chrisb
@boscolo.co
sojourning through the crazy woods (bosco loco)
pondering rainbows and unicorns
pondering rainbows and unicorns
Correct.
For my experiment, I use SIWE to sign over a message that contained the AT Protocol DID. SIWE is user friendly. Then writes the siwe message and signature to the PDS.
This creates the bidirectional ownership attestation.
For my experiment, I use SIWE to sign over a message that contained the AT Protocol DID. SIWE is user friendly. Then writes the siwe message and signature to the PDS.
This creates the bidirectional ownership attestation.
November 5, 2025 at 3:47 PM
Correct.
For my experiment, I use SIWE to sign over a message that contained the AT Protocol DID. SIWE is user friendly. Then writes the siwe message and signature to the PDS.
This creates the bidirectional ownership attestation.
For my experiment, I use SIWE to sign over a message that contained the AT Protocol DID. SIWE is user friendly. Then writes the siwe message and signature to the PDS.
This creates the bidirectional ownership attestation.
WRT Encrypted Messaging:
The biggest mistake Matrix is making is to lump WhatsApp and Signal (DMs/Small Groups) in with Telegram, Slack and Discord (Large Groups), trying to solve both problems with the same architecture.
Matrix in place of WhatsApp/Signal is a step backwards not forward.
The biggest mistake Matrix is making is to lump WhatsApp and Signal (DMs/Small Groups) in with Telegram, Slack and Discord (Large Groups), trying to solve both problems with the same architecture.
Matrix in place of WhatsApp/Signal is a step backwards not forward.
October 27, 2025 at 2:56 PM
WRT Encrypted Messaging:
The biggest mistake Matrix is making is to lump WhatsApp and Signal (DMs/Small Groups) in with Telegram, Slack and Discord (Large Groups), trying to solve both problems with the same architecture.
Matrix in place of WhatsApp/Signal is a step backwards not forward.
The biggest mistake Matrix is making is to lump WhatsApp and Signal (DMs/Small Groups) in with Telegram, Slack and Discord (Large Groups), trying to solve both problems with the same architecture.
Matrix in place of WhatsApp/Signal is a step backwards not forward.
One change we made since this announcement is that we are no longer using the AT Protocol handle for SMTP routing. Instead the AT-SMS Inbox Provider generates a per-device email address.
blog.boscolo.co/3lxx6eqkga22...
blog.boscolo.co/3lxx6eqkga22...
October 24, 2025 at 1:53 PM
One change we made since this announcement is that we are no longer using the AT Protocol handle for SMTP routing. Instead the AT-SMS Inbox Provider generates a per-device email address.
blog.boscolo.co/3lxx6eqkga22...
blog.boscolo.co/3lxx6eqkga22...
My relationship status with W3C DIDs is "it's complicated" 😅
jthor.eth's critiques are valid and I've been critical myself. (see below)
On the other hand, the DID Document provides a clean interface between clients and nascent, non-standard, decentralized lookup logic; leaving room to experiment.
jthor.eth's critiques are valid and I've been critical myself. (see below)
On the other hand, the DID Document provides a clean interface between clients and nascent, non-standard, decentralized lookup logic; leaving room to experiment.
October 21, 2025 at 11:48 PM
My relationship status with W3C DIDs is "it's complicated" 😅
jthor.eth's critiques are valid and I've been critical myself. (see below)
On the other hand, the DID Document provides a clean interface between clients and nascent, non-standard, decentralized lookup logic; leaving room to experiment.
jthor.eth's critiques are valid and I've been critical myself. (see below)
On the other hand, the DID Document provides a clean interface between clients and nascent, non-standard, decentralized lookup logic; leaving room to experiment.
good take. My brain interpreted the "should" in the last sentence as permission to paint outside the lines with this. (ah, the fun of standards...)
Given the desire expressed by many to support aliases in AT Protocol, we should push to get this clarified in that directions.
Given the desire expressed by many to support aliases in AT Protocol, we should push to get this clarified in that directions.
September 26, 2025 at 1:21 PM
good take. My brain interpreted the "should" in the last sentence as permission to paint outside the lines with this. (ah, the fun of standards...)
Given the desire expressed by many to support aliases in AT Protocol, we should push to get this clarified in that directions.
Given the desire expressed by many to support aliases in AT Protocol, we should push to get this clarified in that directions.
web2 broke the Internet, strongly urge you to play this card when you get there
September 17, 2025 at 10:09 PM
web2 broke the Internet, strongly urge you to play this card when you get there
Stay vigilant citizens of Europe!
September 11, 2025 at 5:10 PM
Stay vigilant citizens of Europe!
how everyone feels this week
September 9, 2025 at 4:29 PM
how everyone feels this week
In the spirit of X.509 day, I will share some stories from my past.
In 2008, Napera, a company I co-founded, released the first “IoT" appliance that used a valid, X.509 digital certificate—signed by a GlobalSign CA—to identify the appliance.
(D)PKI done right with an awesome UX is achievable!
In 2008, Napera, a company I co-founded, released the first “IoT" appliance that used a valid, X.509 digital certificate—signed by a GlobalSign CA—to identify the appliance.
(D)PKI done right with an awesome UX is achievable!
September 5, 2025 at 2:57 PM
In the spirit of X.509 day, I will share some stories from my past.
In 2008, Napera, a company I co-founded, released the first “IoT" appliance that used a valid, X.509 digital certificate—signed by a GlobalSign CA—to identify the appliance.
(D)PKI done right with an awesome UX is achievable!
In 2008, Napera, a company I co-founded, released the first “IoT" appliance that used a valid, X.509 digital certificate—signed by a GlobalSign CA—to identify the appliance.
(D)PKI done right with an awesome UX is achievable!
🎉 🥳 Happy X.509 day to those who celebrate 🥳 🎉
September 5, 2025 at 2:39 PM
🎉 🥳 Happy X.509 day to those who celebrate 🥳 🎉
55TB DB to host to host “decentralized communication”
Don’t mean to pour salt in the wound, but it’s time to rethink what decentralized E2E encrypted messaging looks like.
With AT Protocol, your PDS is your very own home server!
#AT-SMS
Don’t mean to pour salt in the wound, but it’s time to rethink what decentralized E2E encrypted messaging looks like.
With AT Protocol, your PDS is your very own home server!
#AT-SMS
September 2, 2025 at 11:49 PM
55TB DB to host to host “decentralized communication”
Don’t mean to pour salt in the wound, but it’s time to rethink what decentralized E2E encrypted messaging looks like.
With AT Protocol, your PDS is your very own home server!
#AT-SMS
Don’t mean to pour salt in the wound, but it’s time to rethink what decentralized E2E encrypted messaging looks like.
With AT Protocol, your PDS is your very own home server!
#AT-SMS
how about Bluesky Posts that contain embedded video? 🙏
September 2, 2025 at 10:28 PM
how about Bluesky Posts that contain embedded video? 🙏
While using WhiteWind and Leaflet I had an interesting observation about using the PDS for private data
Both support "unpublished" blog posts. I discovered @whtwnd.com stores these draft your PDS, which means they can be discovered prior to publishing.
Not sure where @leaflet.pub stores drafts?
Both support "unpublished" blog posts. I discovered @whtwnd.com stores these draft your PDS, which means they can be discovered prior to publishing.
Not sure where @leaflet.pub stores drafts?
September 2, 2025 at 7:54 PM
While using WhiteWind and Leaflet I had an interesting observation about using the PDS for private data
Both support "unpublished" blog posts. I discovered @whtwnd.com stores these draft your PDS, which means they can be discovered prior to publishing.
Not sure where @leaflet.pub stores drafts?
Both support "unpublished" blog posts. I discovered @whtwnd.com stores these draft your PDS, which means they can be discovered prior to publishing.
Not sure where @leaflet.pub stores drafts?
Who's ready for liquid glass?
September 2, 2025 at 5:48 PM
Who's ready for liquid glass?
This did-nostr spec clarifies why Nostr should not be taken seriously as an alternative to AT Protocol, nor any social with wide-spread adoption.
Since a Nostr DID is just a public key, if you lose the private key, there is no recovery. It's only useful for short-lived pseudonymous networks.
Since a Nostr DID is just a public key, if you lose the private key, there is no recovery. It's only useful for short-lived pseudonymous networks.
August 29, 2025 at 1:28 PM
This did-nostr spec clarifies why Nostr should not be taken seriously as an alternative to AT Protocol, nor any social with wide-spread adoption.
Since a Nostr DID is just a public key, if you lose the private key, there is no recovery. It's only useful for short-lived pseudonymous networks.
Since a Nostr DID is just a public key, if you lose the private key, there is no recovery. It's only useful for short-lived pseudonymous networks.
The value of a messaging network is proportional to the square of the number of its users. It creates an attractive force like gravity, the more users, the more it attracts users. Two Internet identities—email and phone numbers—have crossed the event horizon and will be used until your last breath.
August 26, 2025 at 1:28 PM
The value of a messaging network is proportional to the square of the number of its users. It creates an attractive force like gravity, the more users, the more it attracts users. Two Internet identities—email and phone numbers—have crossed the event horizon and will be used until your last breath.
bitchat has a pretty cool privacy feature
If you take a screenshot while running the app, it let's everyone else in the chat know this. @signal.org should add this too.
If you take a screenshot while running the app, it let's everyone else in the chat know this. @signal.org should add this too.
August 25, 2025 at 4:11 PM
bitchat has a pretty cool privacy feature
If you take a screenshot while running the app, it let's everyone else in the chat know this. @signal.org should add this too.
If you take a screenshot while running the app, it let's everyone else in the chat know this. @signal.org should add this too.
wrt: "Would be great to have a new modern alternative to the E-mail standard that is usable for both public and private messaging."
sawry... couldn't resist...
sawry... couldn't resist...
August 20, 2025 at 8:49 PM
wrt: "Would be great to have a new modern alternative to the E-mail standard that is usable for both public and private messaging."
sawry... couldn't resist...
sawry... couldn't resist...
It has been said that "There are only two hard things in Computer Science: cache invalidation and naming things."
Here's some evidence that cryptographers are the best at Computer Science
Here's some evidence that cryptographers are the best at Computer Science
August 18, 2025 at 5:41 PM
It has been said that "There are only two hard things in Computer Science: cache invalidation and naming things."
Here's some evidence that cryptographers are the best at Computer Science
Here's some evidence that cryptographers are the best at Computer Science
no shame in cross posting if it's funny
August 13, 2025 at 6:30 PM
no shame in cross posting if it's funny
Don't take my word for it, even @vitalik.ca likes the Farcaster account recovery. Gold standard imo.
August 11, 2025 at 11:45 PM
Don't take my word for it, even @vitalik.ca likes the Farcaster account recovery. Gold standard imo.