- From: Ben Laurie <ben@links.org>
- Date: Sun, 21 Oct 2012 17:49:54 +0100
- To: Kingsley Idehen <kidehen@openlinksw.com>
- Cc: Henry Story <henry.story@bblfish.net>, Mouse <mouse@rodents-montreal.org>, "public-philoweb@w3.org" <public-philoweb@w3.org>, "public-identity@w3.org" <public-identity@w3.org>, "saag@ietf.org" <saag@ietf.org>, "public-privacy@w3.org" <public-privacy@w3.org>, Sam Hartman <hartmans-ietf@mit.edu>, "public-webid@w3.org" <public-webid@w3.org>
On Sun, Oct 21, 2012 at 5:32 PM, Kingsley Idehen <kidehen@openlinksw.com> wrote: > On 10/18/12 3:29 PM, Ben Laurie wrote: >>> >>> from any person that was not able to access the resources. But you would >>> >be linkable by your friends. I think you want both. Linkability by those >>> >authorized, unlinkability for those unauthorized. Hence linkability is >>> > not >>> >just a negative. >> >> I really feel like I am beating a dead horse at this point, but >> perhaps you'll eventually admit it. Your public key links you. Access >> control on the rest of the information is irrelevant. Indeed, access >> control on the public key is irrelevant, since you must reveal it when >> you use the client cert. Incidentally, to observers as well as the >> server you connect to. >> >> >> >> > A public key links to a private key. > > It could also link to a machine -- due to resolvable machine names on the > Internet due to DNS . > > It could also link to composite of a machine, user agent, and referrer > document -- due to resolvable document names on the Web of Documents due to > HTTP. > > It doesn't provide the high precision link that you speculate about > (repeatedly) re. a Web of Linked Data -- since the referent of a Linked Data > URI is potentially nebulous e.g., entities "You" and "I" . Ah, I agree that the key does not inherently link back to a particular person. What it links is the various interactions that occur under the identity represented by that key. As we know from various anonymity disasters (the AOL search terms and Netflix incidents being the best known), it is not hard, in practice, to go back from those interactions to the person behind them. To be clear: linkability does _not_ refer to the ability to link events to people (or machines). It refers to the ability to link events to each other. The reason linkability is a privacy problem is that it turns out that in practice you do not need very many linked events to figure out who was behind them. I am sorry if that has not been clear from the start. > I know you don't want to concede this reality, but stop making it sound like > those that oppose your view are simply being obstinate. You are the one > being utterly obstinate here. I encourage you to make you point with clear > examples so that others can juxtapose your views and ours. > > Back to you. > > > > -- > > Regards, > > Kingsley Idehen > Founder & CEO > OpenLink Software > Company Web: http://www.openlinksw.com > Personal Weblog: http://www.openlinksw.com/blog/~kidehen > Twitter/Identi.ca handle: @kidehen > Google+ Profile: https://plus.google.com/112399767740508618350/about > LinkedIn Profile: http://www.linkedin.com/in/kidehen > > > > >
Received on Sunday, 21 October 2012 16:50:22 UTC