fair chance that "activitypub" (really activitystreams) as used in fedi software goes the way of "html" as used in web browsers.
-
trwnh@mastodon.socialreplied to jens@social.finkhaeuser.de last edited by
@jens so zot_guid and zot_sig, to borrow from prior art…
now here’s the hard part: how do you rotate keys without having to resign every single existing resource?
-
jens@social.finkhaeuser.dereplied to trwnh@mastodon.social last edited by
@trwnh No, no, Zot relies on names again. Really, let's not.
Rotating keys, ah... that leads down a new rabbit hole for which it really is too late.
It's doable, suffice to say!
-
trwnh@mastodon.socialreplied to jens@social.finkhaeuser.de last edited by
@jens if you’d like to pick up at some future point i would be interested in hearing more — the tradeoff with key-based identity as i understand it is that key rotation invalidates old signatures. which is afaik why zot uses a random guid and then signs that guid (iirc). sounds a lot like that tuple you were talking about, but it’s been a while since i read the zot protocol docs.
if you have any other resources you can point to in the meantime (heh), i’d appreciate those
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
@jens really my concern here is that losing a key means losing all your resources and breaking all existing links. i don’t think most people want cryptographic guarantees when alternative means of establishing identity will do fine. for all its problems, people generally trust DNS. can we extend that trust to resources? arbitrary name-to-thing lookup where you can register not just IP addresses but also arbitrary resources? like doi: or isbn: but for anything, by any host
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
@jens hopefully you at least see why i’m not fully giving up on the RNS idea lol
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
@jens but anyway you dont have to answer that right away. have a pleasant night!
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
or actually… maybe //host/thing is good enough if you trust the host to not lie about its own resources?
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
i wonder if it makes more sense to build RNS as an extension of DNS or if it should be a reimplementation of the same principles but
ah shit i’m reinventing XRI aren’t i
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
as i’ve read it, the w3c tag opposed xri on the grounds that it was unnecessary when http: could do most of what anyone cared to do at the time
i would personally counter that the w3c tag was being extremely short-sighted for what seems to me like mostly political reasons
it’s on one hand“http supremacist” and on the other hand failing to acknowledge the shortcomings of http: as a uri scheme. the very existence of https: as a separate scheme proves this, while failing to address shortcomings.
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
like, damn, we really fucked up pretty badly here. even the semwebby people now have to deal with some concepts being identified as http: and some as https: — mostly by how old the vocabulary is. lol, lmao
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
idk about y’all but i don’t feel like making a bunch of owl:sameAs, owl:equivalentClass, owl:equivalentProperty statements just to deal with a single letter being inserted
-
fentiger@mastodon.socialreplied to trwnh@mastodon.social last edited by
@trwnh One early source of confusion for me - and I think some others, too - was the distinction between "a URL that's meant to be dereferenced" and "a URL that's being used as a unique identifier, in a JSON-LD / RDF type way".
I can see the merit in allowing anyone to define brand new, guaranteed unique identifiers based on their control of a domain name - but allowing that namespace to overlap with actual dereferencable URLs was maybe not so clever, in my view.
-
trwnh@mastodon.socialreplied to fentiger@mastodon.social last edited by
@FenTiger it’s clever only as long as there is exactly one canonical protocol that everyone uses forever
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
@FenTiger also as long as you never reassign a domain name to someone else
-
fentiger@mastodon.socialreplied to trwnh@mastodon.social last edited by
@trwnh ...or stop paying your bill. I've seen things in the JSON-LD @.context that resolved to porn sites.
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
in some ways it is a clever idea to have things be identified in a way such that you can easily fetch more information about them. indeed, the web works on this principle. but it’s clever only as long as there is exactly one canonical protocol that everyone uses forever, and our dependence on dns also means that all our identifiers and extant links break when a domain name lapses or changes hands.
-
trwnh@mastodon.socialreplied to trwnh@mastodon.social last edited by
i think any "solution" needs to have the following qualities:
- transport-independent.
- stable.
- support aliases.additional goals:
- easy to adopt. resource resolvers can have gateways or something like a browser extension at worst. you should be able to run a local resolver on your localhost or localdomain.
- recoverable. if someone refers to the resource via a gateway, you should be able to extract *some* info from it and maybe find a different path to the resource (possibly via alias).