RT @gutenberg_org: Public Domain Day Is Here!: Copyrighted Works have entered the Public Domain today for the first time in 21 years https:…
Paper RPG industry historian @Appelcline (author of the definitive 4-volume history of RPGs “Designers & Dragons”) starts off the new year with a detailed review of the events of the last year: https://www.rpg.net/columns/advanced-designers-and-dragons/advanced-designers-and-dragons24.phtml
Replying to @davewiner
The SSD is soldered on the motherboard, as is RAM. There will be no aftermarket upgrades. Do yourself a favor and custom order more SSD & RAM than you need—this generation of MacBook Air is solid and may last you 3-4 years before you’ll want to replace it. https://www.ifixit.com/Teardown/MacBook+Air+13-Inch+Retina+2018+Teardown/115201
I have room in 2019 for an apprentice. Not only about blockchain & identity but about a variety of tech & knowledge adjacent like game theory, incentive design, managing online communities, etc. Ideally SF Bay Area local. I also will have a paid internship opening next summer.
This is a good time of year to think about the big picture. Futurist @technoshaman describes a ritual/process for thinking about this. Next is peer review—one thing that is missing for me is a learning circle of colleagues to call each other each other out on our own deceptive BS https://twitter.com/technoshaman/status/1080163455397707776
RT @andrewtneel: @ChristopherA @ismangil All photos submitted to Unsplash are run through a reverse image search engine to check their auth…
RT @RuffTimo: Fantastic, insightful presentation about the nature and importance of #selfsovereignidentity.
Most other pieces recite the…
Replying to @PratsArthur
Send me email at ChristopherA@LifeWithAlacrity.com
RT @Blockstream: Watch @Blockstream’s Russell O’Connor talk about #Simplicity, a #programming language that developers can use to build sop…
Replying to @creativecommons
I think unmoderated CC search tools may now be problematic due to abuse. Too many errors or deliberate spamming by use of/theft of content. I notice that Unsplash has a policy of doing reverse image search of all submissions.
RT @RayBoomhower: “Anti-intellectualism has been a constant thread winding its way through our political and cultural life, nurtured by the…
RT @corkmork: @jonmasters @Arm As a somewhere in between armchair cpu architect and actual cpu architect, I think I would rather start with…
Interesting thread. I know some women that are quite comfortable but they are still also challenged. I work hard at conferences that I’m involved in hosting to make it as comfortable & inclusive as possible for women to participate, but we have much less control of after-hours. https://twitter.com/WillCaruana/status/1080513192634318850
https://twitter.com/christophera/status/1080708899064373253?s=21
Replying to @pajasevi
The challenge for you if you are serious about moving to bitcoin industry is to transition out of JavaScript. It is still good for websites and UI, but what we need are more coders using more secure languages to implement code associated with bitcoin.
OMG! Can’t ASN.1 & PKCS#7 just die die die! I had a chance of killing them 25 years ago and failed 🤷🏻♂️. https://twitter.com/aionescu/status/1080573780743749632
Good fiction piece relevant to #RebootingWebOfTrust Amira use case. #qotd: “If there’s a disagreement, we call on a Nonce Oracle…Uberized jurors—uh, people who ride around all day on scooters and adjudicate preconditions in smart contracts.” https://www.wired.com/story/future-of-work-trustless-ken-liu/
I’m amused that the domain http://nonceoracle.com was poached December 20th.
Replying to @ubolator and @pajasevi
Probably a good transition is Go, and take a look at btcd & lnd.
On January 3rd at 10:15 AM PDT (16:15 GMT) the first Bitcoin block was mined 10 years ago today, this minute. The hash of this “Genesis Block” is 0x000000000019d6689c085ae165831e934ff763ae46a2a6c172b3f1b60a8ce26f. Happy Birthday, Bitcoin! For more details: https://bitcointalk.org/index.php?topic=172009.0
Replying to @giacomozucco
Though I appreciate some of what @ev was trying to do with @medium, there seemed little value to me to put my content there. I put my long article http://www.lifewithalacrity.com/2015/04/the-four-kinds-of-privacy.html there also in my blog. Long term my blog did better. Never understood giving up my brand to Medium.
Replying to @hasufl, @giacomozucco, @ev and @Medium
More reads, more comments, and most importantly more longevity. Of the two, google and other search engines find my blog first.
Do you remember when you joined Twitter? I do! #MyTwitterAnniversary! 12 years ago, before #SXSW in 2007. 6 months later the iPhone came out & I met co-founders of iPhoneDevCamp on it (though it would be another 2 months before the #HashTag was invented!). Started co-working too!
https://twitter.com/chrismessina/status/223115412 Ironically, Twitter founder @ev once told @chrismessins that hashtags were too nerdy to go mainstream.
I didn’t have a lot of faith in Twitter at start (I’d written a post about there already being too many social networks in 2004, before even Facebook was available to non-students http://www.lifewithalacrity.com/2004/01/too_many_social.html)) but by end of year used Twitter to create 2 events & establish co-working.
Replying to @cypher_funk
No, Twitter didn’t put Trump in the White House. Putin & others learned how to use modern mass media for populist xenophobic traction, used later by Turkey’s Erdoğan, Poland’s Kaczynski, Hungary’s Orbán & now Brazil’s Bolsonaro. Trump is only leveraging a larger memetic attack.
RT @mekkaokereke: He joined SpaceX as a “founding employee.” He designed the Merlin engine. He’s CTO of Propulsion. His name is Tom Mueller…
👍“Do some rough analysis of the current lightning network: number of (public) channels…Apply a scaling factor to…on regtest…Write a program to generate all the gossip generated by that network.
Feed the gossip into a test node and watch it die horribly. Fix the bottlenecks” https://twitter.com/rusty_twit/status/1081688111191478272
#SmartCustody—Are you considering all possible threats to your digital assets? Do you have comprehensive procedures to assess your risk profile? We (@anguschampion, @kanzure & I) will be hosting our 1st workshop on Tue, Jan 29 at @Blockstream in Palo Alto: https://www.eventbrite.com/e/smartcustody-simple-cold-storage-self-custody-workshop-tickets-54426618481
Adversary: Active Network Attack
Motivation: “I know you personally have cryptocurrency, and I want to steal it. I will use my expertise with programming or with hacking to attack you on the internet, and then your bitcoin will be mine.” https://www.eventbrite.com/e/smartcustody-simple-cold-storage-self-custody-workshop-tickets-54426618481
Adversary: Bitrot. Motivation. “I am entropy writ large. I want to break down your storage, crash your hard drives and degrade your optical media. I want to prevent your computers from booting, your programs from running, and your data from reading; in the end, I always win.”
Adversary: Systemic Network Attack
Motivation. “I’m a big kahuna among hackers. I don’t go after your little bitcoin wallets, I go after the exchanges & bitcoin sites instead. Nonetheless, you might just find yourself at a literal loss when I bankrupt those holding your wallet.”
Just three of our 24 digits asset adversaries we teach detailed case studies about at our #SmartCustody Workshops, along with risk modeling & creation of protective processes and checklists to meet your individual needs. https://www.eventbrite.com/e/smartcustody-simple-cold-storage-self-custody-workshop-tickets-54426618481
RT @ChristopherA: Adversary: Active Network Attack
Motivation: “I know you personally have cryptocurrency, and I want to steal it. I will u…
RT @ChristopherA: Adversary: Bitrot. Motivation. “I am entropy writ large. I want to break down your storage, crash your hard drives and de…
RT @ChristopherA: Adversary: Systemic Network Attack
Motivation. “I’m a big kahuna among hackers. I don’t go after your little bitcoin wall…
RT @ChristopherA: Just three of our 24 digits asset adversaries we teach detailed case studies about at our #SmartCustody Workshops, along…
Replying to @attractfunding, @anguschampion, @kanzure and @Blockstream
All good questions. Some of which there are not good answers so part of workshop is to share current best practices and improve or invest in those that are weak rather than handwaving them away. Perfection is the enemy of the good on this topic.
In the risk modeling part of #SmartCustody workshop we start teaching a very basic one so you can understand it—she diagrams flows cold storage & Coinbase. Later models are much more sophisticated.
Here after some processes on the flow model, we map the risks against the 24 adversaries. This allows us to analyze & triage the true threats to her digital assets. Fighting all adversaries is expensive and subjects you to adversaries Process Fatique & Convenience.
This inspires this digital asset holder to revise their practice, change our base checklists & processes to met their needs. Here is the new flow diagram. You will learn all these basics at our workshop and more. https://www.eventbrite.com/e/smartcustody-simple-cold-storage-self-custody-workshop-tickets-54426618481
RT @ChristopherA: In the risk modeling part of #SmartCustody workshop we start teaching a very basic one so you can understand it—she diagr…
RT @ChristopherA: Here after some processes on the flow model, we map the risks against the 24 adversaries. This allows us to analyze & tri…
RT @ChristopherA: This inspires this digital asset holder to revise their practice, change our base checklists & processes to met their nee…
Replying to @BobMcElrath, @anguschampion, @kanzure and @Blockstream
You can sign up for notices about future events at https://tinyletter.com/SmartCustody
RT @JamieXML: Yay! Love seeing this direction.
🤖💙⛓
“Now that we’re asking you to commit your high-value assets and contracts to this #bloc…
RT @waltofk: Good article - the crux of it - ultimately “good #governance should not be a means of state control but a means to unleash sus…
Small private GitHub repositories are incredibly useful collaboration tools. You don’t even need to use a command line interface—use the web UI or a little more complex use the GitHub app & the Atom text editor. With issues, free HTTPS web pages and more! Free for up to 3 people! https://twitter.com/natfriedman/status/1082345111566970880
How about do a deal with the folks at @htcexodus cell phone! I’ll send them a note, but could be a great opportunity! (I’m former Blackphone and created a secure Apps store for it—let’s do one for the Exodus!) cc @philchen913 https://twitter.com/SamouraiWallet/status/1082439693751472128
Replying to @SamouraiWallet and @GooglePlay
https://twitter.com/christophera/status/1082458113024811008?s=21
👍 Perfection is the enemy of good: “added Bluetooth means that the Nano X can readily be used with mobile devices, which has been a pain point for many users of the company’s current wallet, the Ledger S. Much of the world primarily uses mobile computing” https://www.coindesk.com/ledger-crypto-wallet-goes-mobile-with-bluetooth-ready-nano-x
Replying to @TradingEnginee4, @SamouraiWallet, @htcexodus, @philchen913 and @Puri_sm
I’ve heard in the rumor mill @Puri_ism may have run out of enough money to do custom hardware themselves, and may just do software. Too bad. It currently looks like HTC Exodus is the best hope but it would be a future version as its current hardware is stock but custom software.
