ManiMe's avatar
ManiMe manime@npub.bar 7 months ago
As the only true “public square” protocol for the internet, Nostr exists to safeguard the sovereignty of END USERS online, from coercion by companies and governments who would take advantage of them. I’m surprised to see that we STILL don’t have a “voluntary standard” for apps to be transparent about their adherence to this protocol. Openness and transparency (over rules and enforcement) is how this protocol is protected. Why is this not a thing?
ManiMe's avatar ManiMe
We need a NIP for clients to voluntarily disclose their data handling … and a network of users and devs that incentivizes them to use it. Primal is just the beginning. There will be more … lots more. Success for Nostr depends on real world businesses integrating with the protocol. WE ALL KNOW that end user sovereignty is good for business (don’t we?) AND YET the dominant paradigm of black box apps will not go away without some hand holding. We SHOULD be building a protocol and libraries that make it easy for businesses to OFF-LOAD more and more of their data to Nostr … but we SHOULD NOT chastise business for simply having black boxes and trying to make money. Black boxes are the old business model. Freedom tech is the new… but transitions are complicated.
View quoted note →

Replies (10)

Laeserin's avatar
Laeserin laeserin@theforest.nostr1.com 7 months ago
Why would there be voluntary non-collection of data, if you have a near monopoly? The ENTIRE POINT of getting that monopoly, is so that you don't have to give a damn about data sensitivity. The data is the product you want to sell.
1 replies ↓
Laeserin's avatar
Laeserin laeserin@theforest.nostr1.com 7 months ago
There is no data privacy on Nostr, unless you are on AUTH relays and/or using encryption. And I am not sure about encryption. And some AUTH relays aren't very good.
Nathan Day's avatar
Nathan Day nathan@day.ag 7 months ago
Attestations allow the signalling of the validity of any other event. Now we have the NIP NIP by @Alex Gleason clients can effectively ACK/NAK those on a per NIP basis. Other devs/orgs can attest to the truthfulness/validity of those claims, along the same lines @npub1j9kt...uswx does. Attestations all the way down. A WoT for notes.
Nathan Day's avatar Nathan Day
A new (~~community~~) NIP is born. Attestations enable a Web-of-Trust for Notes, opening up a whole new design space. https://nostrhub.io/naddr1qvzqqqrcvypzp384u7n44r8rdq74988lqcmggww998jjg0rtzfd6dpufrxy9djk8qqxxzar5v4ehgct5d9hkuucwjpt8v Thanks to those that have helped me develop this idea, including @npub1q6mc...x7d5, @Avi Burra and @arkinox. 🫂
View quoted note →
1 replies ↓
ManiMe's avatar
ManiMe manime@npub.bar 7 months ago
I think attestations from end users will be a great tool to keep “apps honest” … but not a fix on its own. In conjunction with voluntary “self reporting” by app developers AND education and support for actual people to “give a shit” about the app choices they make … we might crack this nut together. 💜
Ov1, a Taoist Bitcoiner's avatar
Ov1, a Taoist Bitcoiner ov1@bitcoiner.chat 7 months ago
I'm about to sign up for a free trial of this security auditing platform. Would love your thoughts on it,
Try SonarQube Advanced Security
Learn more about SonarQube Advanced Security and request a free trial now.
 Also, check your DMs for the links to my GitHub repo and AI vibe-coding hack entry, as well as some info on using 424 Ntag NFCs. I look forward to getting your feedback, few others see what we see and your perspective on what I'm building I expect to be more informed and useful than almost anyone else.