[Openid-specs-ab] Google blog: Charting a course towards a more privacy-first web

Thu Mar 4 17:55:59 UTC 2021

Kim Cameron articulated early that "The internet was built without an
identity layer", by which he meant an organic life form identity layer.
Clearly the DNS is a silicon life form identity layer where each silicon
life form gets an IP address.
OIX & OpenID foundation want to address this with Identity first.
The problem is that (most Western) humans do not want to be objectified. (I
admit I never understood Confucius.)
So, identifiers and attributes (nouns and adjectives) are antithetical to
privacy.
Does privacy impact OpenID foundation - yes it is T-Cell designed to
destroy the virus created by OIX & OpenID.
Somehow ecosystems have evolved to accommodate both. So we know that it can
be done.
I was musing about the self-sovereign community and how they chose to
accommodate privacy and identity.
So the DID core spec has evolved to have no concept of the distinction
between organic and silicon life forms.  In other words it is amoral.
What they have created to enable the distinction is the type in the VC and
governance frameworks to regulate ecosystems.
Or in other words, they have recreated federations (or governments) using
other words to make it sound like something new and different.
The governance frameworks are ethical frameworks, or morals. (I do
understand Aristotle.)
FAPI exists within a governance framework which eventually goes back to a
financial framework which is backed by laws which are backed by morals.
The same can be said to apply to the mobile phone work group in OIDF or any
other specific application area.
The AB/C work group seems to have chosen to avoid consideration of
governance frameworks. (and that has worked up until now.)
So the question for OIDF AB/C is whether to address the governance
framework for OIDC (or its successor spec)?
For identifiers to work with privacy, IMHO such a common governance
framework is required.
Perhaps that is how to deal with the disruption that the browser guys are
creating.
As of right now there is not a common framework between the privacy-first
and the identity-first advocates.
As a result it is hard for OIDF to formulate a strong case to present to
the browser guys.
At a minimum I propose that we need a framework that deals with both
identity and privacy as equals.
Or we can just let them continue on their path and try to accommodate to
their framework.

Serge Chermayeff and Christopher Alexander explored the intersection of
community and privacy. The following link shows how to adapt their concepts
to ID management.
https://wiki.idesg.org/wiki/index.php/Community_and_Privacy_Pattern_Language

Be the change you want to see in the world ..tom

On Thu, Mar 4, 2021 at 4:13 AM Nat Sakimura via Openid-specs-ab <
openid-specs-ab at lists.openid.net> wrote:

> Would this impact us?
>
>
> https://blog.google/products/ads-commerce/a-more-privacy-first-web/
> _______________________________________________
> Openid-specs-ab mailing list
> Openid-specs-ab at lists.openid.net
> http://lists.openid.net/mailman/listinfo/openid-specs-ab
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20210304/fb4b998d/attachment.html>