RT @darraez: @GooglePlay is putting a lot of Venezuelans at risk. Please reconsider https://twitter.com/SamouraiWallet/status/1082439693751472128
The Ugly: “Dependency slurping systems like NPM, CPAN, go get & so on continue to freak me out. They might potentially be more dangerous than manual dependency management…(as) the number of individuals and organizations that you implicitly trust.” @jb55 https://noncombatant.org/2019/01/06/state-of-security-2019/
RT @no2uid: On Friday, Jan. 4, Lok Sabha passed the #AadhaarAmendmentsBill with very little debate and scrutiny. We hope that the Rajya Sab…
I wish I was nearby so I could audit @hackylawyER’s course. There is much to be learned in this intersection of law & tech. For instance, she shares my concerns that property rights are the wrong underlying basis for basing identity rights despite years of practice otherwise. https://twitter.com/hackylawyER/status/1082394157375807489
Replying to @attractfunding and @hackylawyER
I talk about it some in my video at https://youtu.be/2g6KSv1aeuI but @hackylawyER & @dazzagreenwood go deeper into it at https://link.medium.com/oKgmpxDGiT — I think there may be a video on this too someplace. Largely at W3C Credentials CG we are thinking more this way in our writing. Not ‘own’.
RT @jb55: @ChristopherA speaking of which… was greeted with this today on a client project. nuget release hashes changing AGAIN on their…
I wrote this 3 years ago today, yet there still some sites (mostly devices) using SSL 3.0—20 years now & not deprecated! I would also argue that anything using TLS 1.0 (I was co-editor) should be retired. This is also a lesson for blockchain world—deprecate before technical debt! https://twitter.com/ChristopherA/status/685348416726024192
Replying to @olata_malarkey, @byrongibson, @anguschampion, @kanzure and @Blockstream
Probably not of this first workshop as it is our first iteration. No first instruction survives — we’ll learn, adapt and record one of the next.
This is the successor to iOSDevCamp that I was one of the founders & hackathon host. This event inherits some of the best practices of a great hackathon that I inherited from MacHack. Low hype, focused on community not sponsors, and great diversity (largest % women I know of)! https://twitter.com/dom/status/1082043515779960832
RT @davetfields: I went in search of the proper definition of self-sovereign identity today and returned to an old classic by @ChristopherA…
Replying to @sramkrishna, @SamouraiWallet, @TradingEnginee4, @htcexodus, @philchen913, @Puri_sm and @Puri_Ism
Given my Blackphone history I’m very supportive of a vibrant secure app store ecosystem, of anyone hardening Android both on the software side as well as hardware (for instance I really want secp256k1 signing inside HSMs not outside). Also key is that all needs to be open source.
Replying to @davetfields
So far I’ve not found a great one-sentence “definition” for self-sovereign identity. It really is the sum of the principles.
Replying to @davetfields
My best short one so far isn’t quite a definition but a statement: “We should have control over our own digital identity in regards to our relationships & interactions with other people, organizations and things as we have control over our physical selves.”
Replying to @NZN
A great article on why we should not use property rights as a paradigm for digital identity or privacy, by @hackylawyER & @dazzagreenwood: https://medium.com/@hackylawyER/do-we-really-want-to-sell-ourselves-the-risks-of-a-property-law-paradigm-for-data-ownership-b217e42edffa
RT @szpak: While ownership implies a property law model of our data, we argue that the legal framework for our identity-related data must a…
RT @doerkadrian: @SamouraiWallet had to remove certain security features from its wallet, due to pressure from the @GoogleStore. Let’s buil…
Replying to @doerkadrian, @SamouraiWallet and @GoogleStore
Here is an archive of my last attempt to do an app store dedicated to secure and reviewed Android apps that was posted while I was at Blackphone. It includes some security review requirements (dated now, this was early 2015) but a good start. https://lists.mayfirst.org/pipermail/guardian-dev/2015-March/004276.html
Replying to @doerkadrian, @SamouraiWallet and @GoogleStore
If someone is serious about this let me know.
RT @ChristopherA: @doerkadrian @SamouraiWallet @GoogleStore Here is an archive of my last attempt to do an app store dedicated to secure an…
This dual USB-C and Lightning FIDO2 YubiKey would be very useful to me as an Mac & iOS user. Unfortunately, for iOS support it looks like the devs have to do some extra licensing, but worth it as additional security for a cryptocurrency & exchange wallets. https://www.wired.com/story/yubikey-lightning-ios-authentication-passwords/
Replying to @doerkadrian, @SamouraiWallet and @GoogleStore
Hmm, it looks like the security requirements are missing from this copy, just has the contract. I looked on http://archive.org but it doesn’t have it. Silent Circle/Blackphone is now bankrupt — does anyone have a public archive of the file “Silent Store Standards.pdf”?
Replying to @sramkrishna
Basically if your iOS app talks to hardware outside of Apple standard APIs, the hardware vendor has to have been certified for Apple MFi (Made For iPhone) & the app developers have some restrictions too. This may all be addressed next summer at WWDC with new official Apple APIs.
Replying to @sramkrishna
RT @MarkFriedenbach: I would modify slightly as: “a set of design and ethical principles.” Self-sovereign identity is as much a basic human…
RT @dazzagreenwood: Evolution of the law and legal instruments to data-driven, algorithmic and computational code, services and systems is…
RT @paulohm: Quoting from the above: “Blaze will be the first computer scientist teaching without a J.D. in a tenured or tenure-track posi…
Replying to @trbouma
Unfortunately multi-national corporations can have self-sovereignty much more easily than people can.
Replying to @ljxie
Reminds me of the scenarios from DAO-like “freelancing on steroids” in @itsDanielSuarez’s great near-future SF duology Daemon & Freedom. Highly recommend reading for the blockchain community: https://www.amazon.com/gp/bookseries/B00PP3G7CW/ref=dp_st_0451228731
Replying to @NicolasDorier
I’ve also been looking into that under new Wyoming laws, where it might be possible. Plus new law last years allows stock to be held keys. Doing both some legal prototyping and some corporate governance wallet code. Some progress, but lower priority than some other projects now.
RT @willcrum1: I’ve seen no better diagnosis of society’s fake news + misinformation + echo chamber crisis than this piece from @zeynep jus…
RT @NakulShenoy: The Aadhaar Amendment Bill is being presented in the Rajya Sabha today, to allow private operators access our personal inf…
“While the MIT group wasn’t trying to unmask specific users in this dataset, they proved that someone acting in bad faith could merge such anonymized datasets with personal ones using the same process, easily pinning…to figure out who was who” https://www.fastcompany.com/90278465/sorry-your-data-can-still-be-identified-even-its-anonymized
Another one of our cooperative board game case studies that didn’t quite make the cut to be in our soon-to-be-released book @MeeplesTogether. This one looks at how cooperative game mechanics can even be used to make even better competitive board games. https://twitter.com/MeeplesTogether/status/1083084054340063232
RT @JoeAndrieu: @ChristopherA Complete anonymization doesn’t exist. Identity isn’t limited to a handful of attributes, it covers all the w…
RT @JoeAndrieu: @caelumlabs @im_dario @ChristopherA @manusporny @Appelcline @_sobtec Indeed! Everyone is a co author at RWOT. Newbies are w…
RT @caelumlabs: 📆 Save the date for the next #RebootingWebOfTrust
We’re glad to announce that we are going to host the next Rebooting the…
RT @speakingcrypto: When we talk about data privacy breaches we tend to look at it from the user’s perspective or big businesses harvesting…
Some nice tips here for how to get new #Signal account running using their desktop app without a cell phone, using any SMS-capable number you control. Not easy, but not hard. Could be useful technique in a number of scenarios—I’ll have to try this with my old Google Voice number. https://t.co/67IFzfKEEG
“to the GDPR, you are a mere ‘data subject’ and not an independent and fully functional participant in the technical, social and economic ecosystem the internet supports by design. All privacy protections around your data are the burden of other parties” https://www.linuxjournal.com/content/if-your-privacy-hands-others-alone-you-dont-have-any
Quote from article by the esteemed @dsearls. See also thread starting at https://twitter.com/dsearls/status/1083058721998102529?s=21
I really enjoy classic film noir — I’m looking forward to 10 dark evenings starting January 25th at the beautiful @castrotheatre in SF for the #NoirCity Film Festival http://noircity.com hosted by @EddieMuller for @noirfoundation. Also lots of period costumes in audience! https://twitter.com/FilmNoirWorld/status/1082965702250774528
We need better tools for resilience, deniability & social key recovery, both on the cryptography & implementation side (needing peer review & open source) as well as better understanding of use cases & UI. #BlockchainCommons is seeking funding for this. https://www.blockchaincommons.com/proposals/Project-Proposal-New-Social-Key-Recovery-Approach/ https://twitter.com/Leon_Vandenberg/status/1083151346767847424
Looks like I’ve got to spend some back at IETF: “Messaging Layer Security (MLS) is an IETF working group building a security layer for encrypting messages in groups of size two to many. It is being designed to be efficient, practical and secure.” https://mlswg.github.io/
Still on the team list, but I didn’t contribute much to TLS 1.3 other than occasional moral support and sometimes offering some historical context. But I got the t-shirt! #RealWorldCrypto https://twitter.com/sergesim/status/1083096576958976001
Eric Rescorla did a great job shepherding the TLS 1.3 release against a lot of inertia. I never thought it would take 20 years to do the next major version of TLS, but this one succeeded. (I still think it deserves the moniker of TLS 2.0 or SSL 4.0). https://twitter.com/bal6765/status/1083094693653540864
Some emerging standards around Messaging Layer Security (IETF MLS WG) will hopefully offer some solutions to the hodgepodge of apps claiming to offer messaging security. But it is a solvable problem. See thread👇 https://twitter.com/durumcrustulum/status/1083048117023531009
RT @DragosRotaru: Hugo Krawczyk talk at #realworldcrypto about OPAQUE, a password authentication scheme free from PKI and immune to offline…
RT @tdierks: A team I’m honored to have made an early, if small, contribution to. Congratulations to EKR for his well-deserved recognition…
RT @bascule: Bellare’s acceptance speech echoed the sentiments of his frequent collaborator (and previous Levchin prize winner) Phil Rogawa…
RT @CaitlinLong_: IT BEGINS! The first of 6 #Wyoming #blockchain bills passed Senate committee 5-0 today. This bill allows banks to keep bo…
Hard to believe it was 1999, 20 years ago this month, that TLS 1.0 went final, after a little over 4 years of work with huge changes from SSL 2.0 in 95 & SSL 3.0 in 96. A lesson for creators of new standards is it took 19 years to really upgrade it to v2. https://www.ietf.org/rfc/rfc2246.txt
Another good one from @hackylawyER: “Once digitized, data about us…becomes “money-like” and takes on a transferable or transactional quality.…legal frameworks fall short because they fail to address the underlying convergence of money and speech as data” https://medium.com/@hackylawyER/money-talks-how-digital-money-speech-challenge-existing-legal-frameworks-dd845a7ceaf7
Replying to @hackylawyER
Other good questions from @hackylawyER: “in creating cashless societies do we inadvertently impose a restraint on our freedom of speech and expression? Or, conversely, compel speech where we can no longer remain anonymous?” https://medium.com/@hackylawyER/money-talks-how-digital-money-speech-challenge-existing-legal-frameworks-dd845a7ceaf7
RT @ChristopherA: @hackylawyER Other good questions from @hackylawyER: “in creating cashless societies do we inadvertently impose a restrai…
@dominictarr Let’s discuss Social Key Recovery, Shamir Secret Sharing, uses cases, UI, etc. at next #RebootingWebOfTrust in Barcelona March 1-3. See also https://www.blockchaincommons.com/proposals/Project-Proposal-New-Social-Key-Recovery-Approach/
Excellent long-read by on #BlockchainGovernance by @RichardRed0x that serves as an accessible introduction to its history in bitcoin & current issues on other blockchains. I may quibble with some conclusions, but the basics facts are solid. https://medium.com/@richardred/a-users-perspective-and-introduction-to-blockchain-governance-80fbe2050222
Replying to @trentmc0, @DimitriDeJonghe, @iang_fc, @Nature2_0, @_terra0 and @OdysseyHack
At one point I did an little investigation of if non-human parties could “own” themselves. Ended up being a catch-22/perestroika doll of challenges. Even corporations, though they can buy their own stock, ultimately it increases the value of remaining stock. Any legal scholars?
These are among the new 21st-Century skills we need to have that our old educational systems are not good at teaching. I taught about these in an MBA program once, and students reported it was among most powerful class long-term for them. But it is for more than MBAs—fundamental! https://twitter.com/reasonisfun/status/1083137440456548355
Replying to @carl_dong, @Blockstream and @ChaincodeLabs
Congratulations! I look forward to seeing more from you in coming years!
These are also fundamental 21st-century skills and @hrheingold has been teaching them for longer than anyone I know. https://twitter.com/hrheingold/status/1083444970898436096
RT @iamjosephyoung: 10 year anniversary of Hal Finney’s “Running bitcoin” tweet.
A true legend
Replying to @jimyoung2817
Of course, understanding cognitive bias is another key skill! My list of 21st-century skills is long! But though I’ve taught professionally & led academic workshops I’m not an academic (I don’t even have college degree!) so how best to deploy these skills in our systems is hard.
Why you don’t roll your own crypto. “We use a lattice-based algorithm for solving the hidden number problem to efficiently compute private ECDSA keys that were used with biased signature nonces due to multiple apparent implementation vulnerabilities.” https://twitter.com/nomeata/status/1083142428993949702
RT @grittygrease: Christopher Allen (@ChristopherA) of TLS 1.0 fame is proposing a decentralized identifier. It’s not just about blockchain…
RT @durumcrustulum: @ChristopherA says don’t use TLS 1.0 anymore (he wrote it 😁)
One of the challenges today in blockchain & cryptographic security is the “free rider” problem where large organizations benefit hugely from the efforts of a few critical open source cryptographic developers, but do not fully support them. This led to events like #Heartbleed …
I’m exploring how to address these blockchain infrastructure & internet security problems in a vendor-neutral (and blockchain independent) way through something I’m calling #BlockchainCommons. You can support as dev by contributing time, or as vendor w/$. https://www.BlockchainCommons.com
For instance, former bitcoin-core dev @MarkFriedenbach has committed 50 days a year to #BlockchainCommons, as have I. With more dev time commitments of even just 5-days a year each (say to do a peer review) we can reach out to foundations & corps to support us financially. …
For instance, we are seeking to add to team to explore social key recovery & resilience both from understanding of social and user factors, as well as better cryptographic libraries. As many need this we can get $ from foundations & corps to solve this. https://www.blockchaincommons.com/proposals/Project-Proposal-New-Social-Key-Recovery-Approach/
Not all problems are cryptographic — we are also working on better standards for digital asset management & custody as these are becoming huge risk to our ecosystem. See the start of these #SmartCustody standard & educational workshops on this topic at https://www.SmartCustody.com
Replying to @jaybny
That is the idea — commit some time in advance (little as 5 days a year) to #BlockchainCommons, we puzzle out how to best use it and the time from others toward commons efforts, get funding from corps & foundations (as there is shortage of peer review & code), and pay everyone.
Replying to @Davidstrayhorn
Working on it! See Amira case study “In our scenario, Amira is a successful programmer working in Boston at a prestigious multi-national bank. Outside of working hours, Amira wants to give back to her community by writing software that matters”: https://github.com/WebOfTrustInfo/rwot5-boston/blob/master/final-documents/amira.md
RT @ChristopherA: @Davidstrayhorn Working on it! See Amira case study “In our scenario, Amira is a successful programmer working in Boston…
Replying to @delitzer
For me key point is that the powerful, who in many ways can afford to manage the risks of transparency, are the ones that are most able to have/buy privacy. Those without power are at most risk of abuse & also have the least privacy or give it unknowingly as product for others.
Replying to @glenweyl and @JTremback
We have had the same problems with the events like #RebootingWebOfTrust that I host. Only after three years is it really beginning to break even. Classic free rider problem. Working on these infrastructure problems is part of #BlockchainCommons but hard. https://twitter.com/christophera/status/1083461061846564864?s=21
“An emerging perspective is that the application of blockchain can be most valuable when it democratizes data access, enables collaboration, and solves specific pain points. Certainly, it brings benefits where it shifts ownership from corps to consumers” https://www.mckinsey.com/industries/financial-services/our-insights/blockchains-occam-problem
RT @ricburton: Does anyone have any advice on how much equity and options to offer the first 10 people?
What is the standard model? What d…
Replying to @ronmartinez
One of the considerations when I joined Blockstream was their strong defensive patent policy—I had been stymied while CTO of Certicom doing micropayments dev in 2000 due to patents on Merkle Trees & Schnorr. Now that I’m no longer at Blockstream still OK: https://blockstream.com/about/patent_faq/
Replying to @ronmartinez
It is a serious issue. There are also a lot of non-practicing patent holders filing and getting blockchain related patents. There are a number of banks like Wells Fargo doing so. Pooling by various defensive patent holders I hope will be an answer but it is challenging.
RT @VitalikButerin: @zooko I am not impressed. Agree that privacy is a strategy, but his “alternative stategies” both (i) rely on very opti…
I agree with @SarahJamieLewis, though there is tech still to be developed to be able to effectively do deniable privacy (aka crossing border encryption), the biggest problems in this category are not the technical ones. The threat model is complicated. https://twitter.com/SarahJamieLewis/status/1083465039724433409
RT @m_dubovitskaya: Please submit to PENCIL (Workshop on Privacy ENhancing Cryptography In Ledgers)! The submission server is now open! htt…
RT @CaitlinLong_: ANOTHER ONE in the books for #Wyoming, 8-1 on HB 62, which broadens #utilitytoken language enacted in 2018 & moves it out…
Four factors of identity system failure… https://www.economist.com/christmas-specials/2018/12/18/establishing-identity-is-a-vital-risky-and-changing-business
“an administrative imposition of order that is inflexible & leaves out a lot of details about things in an attempt to make them simpler; an ideology that elevates science and technology above all else; an authoritarian state; & a prostrate civil society.”
I’m hoping this bill passes. I’d like see requirement of open standards, such as W3C Decentralized Identifiers, with W3C Verifiable Credentials signed by the Wyoming Secretary of State. There are a number of active DID projects that could legitimately bid on this project. https://twitter.com/propelforward/status/1083722312631881729
This would result in a corporate “birth certificate” that could serve as a seed of trust about the Verifiable Credentials issued about the company, or issued by the company about others.
RT @alexbosworth: Trust-minimization is also a battle for hearts and minds. Many don’t really value freedom of expression, freedom of movem…
RT @JoshuaWBaron: Solid point today at #realworldcrypto: formal verification of cryptographic protocols shouldn’t involve verifiers actuall…
Replying to @tomchristoffel
With these type of corporate records privacy is less of an issue, but the data is not put on an immutable blockchain, only the cryptographic timestamp is immutable. Corrections are also timestamped, which is also an important corporate record.
Replying to @iang_fc, @trentmc0, @DimitriDeJonghe, @Nature2_0, @_terra0 and @OdysseyHack
Under new Wyoming HB101 law stockholders can be represented by keys. Under upcoming bill data records about companies from Secretary of State are registered using blockchain tech. 🤔Hmm, thinking smart contract thoughts.
RT @Blockstream: C-Lightning v0.6.3 is now released! The update includes private channel creation support, alpha plugin support, bug fixes,…
RT @notgrubles: I just published “Using Lightning on MacOS”, an easy to follow tutorial for installing and using Spark wallet and @Blockstr…
RT @Blockstream: IMPORTANT: On Jan. 16th, #BlockstreamSatellite will undergo a service interruption @ 12-1PM EST to bring online a more fle…
Replying to @lrettig
The problem is the tragedy of the free. As long as Google & other monopolistic/oligopolistic parties bundle calendaring for free, it is very hard to build a business that serves power users. True for email, shared docs, etc. Also poisons market for long time, e.g. Google Reader.
Working toward a corporate governance wallet, for WY:
“‘Shareholder’ means …(other kinds of shareholders)…or the owner of a private key that is uniquely associated with a network address that facilitates or records the sending and receiving of shares” https://www.wyoleg.gov/2018/Introduced/HB0101.pdf
CC: @angela_walch, @Steve_Lockstep, @hackylawyER , @dazzagreenwood, @stephendpalley,@prestonjbyrne @msantoriESQ, @ScottLDavid @yaoeo, @kemitchell, @trentmc0
RT @adam3us: this new @blockstream satellite 📡🛰️code release broadcasts transactions before blocks, using compact blocks and a newer versio…
RT @CaitlinLong_: TWO MORE #blockchain bills clear first hurdle in #Wyoming! Bill to fund WY Sec of State integration w/ a blockchain passe…
RT @hackylawyER: PSA - here is the new trap that the #bigtech lobby has invented to deny our #privacy rights, it’s called the “proprietary…
RT @grittygrease: On to day 2 of the second Messaging Layer Security (MLS) interim meeting in Mountain View. Lots of interesting discussion…
RT @ChristopherA: #SmartCustody—Are you considering all possible threats to your digital assets? Do you have comprehensive procedures to as…
RT @10xmgmt: Congratulations Bryan!
Our client @kanzure is hosting, alongside @ChristopherA and @anguschampion, his first workshop in Palo…
RT @JoeAndrieu: If you have (or anticipate having) digital assets of notable value, you owe it to yourself and your loved ones to learn how…
Replying to @Davidstrayhorn, @keutmann, @marttimalmi and @oncea230guy
There definitely is some need for work in this area. BTW: specific to rating systems have an extensive set of blog articles. This is the last based on our results, a list of blog posts at bottom includes the theory: http://www.lifewithalacrity.com/2007/01/collective_choi.html
RT @pierre_rochard: What an excellent team to work with on crypto custody!
You should fly to Palo Alto from anywhere in the world, whether…
Replying to @maddiestone
Working remotely is great at first, but without regular F2F contact can be challenging. Vicarious F2F via co-working part-time locally can help the social human side of the problem, but you need at least quarterly F2F with team colleagues best cohesion.
This is the type of event where #SmartCustody Risk Modeling helps you understand where your custodial risks are & how to minimize them. You may never get to no-risk, but you can get to the point where it is a manageable risk. https://www.eventbrite.com/e/smartcustody-simple-cold-storage-self-custody-workshop-tickets-54426618481 https://twitter.com/CoinDesk/status/1085111035844087808
RT @creativecommons: We’re gonna party like it’s 1923! Join us for a Grand Re-Opening of the Public Domain on Jan 25, and check out a few q…
RT @kimdhamilton: Thank you to @mitDCI for allowing me to present about the future of @Blockcerts and emerging self-sovereign id/credential…
RT @Blockstream: We’re excited to announce the launch of the #SatelliteAPI Beta! Pay via testnet #LightningNetwork to globally broadcast da…
RT @Klonick: Me, starting Internet Law class w/a joke: Guys, the last time this course was taught here the cutting edge case was Napster!…
RT @paddykcl: Nearly 1 month until the paper submission deadline for the IEEE Security & privacy workshop (co-located with EuroS&P).
We e…
RT @hackylawyER: @NSmolenski Mixed feelings on this. Sure, we have a right to know what’s going on but why do data brokers even exist? Beca…
“All of these secondary markets for your information exist in a shadow economy that’s largely unchecked – out of sight of consumers, regulators and lawmakers,” Cook wrote. “Let’s be clear: you never signed up for that.” #rightsnotproperty https://www.bloomberg.com/news/articles/2019-01-17/apple-ceo-calls-for-data-broker-clearinghouse-in-privacy-push
I never did get any good advice from the PGP community about best practices for rotating GPG keys. My long-term key, mostly used for code signing, expires in March. If I’m challenged in doing this correctly it demonstrates why we must complete #RebootingWebOfTrust. https://twitter.com/ChristopherA/status/1069772099726696448
RT @CaitlinLong_: This isn’t yet #Wyoming’s BIG REVEAL but it’s nifty! A new #blockchain bill just released—enables corporate stock certif…
RT @legal_block: Congrats to @Tyler_Lindholm @robjennings @CaitlinLong_ & all our friends from the Wyoming #Blockchain Coalition for…
WY HB185: “shares of the corporation may be represented by share certificates in the form of certificate tokens…authorized at the time of issuance by 1 or more messages, commands or transactions signed with the network signatures of 2 officers designated” https://wyoleg.gov/Legislation/2019/HB0185
I find these points a root concern of mine for many blockchain & identity projects as well. Bitcoin-core somehow avoids it, but I’m not sure how to bring some of that particular security culture elsewhere. It certainly can’t happen in #MVP & #Agile startup cultures. Alternatives? https://twitter.com/Steve_Lockstep/status/1086087197277642754
RT @trbouma: My @SSIMeetup webinar is now posted on @youtube and @SlideShare. Thanks everyone for the record attendance! #digitalidentity #…
RT @hackylawyER: @ChristopherA @sedcHH The rhetoric is good & the data broker industry is part of the problem for sure, but let’s keep one…
RT @MeeplesTogether: Meeples Together is off to press, and the ebooks remain on schedule for February! Read all about it in the newest Upda…
Our next (the 8th!) #RebootingWebOfTrust will be an exciting one, with DIDs, auth, ZKP for identity, social key recovery, object capabilities, GDPR & more on agenda! March 1-3rd in Barcelona. Come collaborate with us! Big discount with advance topic paper. https://rwot8.eventbrite.com
RT @CaitlinLong_: 1/ TWEETSTORM about #Wyoming’s BIG REVEAL. This is long & info-packed, so buckle in. My native state is about to do bigge…
RT @VitalikButerin: M-of-N social key recovery in the @htcexodus “blockchain phone”
I’ve been a proponent of such things for a long time;…
RT @VitalikButerin: The phone also has a trusted hardware chip to store keys securely (not yet a hardware switch showing the user when the…
Replying to @VitalikButerin, @philchen913 and @glenweyl
I hope you can make it to next #RebootingWebOfTrust in Barcelona March 1-3rd. There is a reason HTC is a sponsor and I’m an advisor on the Exodus phone. Taiwan & Catalan have some common issues on non-state identity. Join us to continue work on this! https://rwot8.eventbrite.com
RT @VitalikButerin: CC @philchen913
Also @glenweyl this is arguably an early step toward formalized non-state-backed identity.
RT @ChristopherA: @VitalikButerin @philchen913 @glenweyl I hope you can make it to next #RebootingWebOfTrust in Barcelona March 1-3rd. Ther…
Replying to @VitalikButerin, @philchen913, @glenweyl and @VitalikButerin
you help kickstart decentralized self-sovereign identity at the first #RebootingWebOfTrust with your co-authorship of the DPKI whitepaper https://github.com/WebOfTrustInfo/rwot1-sf/blob/master/final-documents/dpki.pdf that led to DIDs & more. This year we can make a big difference. Join us again in collaboration!
Seems reasonable: “We all have the right to present ourselves in a way that hurts no one, as our true selves, without being publicly abused if we don’t provide a sufficiently acceptable explanation.” https://medium.com/@therealsexycyborg/shenzhen-tech-girl-naomi-wu-part-2-over-the-wall-and-into-the-fire-5e8efc5c1509
Replying to @iang_fc
There is a substantial discount if you do a topic paper. It can be as simple as list of smart questions, a criticism of an approach, or a specific idea or proposal for others to consider before the event. These advance readings are part of what makes our collaborative event work.
RT @hackylawyER: “In a self-sovereign world —a world in which there is still a degree of human autonomy — only I (alone) can determine what…
RT @hackylawyER: @tonyfish Privacy is not absolute. That said, I think the principle still holds, unless you are suggesting that someone wi…
RT @trbouma: Hello, I’m a senior analyst for #digitalidentity! You may know me from my greatest hits “It’s more than just a Login”, “Biomet…
👍👏”arguments that quality bugs & security bugs ‘have equal value’, that security testing & QA are ‘the same thing’, that security testing should ‘just be performed by QA’ & that ‘there’s no specific skillset’ required to do security testing versus QA…I fundamentally disagree” https://twitter.com/shehackspurple/status/1086886702797312000
Agreed! “I truly believe that it is more important that we write secure code than we ‘hack all the things’. Security is so much more than just security testing (ethical hacking), it is secure design, secure coding, threat modelling, etc.” @shehackspurple
RT @ChristopherA: Agreed! “I truly believe that it is more important that we write secure code than we ‘hack all the things’. Security is s…
Replying to @katrynadow, @ElineCMC and @glenweyl
I have some sympathy with goals of @glenweyl’s proposal for fixing the monetization of personal data, but more I’m falling into the camp of #RightsNotProperty https://twitter.com/christophera/status/1075473945694879745 especially as articulated lately by @hackylawyER. Selling PII as property is a trap. #RWOT topic?
“The very existence of civilization implies that increasing returns must pervade economic life” says @glenweyl. I agree, however the former sustainability prof in me says that this increase should be focused on the deep wealth of increasing social capacity, resilience & knowledge https://twitter.com/glenweyl/status/1085913264951676928
RT @SarahJamieLewis: Please actually read and listen to what @RealSexyCyborg is trying to tell you, instead of dismissing her because you d…
Replying to @trbouma and @billatnapier
The #RebootingWebOfTrust & W3C Credentials CG communities are moving in that direction, but with a robust, human-rights decentralized self-sovereign identity architecture. See https://youtu.be/2g6KSv1aeuI
Replying to @glenweyl, @katrynadow, @ElineCMC and @hackylawyER
Unfortunately the article behind paywall. Really hoping the Lightning Network micropayments can solve this problem — I can’t subscribe to every service to read one article on each. Can you quote relevant #rightsnotproperty part?
Replying to @kosovich and @Techfugees
I hope that some of the folk from @techfugees interested in decentralized human-rights self-sovereign identity can participate in our next #RebootingWebOfTrust design workshop in Barcelona March 1-3rd https://rwot8.eventbrite.com When we co-convened with #ID2020 it was powerful group.
👍 @techfugees @kosovich “Trusting any authority becomes even a bigger pickle when you are a targeted minority in your home country. We might want to rethink implementing new technologies if there are hostile governments that have access to our data.” See #RebootingWebOfTrust! https://twitter.com/kosovich/status/1078581745459609600
How are you storing your digital-asset wallet recovery keys:
I was storing mine in a @cryptosteel however given two major California wildfires evaporating fireproof safes I’ve switched to @CryptoColdTi & better but more expenditure @CryptoTag. Will talk more at #SmartCustody workshop next Tuesday in Mountain View https://www.eventbrite.com/e/smartcustody-simple-cold-storage-self-custody-workshop-tickets-54426618481
RT @ChristopherA: I was storing mine in a @cryptosteel however given two major California wildfires evaporating fireproof safes I’ve switch…
Replying to @revealer
Do you store your digital asset keys encrypted or plaintext?
RT @ChristopherA: @revealer Do you store your digital asset keys encrypted or plaintext?
Replying to @revealer
My home safe copy is encrypted BIP38 etched @CryptoColdTi using a password that hopefully my heirs will remember. But I also have an unencrypted BIP39 stamped on titanium @CryptoTag in safe-deposit box. Someday may move to some split key solution in multiple boxes. #SmartCustody
Replying to @revealer, @CryptoColdTi and @cryptotag
Key challenge is the adversary I call process fatigue, which has to be weighed as part of your risk model and adversarial analysis. All taught as part of our #SmartCustody workshop next week.
RT @ChristopherA: @revealer My home safe copy is encrypted BIP38 etched @CryptoColdTi using a password that hopefully my heirs will remem…
RT @ChristopherA: @revealer @CryptoColdTi @cryptotag Key challenge is the adversary I call process fatigue, which has to be weighed as pa…
RT @BerniceKing: Today, his birthday (#MLK90) thru Monday (#MLKDay), my father will be quoted more than he is during any other time through…
RT @Locha_io: With a battery, you’ll be able to carry your Turpial (smallest #mesh node device, look the size comparison with a SD card ada…
I definitely had problems with my two @COLDCARD mk1. Problem one was keyboard often not working, two was inference with keys almost always if plugged into my Mac, and three was none of the SD Cards I tried worked. Wait for mk2. https://twitter.com/nvk/status/1087370543689433088
Replying to @nvk and @coldcard
Link? Price?
Replying to @BlockchainKai, @revealer, @CryptoColdTi and @cryptotag
Yes, we talk about that in the course. It is a matter of resilience vs forfeiture adversary. I do seal mine up in a tamper-proof bag vs maid attack & snooping & I have special procedures for registration of safety deposit box that work in California. But other states differ.
Replying to @notgrubles and @coldcard
I’ve sometimes had keyboard problems on clean battery even with changed settings. Not as bad as with laptop.
Replying to @notgrubles and @coldcard
I’m now working on some QR-code based air-gaped wallet standards with three different companies. One uses old iPhones, one I think is a non-cellphone android device, the last is custom Linux hardware with small motherboard and case. So far QR code better experience.
Replying to @Coinkite, @BitGyver and @coldcard
I did contact support. I did get new boot firmware with adjustable keyboard settings, but they could not tell me specs on sd-card that I could buy locally, and it doesn’t work attached to my laptop with any of three high quality cables. No one said use laptop on battery power.
Replying to @nvk, @notgrubles and @coldcard
It isn’t for everyone, true. But TrustZone is certainly better than user space & the iPhone airgap wallet actually requires you to turn off network to function. The Android aitgap had no net at all. Meanwhile the custom Linux airgap box is answer for those needing more hardening.
Replying to @revealer and @ElectrumWallet
I know the old electrum SSS. Link to new method & papers? We’ve been thinking of convening conversation on next gen social key recovery at #RebootingWebOfTrust (our 8th!) in Barcelona March 1-3 https://rwot8.eventbrite.com
Replying to @revealer and @ElectrumWallet
Here is some of what we’ve been thinking on cryptographic side about new social key recovery techniques, but I honestly think UC/UI will be just as hard. https://www.blockchaincommons.com/proposals/Project-Proposal-New-Social-Key-Recovery-Approach/
Replying to @peterktodd
Do you have redundant copies of your recovery keys?
RT @ChristopherA: @peterktodd Do you have redundant copies of your recovery keys?
RT @ChristopherA: How are you storing your digital-asset wallet recovery keys:
Replying to @peterktodd
I have a local copy in a fire proof safe, but encrypted. My non-local bank vault (with my spouse’s name on it) has it in a security sealed envelope but is not encrypted (a choice). I check the local copy every year before April 15th & the bank copy around Nov 1 “Day of the Dead”.
Replying to @bitcoingiraffe
I’ve been working off and on an alternate recovery key technique that turns it into iambic pentameter poetry designed to be memorable. “the hazards of bliss are pleasing the lounge/unfair was cinnamon to search and scrounge…” https://github.com/ChristopherA/iambic-mnemonic
Replying to @bitkeyapp, @BTCBanksy and @peterktodd
I’m actually working on some air-gapped wallet standards & reference code this quarter to support some specific interesting timelock smart contracts like these. Funded partially by a patron of #BlockchainCommons. Hopefully will be picked up by ecosystem.
Replying to @LearnKhronos, @JasonEbacher and @peterktodd
My argument is that Glacier Protocol may be appropriate for some people in certain scenarios, but is such an overkill that the complexity, the process fatigue & some unfortunate bitrot points can make you loose your keys. Thus the #SmartCustody workshops http://www.SmartCustody.com
RT @peterktodd: @ChristopherA Heh, yeah, ironically that experience did give me more confidence in the security of bank vaults against soci…
Replying to @bitcoingiraffe
There are some crossing-border scenarios where ability to memorize large keys can be a game changer. A lot of my work is in support of human-rights decentralized & self-sovereign identity at #RebootingWebOfTrust & W3C Credentials CG.
RT @ChristopherA: @bitcoingiraffe There are some crossing-border scenarios where ability to memorize large keys can be a game changer. A lo…
Replying to @JasonEbacher, @LearnKhronos and @peterktodd
From a pure opsec pov you may have a point, but I’m very open about my processes & thinking, as well as how to adapt them to your different risk model & adversarial analysis. I’m not the biggest fan of security by obscurity & that the community can benefit by my openness is good.
Replying to @fnietom and @peterktodd
I’m a big fan, but there are still complications, UX & legal. For instance I explored giving a time-locked deadman switch escrow key to my attorney/executor but he says his law insurance will not allow him even though his key is useless unless I fail to move funds every year.
RT @ChristopherA: @fnietom @peterktodd I’m a big fan, but there are still complications, UX & legal. For instance I explored giving a time-…
RT @CaitlinLong_: @JuergenStrobel @LN_Master_Hub @adam3us @BobMcElrath @immootable @TraceMayer @peterktodd @starkness @real_vijay @GreenAdd…
RT @CaitlinLong_: @TraceMayer @JuergenStrobel @LN_Master_Hub @adam3us @BobMcElrath @immootable @peterktodd @starkness @real_vijay @GreenAdd…
Replying to @KnutKarnapp, @fnietom and @peterktodd
I have been talking to regulators (for instance joint letter to SEC last fall) & lawmakers (the Wyoming folk are listening) as part of #BlockchainCommons’ #SmartCustody project. http://www.SmartCustody.com. We can use more patrons to continue this work.
RT @peterktodd: @SatoshiHodler @ChristopherA Having said that, there’s lots of medical issues that can cause you to forget basically anythi…
RT @darrello: Simplifying the concepts of Guardianship and Delegation is incredibly non-simple…
Here’s a concept map (backed by words in…
A new whitepaper from our last #RebootingWebOfTrust “A DID for Everything” led by @shaunbconway & distinguished team, continues the thoughts of a previous white paper on decentralized autonomic data (DADs) to show novel uses for Decentralized Identifiers. https://github.com/WebOfTrustInfo/rwot7-toronto/blob/master/final-documents/A_DID_for_everything.md
This “DID for Everything” whitepaper builds on the work by Smith & Gupta whitepaper “Decentralized Autonomic Data (DAD) and the three R’s of Key Management” from a #RebootingWebOfTrust last year: https://github.com/WebOfTrustInfo/rwot6-santabarbara/blob/master/final-documents/DecentralizedAutonomicData.md
Replying to @peterktodd and @phil_geiger
I actually use this exact paper for writing down my draft recovery keys before I stamp my titanium version, and for my hot wallet & test keys. It is even listed in the custody checklist we are sharing in the #SmartCustody as an optional choice.
Replying to @LailaJosefin, @kosovich, @Techfugees and @TechfugeesBCN
I can’t seem to DM you but you can DM me. Let’s talk soon about #RebootingWebOfTrust in Barcelona March 1-3! Details at https://rwot8.eventbrite.com — or email me at ChristopherA@LifeWithAlacrity.com
Unscientific poll results regarding digital asset key recovery practices of my Twitter followers. Want to learn how to do better #SmartCustody? Want peer-reviewed comprehensive procedures? Sign up for announcements of future whitepapers & workshops at https://tinyletter.com/SmartCustody
There is also still room in our first workshop “#SmartCusody: Simple Cold Storage & Self-Custody” next Tuesday, January 29, 2019 at 10:00 AM – 4:00 PM PST in Mountain View, CA. https://www.eventbrite.com/e/smartcustody-simple-cold-storage-self-custody-workshop-tickets-54426618481
RT @ChristopherA: There is also still room in our first workshop “#SmartCusody: Simple Cold Storage & Self-Custody” next Tuesday, January 2…
You can see the original polls and lots of interesting commentary on private key storage practices in the threads starting at https://twitter.com/christophera/status/1087371484123652096?s=21 👇
Matt Leacock @mattleacock is one of the top cooperative board game designers today, starting with the innovative best seller Pandemic. But he also recently has become more prolific. Here is a flowchart to help you discover which of his games to play next. https://twitter.com/mattleacock/status/1085292236806381569
Excellent history. I met a number of the dev team in early days as they built the first public federated identity system OpenID & OAuth, and advanced forward these ideas through the #IIW community into standards. Innovative, smart, passionate, proud, but ultimately unsustainable. https://twitter.com/anildash/status/1087934594182234115
An artifact from the future (note date of notice is 2027) but this surveillance notice is scarily possible given current trends in street cameras, biometrics, DNA profiling, implied consent, privacy agreement overreach, human rights vs crime prevention, etc. #BlackMirror https://twitter.com/knutson_brain/status/1087559543595253760
👍Another excellent article supporting the #RightsNotProperty approach that the decentralized identity community is moving to. “Shouldn’t we raise questions of identity & agency & collective intelligence & ethics rather than securitization and markets?” https://akasha.org/blog/2019/01/21/interpersonal-data-2-of-3
“…Should we not strive to offer and derive unquantifiable value in all combination of wonderful variety and purpose rather than construct a simplistic mechanism by which someone might package up the personal data equivalent of a collateralized debt obligation?” — @Sheldrake
RT @magentaroyle1: @jhardinges Rights are not values. Human rights aren’t proprietary rights they are inalienable rights, every living mort…
Replying to @ThomasWelch15, @jhardinges and @AnnCavoukian
This is becoming a major topic for collaboration at the next #RebootingWebOfTrust (our 8th!) design workshop in Barcelona on March 1-3 https://rwot8.eventbrite.com I hope some of you can make it! Large discount if you share your opinions as advance topic papers (helps collaboration).
Replying to @hackylawyER and @F_Kaltheuner
A number of us will be collaborating on this topic at next #RebootingWebOfTrust (our 8th!) in Barcelona on March 1-3 https://rwot8.eventbrite.com — join us to create a collaborative document that we might use to advance into W3C process as Credentials CG Note https://w3c-ccg.github.io
Replying to @pavlenex and @MrKukks
GitHub link?
RT @callmevlad: What people DON’T want:
⒳ A boss
⒳ A managerWhat people DO want:
✓ A mentor
✓ A coach
✓ A teacher
✓ A listene…
RT @Techmeme: DHS issues rare “emergency” directive ordering federal agencies to secure credentials for DNS records; sources: six agencies…
RT @CaitlinLong_: UPDATE: 4 #Wyoming #blockchain bills have passed their house of origination & are moving to the other house! #fintech #sa…
Over 20+ PoS (Proof of Stake) cryptocurrencies are affected by this vulnerability: “While the “fake stake” attacks are simple in principle, they underscore a difficult design challenge: some ideas that make sense in Proof-of-Work do not translate over securely to Proof-of-Stake”. https://twitter.com/peterktodd/status/1087995208665624576
Replying to @doerkadrian
There are issues with Shamir Secret Sharing. Some unqualified implementations, some caused by every shares being equal, recovery attacks, UX/UI problems, etc. But I believe solvable. Seeking funding https://www.blockchaincommons.com/proposals/Project-Proposal-New-Social-Key-Recovery-Approach/ Also topic for next #RebootingWebOfTrust in Barcelona.
RT @ChristopherA: @doerkadrian There are issues with Shamir Secret Sharing. Some unqualified implementations, some caused by every shares b…
Replying to @Hodlhelper
See this comment & proposal link on issues re: Shamir Secret Sharing https://twitter.com/christophera/status/1088123301870764032?s=21
Replying to @Hodlhelper
See also this older thread 👇 https://twitter.com/christophera/status/912422872332738560?s=21
Replying to @doerkadrian
See also this older thread 👇 https://twitter.com/christophera/status/912422872332738560?s=21
RT @Ferdinando1970: @callmevlad @ChristopherA A manager is NOT supposed to be:
✓ A confidant
✓ An accountability partner
✓ An advocat…
RT @mrinal: Here are slides (with speaker notes) from my talk @SFIoTMeetup yesterday on how Decentralized Identifiers & Verifiable Claims w…
It looks like there will be critical mass to dive deep into this topic and do a collaborative whitepaper on it at next #RebootingWebOfTrust in Barcelona March 1-3 https://rwot8.eventbrite.com — write up your position statements and post in our GitHub for substantial discount!
