zlacker

[return to "Google’s nightmare “Web Integrity API” wants a DRM gatekeeper for the web"]
1. JohnFe+16[view] [source] 2023-07-24 21:31:25
>>jakobd+(OP)
This sounds like the final death blow to the web as a useful platform for anyone who isn't a corporation.
◧◩
2. margin+5e[view] [source] 2023-07-24 22:15:56
>>JohnFe+16
Why is that?
◧◩◪
3. JohnFe+2i[view] [source] 2023-07-24 22:38:04
>>margin+5e
> Google's plan is that, during a webpage transaction, the web server could require you to pass an "environment attestation" test before you get any data. At this point your browser would contact a "third-party" attestation server, and you would need to pass some kind of test. If you passed, you would get a signed "IntegrityToken" that verifies your environment is unmodified and points to the content you wanted unlocked.

Because of this. If we're at the point where you need to get permisssion and approval to verify that the platform you're using is acceptable, then the gates are up and the free web is no longer free at all.

◧◩◪◨
4. summer+0F[view] [source] 2023-07-25 01:26:50
>>JohnFe+2i
> If we're at the point where you need to get permisssion and approval to verify that the platform you're using is acceptable

I guess it has been the case from the good old CGI era? I do remember all those private forums that required me to wait for several days until they can "verify" my identity and "approve" my registration. The control always has been at the hand of platform. The difference is that now attacks are much more sophisticated (GPT-4 powered!), while defense line is left at a pretty miserable state.

[go to top]