@[email protected] to TechnologyEnglish • 1 year agoApple already shipped attestation on the web, and we barely noticedhttptoolkit.comexternal-linkmessage-square86fedilinkarrow-up1331arrow-down115cross-posted to: technology[email protected][email protected][email protected]technology[email protected][email protected]
arrow-up1316arrow-down1external-linkApple already shipped attestation on the web, and we barely noticedhttptoolkit.com@[email protected] to TechnologyEnglish • 1 year agomessage-square86fedilinkcross-posted to: technology[email protected][email protected][email protected]technology[email protected][email protected]
minus-square@SerinuslinkEnglish3•1 year agoFor sites that support it, you don’t have to fill out a captcha. Instead it transmits a list of running processes (or other, formerly private info).
minus-square@SirQuackTheDucklinkEnglish1•1 year ago^Instead it transmits a list of running processes (or other, formerly private info). No it doesn’t. Attestation is simply a cryptographicly signed “we trust this user is human” message.
minus-square@SirQuackTheDucklinkEnglish1•1 year agoBased on the spec. The token is simply a signature that can be checked at the issuing party (Apple for this news item).
For sites that support it, you don’t have to fill out a captcha.
Instead it transmits a list of running processes (or other, formerly private info).
^Instead it transmits a list of running processes (or other, formerly private info).
No it doesn’t. Attestation is simply a cryptographicly signed “we trust this user is human” message.
Based on what?
Based on the spec. The token is simply a signature that can be checked at the issuing party (Apple for this news item).