RT @BrendanEich: My comment on jwz’s blog post at https://www.jwz.org/blog/2019/01/chrome-will-prevent-any-ad-blockers-that-arent-adblock-plus/.
RT @anmol_smnch: So, @UIDAI has no way to weed out fake demographics?
“[They] uploaded fake identity proofs given by illegal applicants,…
RT @trbouma: So if we do #digitalidentity right (high adoption) the overall economic return to the country is OVER TWICE what we currently…
RT @rmhrisk: At Google, I am the Product Manager for Public Trust Services, that incl. things like Cert and Key Transparency, Google Trust…
RT @adam3us: @CointractCom @MZietzke - there were many previous ideas explored Chaum (centralised), and Brands (also centralised double spe…
RT @perrymetzger: I’ve discovered some people aren’t aware of why Rust is a really cool programming language. They think it’s just a strong…
RT @lchasen: @LeeMcKnight @Steve_Lockstep @pevansgreenwood @RichieEtwaru @TheEconomist @hu_manityco The US constitution does not cover digi…
RT @lchasen: @RichieEtwaru @LeeMcKnight @Steve_Lockstep @pevansgreenwood @TheEconomist @hu_manityco Good question. I used to think strongly…
Replying to @dan_mi_sun, @lachenmayer, @josephwerle, @chelseakomlo and @emilbayes
This, plus UI/UX issues of social key recovery, is increasing looking like we’ll have critical mass of people to move forward on a whitepaper proposal at next collaborative design workshop #RebootingWebOfTrust (our 8th!) in Barcelona on March 1-3 https://rwot8.eventbrite.com Join us!
Replying to @el33th4xor
“Tax in the Final Frontier: A Theory of Interstellar Tax” by Adam Chodorow https://papers.ssrn.com/sol3/papers.cfm?abstract_id=1520413
Replying to @davetfields, @JoeAndrieu and @trbouma
There has been some excellent work by zkp cryptographers (I saw a presentation at Euro S&P two years ago) of being able use public health data securely and anonymously. Not everything in public health by zkp but huge improvements are possible. Currently HIPPA makes things worse!
RT @KyleSamani: 1/ So I’ve been using an app, Lil Snitch, for about 3 months now
LS monitors every outbound internet connection that every…
RT @KyleSamani: 15/ While I’m super excited about the future of Web3, when you really think about the mechanics of making it actually tru…
RT @KyleSamani: 8/ Spotify and its associated helper apps made no fewer than 12 connection requests to 12 different domains and IP addresse…
RT @windley: There is 3-6% economic value by 2030 from the good use of digital ID for a mature or emerging economy. Institutions could gain…
RT @trbouma: The @McKinsey research report on #digitalidentity just released.
https://drive.google.com/file/d/1w6ADCdL5VAG8I_Zmg4YW9kPmpPfGFH2L/view?usp=drivesdk
@AnnCavoukian any chance we can get you to come to our collaborative design workshop on human-rights orientated decentralized self-sovereign Identity #RebootingWebOfTrust (our 8th!) in Barcelona March 1-3 https://rwot8.eventbrite.com @hackylawyER will be there & others on legal/reg.
Replying to @renepickhardt
I look forward to the English translation :-)
RT @MartyBent: Marty’s Ƀent - January 24th, 2019 - Issue #405 https://mailchi.mp/2b08b2fc3179/martys-bent-january-23rd-2018-issue-235691
h/t @notgrubles
Replying to @lucash_dev, @matt_odell and @gladstein
Actually it is pretty hard. The satellites are just repeaters so can’t censored, only off, and they often contain religious broadcasts on them & broadcasts of multiple countries and thus are internationally regulated. There are also nearby satellites Blockstream can move to.
RT @alexbosworth: A new feature in development called HODL-HTLC could be a new building block for subscription services. This feature allow…
RT @matt_odell: “I can’t decide which is cooler, to use a satellite for this silly message to reach the surface of the earth, or using the…
RT @hasufl: Awesome history lesson about Bitcoin’s predecessors by @adam3us, showing how the biggest thing holding back decentralized digit…
👍“How is new technology affecting our ability to keep our various worlds from colliding when we don’t want them to, and what, if anything, should we do about that?” I call this #ContextualPrivacy and wrote about it in http://www.lifewithalacrity.com/2015/04/the-four-kinds-of-privacy.html#toc_5 https://www.theatlantic.com/ideas/archive/2019/01/outrage/579553/
From my”Four Kinds of Privacy” article, on #ContextualPrivacy: “If a lack of personal privacy causes you to “not be yourself”, a loss of contextual privacy allows other to “not see you as yourself”. You risk being perceived as “other” when your actions are seen out of context.”
RT @ChristopherA: From my”Four Kinds of Privacy” article, on #ContextualPrivacy: “If a lack of personal privacy causes you to “not be yours…
Replying to @intjr, @lucash_dev, @matt_odell and @gladstein
Problem with jamming is you are jamming everything. Yes, a Nation-State can do a lot to stop things briefly, but they affect international & thus become war-like in nature. That is a tall order for Bitcoin to defend against (though long term there are even ideas like long wave).
Replying to @intjr, @lucash_dev, @matt_odell and @gladstein
For instance here is overview @NickSzabo4 & @eiaine’s proposal which is long wave, commodity equipment & can be set up and pulled down using tent poles & clothes lines near borders: article https://news.bitcoin.com/bitcoin-and-weak-signals-bypass-network-censorship-with-radio/ & slides https://scalingbitcoin.org/stanford2017/Day2/Weak-Signal-Radio-Communications-for-Bitcoin-Network-Resilience.pdf
Replying to @lucash_dev, @matt_odell and @gladstein
Share a channel with a religious broadcaster and get both the left & right involved in 1st amendment. These are TV broadcast channels.
@francesca_bria we are doing our next collaborative design workshop on human-rights focused decentralized self-sovereign identity called #RebootingWebOfTrust (our 8th!) in Barcelona on March 1-3 https://rwot8.eventbrite.com You are in Barcelona, want to be involved? Contact me.
RT @kimdhamilton: Design decisions for BTCR v0.1, a Bitcoin-based DID method https://github.com/WebOfTrustInfo/rwot7-toronto/blob/master/final-documents/btcr_0_1.pdf, which I wrote with @ChristopherA and…
Replying to @kimdhamilton and @danpape
The .md version of the BTCR 0.1 paper is at https://github.com/WebOfTrustInfo/rwot7-toronto/blob/master/final-documents/btcr_0_1.md. Why 0.1? We have grand plans for 1.0 with better security & privacy, compatible with Lightning & much more. But we want to ship a wallet soon! So compromises need to be made until underlying libraries evolve.
RT @ChristopherA: @kimdhamilton @danpape The .md version of the BTCR 0.1 paper is at https://github.com/WebOfTrustInfo/rwot7-toronto/blob/master/final-documents/btcr_0_1.md. Why 0.1? We have grand plans…
Replying to @kimdhamilton and @danpape
Our iPhone Decentralized Identity Wallet App for the BTCR method is in progress, led by @wolfmcnally. We use the C++ libbitcoin library led by @evoskuil & our C & Swift bindings for it to enable cocoapods for iOS are at https://github.com/blockchaincommons. Goal is reference implementation.
RT @ChristopherA: @kimdhamilton @danpape Our iPhone Decentralized Identity Wallet App for the BTCR method is in progress, led by @wolfmcna…
Replying to @ICEDataServices and @Blockstream
Is there a delayed feed publicly available without a subscription? Are there are signed oracles on the data yet?
An elephant collects trash & bins it, so why don’t people in downtown SF? https://youtu.be/eiLARnQVBns
Replying to @artbrock
My most cited article on reputation anti-patterns was posted as a topic paper at 1st #RebootingWebOfTrust “Web Reputation Systems and the Real World” by @frandallfarmer https://github.com/WebOfTrustInfo/rwot1-sf/blob/master/topics-and-advance-readings/ReputationAndTheRealWorld.md I would love to see join in on a new collaborative paper from #RWO8 in Barcelona!
I would like to see more analysis & integration of lastest ideas in #Reputation Systems as so many bad idea come back. This paper by @artbrock + @frandallfarmer’s Web Reputation Systems and the Real World https://github.com/WebOfTrustInfo/rwot1-sf/blob/master/topics-and-advance-readings/ReputationAndTheRealWorld.md + @anguschampion’s https://github.com/WebOfTrustInfo/rwot4-paris/blob/master/draft-documents/Designconsiderationsfordecentralizedreputationsystems.docx a start. https://twitter.com/artbrock/status/1088381265940602880
@artbrock any chance to come back to our next #RebootingWebOfTrust (our 8th!) in Barcelona March on 1-3 https://rwot8.eventbrite.com — as usual big discount with submission of advance reading topic paper, which could be your latest reputation one. The topic keeps coming up here.
RT @IdentityWoman: @Sheldrake @csageland @benwerd @ChristopherA We have DIDs and Verifiable Credentials. Open standards dor ID wirh key rot…
Replying to @Sheldrake, @csageland, @benwerd and @IdentityWoman
Still a lot to do, but the new DID/VC architecture is a better one to build on than continuing to build on a legacy identity tech that has centrality technical debt. If you needed to deploy in scale today use a proven federated system w/ FIDO2. But if longer-term consider DID/VC.
RT @ChristopherA: @Sheldrake @csageland @benwerd @IdentityWoman Still a lot to do, but the new DID/VC architecture is a better one to build…
“We condemn these sinister, underhanded activities in the strongest possible terms,” he said in a statement Friday. “Such a deceitful attack on an academic group like the Citizen Lab is an attack on academic freedom everywhere.” https://twitter.com/RonDeibert/status/1088942831236898816
Hard to believe that 35 years ago the first Mac came out. I dropped everything to start Dreams of the Phoenix, one of the 1st dedicated Mac software publishers. We did first Mac screensaver, the bootstrap in Basic that let you download the FreeTerm, 12c Calc & the first Mac BBS! https://twitter.com/tim_cook/status/1088393240569671681
RT @Scobleizer: @davewiner I was first to buy the iPhone at Jobs’ own store. The iPhone had the best web browser. By far. I also was at the…
“The view amongst most bitcoin people I know is not that they don’t care about privacy or fungibility — they care very very much…But it’s one that cannot fail, or it’s one that we better not cause to fail. And that takes precedence over everything else.”— Andrew Poelstra https://twitter.com/kyletorpey/status/1088450662176677894
I have very mixed feelings about this. It certainly is an example of the limits of even national sovereignty in our modern economy. But Maduro destroyed one of the best & modern South American countries. I want accountability for the powerful and protection for the powerless. https://twitter.com/TheBlock__/status/1088906841965379584
RT @hasufl: @ChristopherA This thread might give you an interesting counter-perspective
https://twitter.com/LibertyBlitz/status/1088898750595051520?s=19
RT @btcale: @hasufl @ChristopherA Here’s another perspective: https://twitter.com/jesuscasique1/status/1088982665624281089?s=21
Replying to @hasufl
I agree with the points about this being very complex & geopolitical between US vs China & Russia & even Britain vs Europe. But Venezuela had some of the best doctors & tech in Caribbean & South America, and was making development progress. …
Replying to @hasufl
…but whether the tyrants are socialist or democratic or anything else, their destructive power against regular people is overwhelming. I’m in Bitcoin & self-sovereign identity for those without power, not those who abuse power. Thus my mixed feelings when Maduro is threatened.
