch dystopian movies because some actions are so absurd, they’re comical.

        Like the fact that we have like 20 companies that rule the world. There is an interesting chart out there which shows that impressively.

        Does nobody see that’s a stupid idea?

  • brothershamus@kbin.social
    9·
    11 months ago

    Private Access Tokens are powerful tools that prove when HTTP requests are coming from legitimate devices without disclosing someone’s identity.

    So I don’t know the details, but it makes a couple of points that either mean this isn’t the same thing as the google thing, or “attestation on the web” isn’t DRM, or something else. So far as I can interpret the article, it seems to suggest the feature is “is this a safari device on ios, if yes then skip captcha” but that seems to be up to the website’s discretion.

    • Scrubbles@poptalk.scrubbles.tech
      5·
      11 months ago

      That’s the sticky thing, from the initial standpoint I get it, how trustworthy is this device? Everyone hates captchas and jumping through hoops to prove they’re not a bot, and bot traffic now dwarfs human traffic on the net. BUT…

      They can turn up the dials whenever they want. Who decides how trustworthy a person is? What if I prefer Firefox (and I do) and they aren’t as “attested” to Google? What if they decide me using an “untrusted” OS means that I can’t access my bank? These are the giant glaring details that are conveniently overlooked.

      These are all also things that would conveniently also push out all other browsers and “proper” OSes from the markets, if they got the inkling to do so. Which I mean, this is Google we’re talking about, the company that decided Don’t Be Evil didn’t belong as their mantra.

      • zergling_man@lemmy.perthchat.org
        4·
        11 months ago

        What if they decide me using an “untrusted” OS means that I can’t access my bank?

        This already happens! safetynet can suck a fat, rotten cock!

  • uglytruck@kbin.social
    7·
    11 months ago

    This is really just a power-grab move. There already is “Let’s Encrypt” - try going to a website that isn’t https. You’ll know right away that you might have typed a web address wrong.