Repeatedly nuked profile's avatar
Repeatedly nuked profile 10 months ago
>This part is the most egregious, because their "decentralized interoperable identity" is just one server that the Bluesky company hosts. How can that be defended? Where is that coming from? Yeah if you sign up on BlueSky's host and never claim your identity then sure, it's on their server. But you can claim it anytime. Their whole philosophy is let the user claim control when they're ready, and in steps. A user can rely on did:web alone for their ATProtocol identity and not use did:plc at all. You end up with a did.json file that conforms to the DID spec w your public keys, your handle (e.g. fiatjaf.com), and service endpoints like your PDS URL, and that did.json file lives NIP-05 style in location on https://yourdomain.com/.well-known/did.json. I get that many people won't claim their identity, but you can claim it anytime. Even if you set up just your web handle (as many users there have done), that's enough to be able to take did:web adversarially later. Once you claim did:web you are fully in control of your identity on the protocol. If you're talking about did:plc then yes directory operated by BlueSky, though they've announced that's moving out, and my point is that (a) let's wait and see if does move out and where it goes and (b) you don't even need did:plc if you've set up did:web.
↑ Parent

Replies (1)

fiatjaf's avatar
fiatjaf _@fiatjaf.com 10 months ago
Of course I'm talking about did:plc, which is used by everybody except for about 12 weirdos who have set up did:web, and here you are writing a long paragraph as if did:web was this very obvious thing that all Bluesky users use? This is kind of a shitty argumentation move you have there. Anyway, did:plc is the only thing that matters because you cannot migrate out of it into did:web, there is no such thing as "claim your identity". Even if it was, did:web is not decentralized anyway, it's just delegating your identity to another centralized third-party.
1 replies ↓