Replying to @BraveTheWorld
I still have some Linden dollars — circa 2004 when I was trying to raise money for a smart contract startup it was the best place to learn about digital currencies in a “real” economy. I still have a strategically placed “island” that gives me more Lindens when players fly over.
Replying to @hackylawyER
For many of us in the early days of internet we dreamed that microcurrencies might be used to pay for content. Many, many startups crashed & burned on that vision in 90s and early 00s. But for the first time since then I feel like in Lightning Network that it might be possible.
Replying to @BraveTheWorld
Rereading an ‘04 article in my blog: “Why not form a corporation on the fly with digital stock certificates, allow it to engage in its creative work, then pay out its investors and workers and dissolve?” A lot in the end of this post I’m still building: http://www.lifewithalacrity.com/2004/02/security_crypto.html#enabling
RT @ChristopherA: @BraveTheWorld I still have some Linden dollars — circa 2004 when I was trying to raise money for a smart contract startu…
RT @ChristopherA: @hackylawyER For many of us in the early days of internet we dreamed that microcurrencies might be used to pay for conten…
RT @ChristopherA: @BraveTheWorld Rereading an ‘04 article in my blog: “Why not form a corporation on the fly with digital stock certificate…
Two of my worlds collided last fall — my handpan teacher @laurainserra created a very interesting music installation the Chambers of AWE at the Ethereum’s DevCon4. Now she wants to learn more about blockchain tech 😊 Video: https://youtu.be/oOUvUsAim_4
Replying to @ynotez
I read it about 9-10 years ago, time to read it again. I wrote my first blog post on four kinds of privacy including contextual privacy in 2004 http://www.lifewithalacrity.com/2004/04/four_kinds_of_p.html which was influential and did a major update in 2015 http://www.lifewithalacrity.com/2015/04/the-four-kinds-of-privacy.html
Replying to @ynotez
There are other framings of kinds of privacy, most notably @DanielSolove’s six types https://inpropriapersona.com/articles/daniel-soloves-six-general-types-of-privacy/ and Wright & Friedenwald’s seven types https://link.springer.com/chapter/10.1007/978-94-007-5170-5_1
RT @murakamiwood: This is a confused basis for #data rights. #Property is alienability, commodification, market value, sale, inequality. #H…
I agree with this sentiment by @VladZamfir “We need to be free to build a crypto legal system that embodies the ethos of the blockchain space, one that we can actually be proud of” https://medium.com/@Vlad_Zamfir/against-szabos-law-for-a-new-crypto-legal-system-d00d0f3d3827 but also concur with @VitalikButerin’s rebuttal https://medium.com/@VitalikButerin/he-imagines-a-world-in-which-crypto-political-and-legal-processes-are-necessarily-going-to-go-fb073b80dd7e
Replying to @trbouma, @VladZamfir and @VitalikButerin
The problem is that there is value in both lowering risks of the human-side of irrational behaviors that cause abusive systems, but also value in increasing the human-side of compassion, cooperation, creating resilience & deep wealth. Blockchain tech can help & hinder both.
RT @trbouma: @ChristopherA @VladZamfir @VitalikButerin If anything, crypto will enable a more consistent application of legal constructs an…
RT @ChristopherA: @trbouma @VladZamfir @VitalikButerin The problem is that there is value in both lowering risks of the human-side of irrat…
RT @trbouma: @ChristopherA @VladZamfir @VitalikButerin Absolutely. Both legal and technological have a way to go, but the one can’t replace…
We continue our series of case studies that didn’t make it into the final book @MeeplesTogether. We ask the question: “So how do you entice cooperation in a fully competitive game? AuZtralia offers two possibilities.” Our book out next month!! https://twitter.com/MeeplesTogether/status/1088529733766176768
RT @Blockstream: One-man team, @NotASithLord, placed 2nd at the @MiaBitcoinHack hackathon with the WebSat Messenger; using our developer-fr…
Replying to @trbouma, @VladZamfir and @VitalikButerin
What is new with blockchain tech are some of the so-called “trustless” options. However, if we are not careful we could lock in unintended “invisible architectures” of the old systems or worse create “algorithmic authoritarianism”: https://twitter.com/christophera/status/854296203412070400?s=21
RT @jeffjohnroberts: This great @WillOremus article on media judges has a scam gambling ad
Serious question: should sites that publish sca…
Replying to @BrianGoetz, @sehurlburt and @patio11
I’ve seen several different slightly different explanations for the legal definition of “best efforts”. What is yours? Does it differ in different domains or countries?
Replying to @BrianGoetz, @sehurlburt and @patio11
So what does it mean if you say you are developing best practices for the industry? Is there a better word for it in the standards world?
RT @iang_fc: @lasuac @Steve_Lockstep @validIDy @zkproof 2. The natural stability is zero liability, aka race to bottom.
So the information…
RT @csuwildcat: I love what David is saying, but sadly the Web of today answers to the whims of masters and authoritarians who seek to forc…
RT @artbrock: @ChristopherA I’d like to make it back to a WoT event soon. Maybe share how easy it was to build DPKI on top of Holochain. An…
Replying to @artbrock
We’ll miss you! Current plan is have #RWOT9 this fall in Switzerland or Northern Europe on September 21st-23rd (Wed-Fri) but may move +/- 2 days driven by final venue. The hope is to bring #RWOT10 to Australia/Asia a year from now, approximately February 26th-28th (Wed-Fri) 2020
Replying to @deworde, @BrianGoetz, @sehurlburt and @patio11
This is the disclaimer we are putting on our scenarios & advice on #SmartCustody for digital assets. They are state of the art & peer-reviewed. How would you state it differently?
Replying to @adrianchilders
Oh, I want accountability for those powerful as well. In particular Trump’s long promised tax records. “In exchange for power, influence, command and a place in history, a president gives up the bulk of his privacy.” — Roger Mudd
RT @judell: At #PublicDomainDay I learned that the Internet Archive has all 23 years of BYTE on microfilm, and is looking for someone to sp…
One of the big system challenges against privacy is our legitimate desire for better public health & data for making better decisions at national scale. I admire Canada’s privacy stance but there is a cost. More zkp & mpc can offer both, but is new & hard. https://www.theglobeandmail.com/canada/article-in-the-dark-the-cost-of-canadas-data-deficit/
This is very true, but is not typically what VCs & management teams use as a model to weigh the value of contributing to open source. How do we change the framing? In particular in security software open source there is currently a tragedy of the commons. #BlockchainCommons https://twitter.com/DevOpsBarbie/status/1089164023436902401
As a music lover & amateur musician this dumbing down of music worries me. For a time it felt like youngest generation was actually getting more knowledgeable w/ access to classics, Sinatra, Beatles to best artists today. But evidence now is we are loosing https://www.intellectualtakeout.org/article/tragic-decline-music-literacy-and-quality?utm_sq=fvj3zh6a3s
RT @iang_fc: This.
Identity cannot be standardised.
KYC can not be homogenised. https://twitter.com/Steve_Lockstep/status/1089374906100330496
RT @windley: This is why decentralization of digital identity is so important. Attestors, identity owners, & relying parties must make thei…
RT @coindesk: Wyoming may soon become the first state in the U.S. to provide clear banking permissions for cryptocurrencies and digital ass…
RT @JeremyLittau: And it’s not going to be solved by subscriptions alone, although that can help in big ways. The news model needs to be co…
RT @docetist: Today, raise a glass to honor the 45th anniversary of @Wizards_DnD Dungeons & Dragons! Here’s what Gary said to Dave when the…
An example of memes in our complex world: @slatestarcodex posits a two-phase cycle in terrorism that is is effective at reproduction independent of morality or politics. Memetics, like incentive design, game theory, network effects, etc. needs more study https://slatestarcodex.com/2014/12/17/the-toxoplasma-of-rage/
RT @nfergus: “We no longer live in a democracy. We live in an ‘emocracy’, where emotions rather than majorities rule and feelings matter mo…
RT @DoveyWan: Remedy that all crypto and non crypto who cares about identity theft should be aware
𝐂𝐄𝐋𝐋 𝐏𝐇𝐎𝐍𝐄 𝐍𝐔𝐌𝐁𝐄𝐑 𝐈𝐒 𝐘𝐎𝐔𝐑 𝐖𝐄𝐀𝐊𝐄𝐒𝐓 𝐒𝐏𝐎𝐓…
RT @ericgeller: The campaign against Chinese telecoms on cybersecurity grounds might be Trump’s most conventional national security policy.…
RT @brynosaurus: The DEDIS lab at EPFL is again looking for talented software engineers interested in working on awesome decentralized syst…
This week I’m at my 17th #NoirCity Film Festival in the beautiful #CastroTheater in #SF, hosted by @EddieMuller & benefiting film restoration by the @noirfoundation. Why am I fascinated by #FilmNoir? This documentary video is a good place to learn: https://www.youtube.com/watch?v=whZz8Euu9YY
For a more visceral introduction to the topic, I love this valentine to #FilmNoir “Endless Night” a montage/music video by Serena Bramble: https://youtu.be/5oHS6MyoGOU
Serena Bramble has gone on to do some of the official trailers for the #NoirCity Film Festival. One of my favorites programs was #14 “The Art of Darkness” and her montage/music video captured it well https://youtu.be/gBPrLwduHzY
I’ve been working on a collaborative story game “It’s A Wrap! Noir” using these themes. Here are some of the inspirational cards for the, drawn by @dcooneyart
RT @ChristopherA: For a more visceral introduction to the topic, I love this valentine to #FilmNoir “Endless Night” a montage/music video b…
RT @ChristopherA: Serena Bramble has gone on to do some of the official trailers for the #NoirCity Film Festival. One of my favorites progr…
RT @ChristopherA: I’ve been working on a collaborative story game “It’s A Wrap! Noir” using these themes. Here are some of the inspirationa…
Some more cards from my in-progress collaborative cinematic storytelling game “It’s a Wrap! Noir” drawn by @dcooneyart:
RT @ChristopherA: Some more cards from my in-progress collaborative cinematic storytelling game “It’s a Wrap! Noir” drawn by @dcooneyart: h…
Replying to @miniver and @dcooneyart
The website is just a placeholder now but you can subscribe to the announcements list at https://tinyletter.com/DyversHands
Replying to @miniver and @dcooneyart
My first collaborative cinematic storytelling game out will not be the “It’s a Wrap! Noir” game (which is still under development) but instead will be “Gate Watch”. Smaller, simpler game with hopefully a Kickstarter in March. A sneak peak: https://www.dyvershands.com/GateWatch
Replying to @wdavidturner and @_poetproject
You might be interested in one of my old projects: https://twitter.com/christophera/status/891060400707559425?s=21
Replying to @wdavidturner and @_poetproject
We started with registration of pdf metadata as it was a useful edge point to get academics, authors & content creators (I own RPGnet & our industry is dominated by PDFs). The pdf app code was written by @kallewoof before I dragged him into blockchain (he is now at @dgi).
