31
submitted 7 months ago by lemmyreader@lemmy.ml to c/privacy@lemmy.ml
top 12 comments
sorted by: hot top controversial new old
[-] rezifon@lemmy.world 7 points 7 months ago* (last edited 7 months ago)

This looks like an attempt to reproduce the web-of-trust functions provided by Keybase.io. Keybase has historically been a great resource that fills the same role as the PGP/GnuPG web of trust for a much broader range of identity attestations.

An open implementation of this concept has been sorely needed since Keybase got bought and shitcanned by Zoom during the COVID lockdown. Zoom wanted to aqui-hire all the Keybase devs to boost development on their lacking encryption and security. Sadly, Keybase has basically been abandonware since then.

[-] lemmy_nightmare@sh.itjust.works 1 points 7 months ago

That is truly sad. I was, at one point, simple using Keybase as a free cloud storage.

[-] 4am@lemm.ee 6 points 7 months ago

Seems to me like this is stepping up to fill the spot that was left by Keybase

[-] barbara@lemmy.ml 4 points 7 months ago

It's very complicated. Maybe the tutorials aren't good enough (for me). It's nice to have a site listing your various accounts. I proved mastodon and linked matrix but that's it. At this state, not worth the trouble (for me)

[-] Asudox@lemmy.world 3 points 7 months ago

I use it. The linkable proof is in my Lemmy desc for example.

[-] devfuuu@lemmy.world 2 points 7 months ago

It's cool, needs some more work and eventually integrations with it. It's nice to have an alternative to keybase but the things around keybase still need to be created.

[-] PoorPocketsMcNewHold@lemmy.ml 2 points 7 months ago
[-] lemmyreader@lemmy.ml 1 points 7 months ago

Neat. Thank you.

[-] taladar@sh.itjust.works 1 points 7 months ago

It seems completely pointless to be honest.

Who are you going to prove your cryptographic identity to? Why not just use that same (pretty flimsy) verification method they use directly with that person?

[-] PoorPocketsMcNewHold@lemmy.ml 2 points 7 months ago

What is that "(pretty flimsy) verification method" you are referring to ? Keyoxide is basically a web-interface (and accompanying tutorials) for PGP/ASP proofs. If you and your colleage know how, it's not for you. I do think having a "web-PGP" passport page is easier to share, especially for just non-techy people.

[-] taladar@sh.itjust.works 1 points 7 months ago

I mean the whole "put something in your profile/in a post" part that is pretty flimsy.

Also, non-techy people will not be able to use PGP at all, much less anything building on it that requires understanding of the trust relationships. Hell, even in a tech company we are having a hard time getting people to generate keys every couple of years.

[-] PoorPocketsMcNewHold@lemmy.ml 0 points 7 months ago

Hence, the ability to read from a PGP key, profile proofs easily on the internet. It's for this specific use.

this post was submitted on 07 Apr 2024
31 points (97.0% liked)

Privacy

32045 readers
844 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS