Re: [projectvrm] 'Ode to VRM'

[Kevin Cox < >]

Jim,

I come back to the engineering problem and Promise Theory. We can have a "single identity" with different persona. But, a change in one persona can potentially require changes in all persona.  Compromise the central identity and we compromise all identities.  Protecting ourselves causes overheads.  The cost of overheads soon overwhelms the savings made from the centralisation.  The centralisation can be in any form - including a single URL or a single name

​.

​

Promise Theory suggests the way to reduce costs is to simplify by using a different building block for connecting.

What we do in Welcomer is to make the building block the connection between the two identifications with two other entities.  So A connects to B, A connects to C, A now authorises a message between B and C. The building block is now the connection authorised between B and C by A.

A is the only party to know and remember the connection.

​If A's data in any entity is compromised it only compromises that data in the entity.  

​

This approach has an overhead cost that increases linearly with the number of unique connections.

Any single identity approach has overheads that increases by the square of the number of possible (not potential) connections.

But, we can combine Welcomer with centralisation.  We can have a digi.me as though it is a single identity for social media (or any other set of entities).  When we want to connect these to other entities that we want to keep separate we use a Welcomer connection.

This is how we intend to build an application that wants to use social media data but where the identity of the person in the application is "isolated" from social media.

Here is another explanation of the idea.  https://kevinrosscox.me/2016/06/06/low-cost-identity-systems/.

​Kevin​

On Wed, Jul 6, 2016 at 11:24 PM, James Pasquale < " target="_blank"> > wrote:

You can all beat into submission-or-at-least-try.  We all only have one identity, it is based on all my data both private, public, and shared. We all have multiple personas we use at any one given time all day long.  The amount and kind of identification data to each and every one of my personas are different and at the same time, the same depending on who or what one needs to identify them self’s to.

Identity and Identification are two separate entities depend on each other. While a person can be their own system of record managing multiple personas, the only true way to change my identity is by changing the data which it is complied of.

Based on the thinking above, an individual’s digital dashboard or even a PIMS, or what Jim here, calls a lifecycle mixing board and others like Adrian call an Authorization Server rightly so.  Should and would be able to signal out a persons personas, I share much different and much more health data with… you can fill in the BLANK, than I would in comparison with a FMCG (Fast Moving Consumer Goods) who offers skin or hair care products one might be interested in.

What can I say other then I like to keep it simple.

 

On Jul 6, 2016, at 8:46 AM, John Wunderlich < " target="_blank"> > wrote:

Doc;

The amount of air between the two depends on whether or not the Authorization Server and/or the personal System of Record allow me to manage multiple identities. If one or the other is just controlling selective attributes of a root unitary identity then you will still need to manage multiple systems to manage multiple identities. Example use case would be a human rights worker in an authoritarian regime, who needs to maintain an anonymous social networking presence for their human rights work but an innocuous social networking presence for presentation to the authorities. The two must never be linkable. People with socially stigmatized medical conditions, unpopular political views or who just want to maintain a social life separate from their corporate life will all have similar requirements. 

John Wunderlich,

Sent frum a mobile device,
Pleez 4give speling erurz

"...a world of near-total surveillance and endless record-keeping is likely to be one with less liberty, less experimentation, and certainly far less joy..." A. Michael Froomkin

_____________________________
From: Doc Searls < " target="_blank"> >
Sent: Wednesday, July 6, 2016 8:26 AM
Subject: Re: [projectvrm] 'Ode to VRM'
To: Kevin Cox < " target="_blank"> >
Cc: John Philpin < " target="_blank"> >, ProjectVRM list < " target="_blank"> >


I’d like to bring two threads together, with what Adrian wrote here:

> My authorization server will manage any number of persistent relationships at one central console so I don't have to fly from silo to silo but that does not take care of the discovery aspect of marketing by a "new" vendor.
>
> A "new" vendor will need to discover my authorization server somehow while preserving my anonymity until the point where my policies (as managed and exposed by my authorization server) decide to either automatically release identifying attributes or notify me somehow and impinge on my attention. Who will play the role of dating site in the broader economy by enabling my authorization server to hide some attributes even as it promotes the discovery of others?
>
> It seems to me that we are missing a clear vision of the public space for discovery of my authorization server. Does it look like Google or like Apple or like blockchain?

Seems to me there’s not much daylight (if any) between being one’s own system of record and operating one’s own authorization server. Do I have that right?

Doc
(on the road, or I’d say more…)

> On Jul 6, 2016, at 1:42 AM, Kevin Cox < " target="_blank"> > wrote:
>
> Just tweeted.
>
> There is an alternative to an Internet of Surveillance.
>
> http://bizcatalyst360.com/i-am-my-own-system-of-record/
>
> On Wed, Jul 6, 2016 at 5:42 AM, John Philpin < " target="_blank"> > wrote:
>> … highlighting Digi.me referencing ‘VRM' and ‘Doc' on the way through …. I just wanted to share with this esteemed group
>>
>> http://bizcatalyst360.com/i-am-my-own-system-of-record/
>>
>> Any and all comments welcome here, there or anywhere you find it …
>>
>> open or closed.
>>
>> My thanks for your attention.
>>
>> /John
>>
>
>
> --
> Contact 0413961090

This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system manager. This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. If you are not the intended recipient you are notified that disclosing, copying, distributing or taking any action in reliance on the contents of this information is strictly prohibited.

--

Contact 0413961090