- From: Kingsley Idehen <kidehen@openlinksw.com>
- Date: Mon, 08 Oct 2012 09:03:48 -0400
- To: public-xg-webid@w3.org
- Message-ID: <5072CF34.6000308@openlinksw.com>
On 10/8/12 8:18 AM, Nathan wrote: > Melvin Carvalho wrote: >> So there was 3 concepts mentioned in the IETF doc we looked at. >> >> 1. Linkability -- you can use webid for this >> >> 2. Unlinkability (A) anonymity -- you dont need to use a cert for this >> >> 2. Unlinkabiity (B) Pseudo Anonymity >> >> I think it's the pseudo anonymity that seems to be raising concerns. > > Perhaps this is of no concern to WebID, the protocol, or the abstract > protocol - and more to do with people's mental model. > > I can set up a service which is only accessible if you use a > cert&identifier issued by it, anonymously on request. I can email that > new cert and identifier to this group (perhaps encrypted with a shared > key), and one of you can use it once to WebID auth with aforementioned > service and pass on some information / post a message / whatever. > > WebID works fine for that, and it's anonymous. > > The point is, that WebID doesn't require that any identifier used is > traceable back to a real world agent. It just requires that a > URI+associated keypair are used, that a the service being auth*d with > "trusts". > > Make sense? > > > +10000.... -- Regards, Kingsley Idehen Founder & CEO OpenLink Software Company Web: http://www.openlinksw.com Personal Weblog: http://www.openlinksw.com/blog/~kidehen Twitter/Identi.ca handle: @kidehen Google+ Profile: https://plus.google.com/112399767740508618350/about LinkedIn Profile: http://www.linkedin.com/in/kidehen
Attachments
- application/pkcs7-signature attachment: S/MIME Cryptographic Signature
Received on Monday, 8 October 2012 13:04:14 UTC