Replying to @wdavidturner, @_poetproject, @kallewoof and @DGI
I really wanted to put DOI out of business when they wanted premium $ to give me one of their centralized document number since I was not affiliated at time with an .edu they had licensed. Poppycock! Early days of this effort informed architecture of DIDs today.
RT @kimdhamilton: “The Self-Sovereign Identity Stack” by Oliver Terbu summarizes the working model of SSI interoperability layers – develo…
“(We) should no longer expect consent to play a meaningful role in protecting our privacy…Being surprised at the nature of the violation, in short, will become an inherent feature of future privacy and security harms.”—@andburn in @HarvardBiz https://hbr.org/2019/01/privacy-and-cybersecurity-are-converging-heres-why-that-matters-for-people-and-for-companies
👍Illinois Supreme Court rules in #biometric #privacy law case “a person need not have sustained actual damage beyond violation of his or her rights under the Act.” Important! https://www.theverge.com/2019/1/26/18197567/six-flags-illinois-biometric-information-privacy-act-facial-recognition
The Court continues: “Whatever expenses a business might incur to meet the law’s requirements…are likely to be insignificant compared to the substantial and irreversible harm that could result if biometric identifiers and information are not properly safeguarded.”
RT @gameplaywright: Backers of @MeeplesTogether: This Friday is the BackerKit deadline. If you haven’t filled out your survey, now’s the ti…
Replying to @Kyle_DH
There is also lots of places for moral hazard to creep. One of the topics of http://tokenethics.com. I sometime need to revive that effort.
Replying to @notsofast, @danheld, @anguschampion and @kanzure
I don’t know if we’ll get the cold storage scenario and checklist process down to a 20 minute video, but we will be publishing it and once we have a few workshops under our belt offer a video.
Replying to @PratsArthur, @anguschampion and @danheld
You can join the low-volume email list for #SmartCustody workshops, content and other related announcements at https://tinyletter.com/SmartCustody
Replying to @josephrodgers, @danheld, @anguschampion and @kanzure
Yes — at least the scenarios & checklists will all be CC-BY-SA. Final should be out after a 2nd Workshop, as we want it to be effective an accurate. You can sign up for announcements at https://tinyletter.com/SmartCustody
Replying to @Elisa_Mala, @anguschampion and @danheld
RT @danheld: Ooooo now things are getting really interesting. Some straight spy tactics🔒🕵️♀️ 👁 #SmartCustody
RT @danheld: @theonevortex @anguschampion @ChristopherA @kanzure Adversary: Network Attack (personal)
Replying to @PratsArthur, @danheld, @anguschampion and @kanzure
Replying to @prezcannady
This is the fundamental basis of the BTCR flavor of DIDs. See: https://github.com/WebOfTrustInfo/rwot5-boston/blob/master/topics-and-advance-readings/btcr-dids-ddos.md & https://github.com/WebOfTrustInfo/rwot7-toronto/blob/master/final-documents/btcr_0_1.md
RT @ckayakr: Grateful to be at the #SmartCustody workshop today and for Winstead to be a sponsor. https://twitter.com/ChristopherA/status/1082253444751122432
RT @mpowersteve: Enabling #trust via self-sovereign #identity c/o @ChristopherA
http://www.lifewithalacrity.com/2016/04/the-path-to-self-soverereign-identity.html
Replying to @prezcannady
This is the fundamental basis of the BTCR flavor of DIDs. https://github.com/WebOfTrustInfo/rwot5-boston/blob/master/topics-and-advance-readings/btcr-dids-ddos.md
RT @Blockstream: Blockstream Core Tech Engineer @pwuille will be at the @Stanford #Blockchain Conference on January 31 talking about Minisc…
RT @caelumlabs: Reminder: Early bird pricing for the #RebootingWebofTrust in Barcelona ends tomorrow! After 31st prices will go up for all…
#RebootingWebOfTrust is a collaborative event & we’ve found one of the best ways to make it work is to share with each other IN ADVANCE short readings topics (or just good questions) that show what is on our minds. Barcelona March 1-3 topics are emerging: https://github.com/WebOfTrustInfo/rwot8-barcelona/blob/master/topics-and-advance-readings/README.md
I like this three axis / three plane model to explore some of the challenges in creating architectures for decentralized digital identity. We are not nodes on a graph — the lines between us (& now the planes) are a more complete representation. @dhh1128 https://medium.com/evernym/three-dimensions-of-identity-bc06ae4aec1c
RT @dhh: “I don’t think it would be out of line for Apple to revoke Facebook’s developer certificate, maybe even pull their apps from the A…
We had a great #SmartCustody workshop on how to raise the bar on your practices of managing digital assets, starting with understanding some basics of risk modeling & adversarial analysis. Teaching this approach for 1st time was intimidating but by end they understood its value! https://twitter.com/danheld/status/1090317203239460864
We plan to repeat this initial workshop a couple times to improve it & then offer videos, workbooks, etc. online. Then we move forward on the next step of improving the digital asset custody practices of hedge & family funds, fiduciaries, etc. as well as educate regulators.
RT @ChristopherA: We plan to repeat this initial workshop a couple times to improve it & then offer videos, workbooks, etc. online. Then we…
We hope that by educating & raising the bar on custody practices that we can mitigate a huge systemic risk that I see to our system if current practices & custodial “security theater” continue. Subscribe https://tinyletter.com/SmartCustody or follow @SmartCustody as we iterate & improve!
RT @ChristopherA: We hope that by educating & raising the bar on custody practices that we can mitigate a huge systemic risk that I see to…
RT @trbouma: @alextapscott @dtapscott @nationalpost Canada is actually emerging as a leader in #selfsovereignidentity. Please look at the l…
👍“There should be some data that’s so valuable users shouldn’t, in most cases, be able to ‘consent-away.”—@CRCalabrese This is not controversial to me & is fundamentally implied by the 1st principle of self-sovereign identity of ‘existence’. Real world has limits to consent. https://twitter.com/CenDemTech/status/1090339284048060417
One more day for early bird pricing on registration for #RebootingWebOfTrust in Barcelona March 1-3 https://rwot8.eventbrite.com — additional substantial discount if you submit advance reading topic.
RT @ChristopherA: One more day for early bird pricing on registration for #RebootingWebOfTrust in Barcelona March 1-3 https://t.co/luojm25J…
RT @ckayakr: Appreciate the CHECKLISTS, practical advice, adversary scenarios & risk modeling this #SmartCustody workshop brings to private…
I highly suggest more of the #RebootingWebOfTrust community, the W3C Credentials CG, and the broader decentralized web community read this book and support @SarahJamieLewis by paying for a copy. But read it! Being LGBTA may not be your reason for privacy, but similar problems! https://twitter.com/SarahJamieLewis/status/1090478577823363078
Replying to @dpfrank07 and @CRCalabrese
I don’t know where the line should be — I would of course prefer self-regulation & incentives over laws to prevent abuse of personal data by corporations & governments. But you should not be allowed to sell yourself into digital serfdom like you can’t sell yourself into slavery.
Replying to @JVicenteCorrea
We will be polling our subscribers about what’s next & our priorities and make announcements via our low-volume email list: https://tinyletter.com/SmartCustody
Replying to @doerkadrian
In about a month.
RT @GETJolocom: In support of moving towards a truly interoperable #selfsovereignidentity ecosystem, devs can now resolve Jolocom DIDs (& o…
RT @Davidstrayhorn: @VinnyLingham @ryanxcharles @alex_fauvel Ultimately the end user should have the power to set the rules that filter con…
Replying to @Davidstrayhorn, @VinnyLingham, @ryanxcharles and @alex_fauvel
This is what the BTCR method of DIDs is focusing, supporting peer-to-peer pseudoanonymous web-of-trust. We hope to enable the user story of Amira https://github.com/WebOfTrustInfo/rwot5-boston/blob/master/final-documents/amira.md
RT @Consentua: Proposing a global consent receipt standard - http://bit.ly/2FXO928 #Consent #Kantara #Consentua
Replying to @francispouliot_
Display plus camera (aka airgap wallet with at codes)
RT @MicroSFF: The pentragram on the floor was smudged, the candles unlit. A demon appeared. “Hello, are you free?” it said.
The man looked…
RT @angela_walch: Just posted a new paper!
Deconstructing ‘Decentralization’: Exploring the Core Claim of Crypto Systems
RT @trbouma: Here is the latest version of the Pan-Canadian Trust Framework Consultation Deck (2019-01-17) #PCTF #digitalidentity . We are…
Replying to @trbouma, @avocoidentity, @MartinKuppinger and @ComputerWeekly
One system is a bad idea — vulnerable to re-centralization. This is why I fight to be vendor neutral & blockchain agnostic in my efforts to support self-sovereign identity in #RebootingWebOfTrust & W3C Credentials CG. Diversity is key.
Replying to @Davidstrayhorn, @VinnyLingham, @ryanxcharles and @alex_fauvel
Blockstack has their own DID but their model is name centered. Open source (all patron funded) BTCR has a POC in progress (donate to Blockchain Commons if you want faster). Some details https://w3c-ccg.github.io/didm-btcr/ & https://github.com/WebOfTrustInfo/rwot7-toronto/blob/master/final-documents/btcr_0_1.md
Replying to @Davidstrayhorn, @VinnyLingham, @ryanxcharles and @alex_fauvel
Remember… https://twitter.com/christophera/status/1091021333780037633?s=21
RT @ChristopherA: @Davidstrayhorn @VinnyLingham @ryanxcharles @alex_fauvel Blockstack has their own DID but their model is name centered. O…
RT @ChristopherA: @trbouma @avocoidentity @MartinKuppinger @ComputerWeekly One system is a bad idea — vulnerable to re-centralization. This…
Replying to @Davidstrayhorn, @VinnyLingham, @ryanxcharles and @alex_fauvel
BTCR work is mostly volunteer worth a little patron funding. It seems at every #RebootingWebOfTrust we have a surge in development. I hope you can come to our next design workshop (our 8th!) in Barcelona March 1-3 https://rwot8.eventbrite.com
RT @notgrubles: .@Blockstream Satellite-received #Bitcoin data, @chris_belcher_ ‘s @ElectrumWallet Personal Server, and private keys stored…