Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • World
  • Users
  • Groups
Skins
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (Cyborg)
  • No Skin
Collapse
Brand Logo

CIRCLE WITH A DOT

  1. Home
  2. Uncategorized
  3. It might be a good idea to revisit key signing parties and build trust through in-person meetings.

It might be a good idea to revisit key signing parties and build trust through in-person meetings.

Scheduled Pinned Locked Moved Uncategorized
trust
13 Posts 4 Posters 0 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • kdkorte@fosstodon.orgK kdkorte@fosstodon.org

    It might be a good idea to revisit key signing parties and build trust through in-person meetings. At least AI won't be able to hijack that.
    #AI #trust
    https://www.csoonline.com/article/4132870/open-source-maintainers-being-targeted-by-ai-agent-as-part-of-reputation-farming.html

    aakl@infosec.exchangeA This user is from outside of this forum
    aakl@infosec.exchangeA This user is from outside of this forum
    aakl@infosec.exchange
    wrote last edited by
    #2

    @kdkorte Where would I find a list of all the good things that the new AI models have done?

    kdkorte@fosstodon.orgK 1 Reply Last reply
    0
    • kdkorte@fosstodon.orgK kdkorte@fosstodon.org

      It might be a good idea to revisit key signing parties and build trust through in-person meetings. At least AI won't be able to hijack that.
      #AI #trust
      https://www.csoonline.com/article/4132870/open-source-maintainers-being-targeted-by-ai-agent-as-part-of-reputation-farming.html

      epic_null@infosec.exchangeE This user is from outside of this forum
      epic_null@infosec.exchangeE This user is from outside of this forum
      epic_null@infosec.exchange
      wrote last edited by
      #3

      @kdkorte I will have to take your word on article contents.

      Link Preview Image
      kdkorte@fosstodon.orgK 1 Reply Last reply
      0
      • kdkorte@fosstodon.orgK kdkorte@fosstodon.org

        It might be a good idea to revisit key signing parties and build trust through in-person meetings. At least AI won't be able to hijack that.
        #AI #trust
        https://www.csoonline.com/article/4132870/open-source-maintainers-being-targeted-by-ai-agent-as-part-of-reputation-farming.html

        happyborg@fosstodon.orgH This user is from outside of this forum
        happyborg@fosstodon.orgH This user is from outside of this forum
        happyborg@fosstodon.org
        wrote last edited by
        #4

        @kdkorte We don't need signing parties. All we need is to know at least a couple of people we can vouch for who we may never have met, who are in a similar position and willing to share that information with those they know, who also trust them.

        We're lucky that almost everyone online these days was here pre AI agents and will be in a position to do this.

        So we need a secure protocol and a web of trust app. The viral potential means it could quickly create a public web of trustable human IDs.

        kdkorte@fosstodon.orgK 1 Reply Last reply
        0
        • epic_null@infosec.exchangeE epic_null@infosec.exchange

          @kdkorte I will have to take your word on article contents.

          Link Preview Image
          kdkorte@fosstodon.orgK This user is from outside of this forum
          kdkorte@fosstodon.orgK This user is from outside of this forum
          kdkorte@fosstodon.org
          wrote last edited by
          #5

          @Epic_Null Wow! Now I wonder whether they don't show that crap on the desktop version or if Zen + ublock are getting too good at filtering.

          aakl@infosec.exchangeA 1 Reply Last reply
          0
          • kdkorte@fosstodon.orgK kdkorte@fosstodon.org

            @Epic_Null Wow! Now I wonder whether they don't show that crap on the desktop version or if Zen + ublock are getting too good at filtering.

            aakl@infosec.exchangeA This user is from outside of this forum
            aakl@infosec.exchangeA This user is from outside of this forum
            aakl@infosec.exchange
            wrote last edited by
            #6

            @kdkorte @Epic_Null It's not on the desktop version.

            epic_null@infosec.exchangeE 1 Reply Last reply
            1
            0
            • R relay@relay.infosec.exchange shared this topic
            • aakl@infosec.exchangeA aakl@infosec.exchange

              @kdkorte @Epic_Null It's not on the desktop version.

              epic_null@infosec.exchangeE This user is from outside of this forum
              epic_null@infosec.exchangeE This user is from outside of this forum
              epic_null@infosec.exchange
              wrote last edited by
              #7

              @AAKL @kdkorte Huh. That has Implications in my mind.

              kdkorte@fosstodon.orgK 1 Reply Last reply
              0
              • epic_null@infosec.exchangeE epic_null@infosec.exchange

                @AAKL @kdkorte Huh. That has Implications in my mind.

                kdkorte@fosstodon.orgK This user is from outside of this forum
                kdkorte@fosstodon.orgK This user is from outside of this forum
                kdkorte@fosstodon.org
                wrote last edited by
                #8

                @Epic_Null @AAKL Yes, especially as these things are something to consider when publishing guest posts. CSO goes off of my list now.

                aakl@infosec.exchangeA 1 Reply Last reply
                0
                • happyborg@fosstodon.orgH happyborg@fosstodon.org

                  @kdkorte We don't need signing parties. All we need is to know at least a couple of people we can vouch for who we may never have met, who are in a similar position and willing to share that information with those they know, who also trust them.

                  We're lucky that almost everyone online these days was here pre AI agents and will be in a position to do this.

                  So we need a secure protocol and a web of trust app. The viral potential means it could quickly create a public web of trustable human IDs.

                  kdkorte@fosstodon.orgK This user is from outside of this forum
                  kdkorte@fosstodon.orgK This user is from outside of this forum
                  kdkorte@fosstodon.org
                  wrote last edited by
                  #9

                  @happyborg I don't know. The signing parties always had the effect of leveling the playing field. If you only accept those who already have connections, you might be limiting the field of contributors.

                  happyborg@fosstodon.orgH 1 Reply Last reply
                  0
                  • kdkorte@fosstodon.orgK kdkorte@fosstodon.org

                    @Epic_Null @AAKL Yes, especially as these things are something to consider when publishing guest posts. CSO goes off of my list now.

                    aakl@infosec.exchangeA This user is from outside of this forum
                    aakl@infosec.exchangeA This user is from outside of this forum
                    aakl@infosec.exchange
                    wrote last edited by
                    #10

                    @kdkorte @Epic_Null Rightly so. FoundryCo is a privacy abuser with everything it publishes. Even if you go to the bottom of the page, I couldn't find any options to opt out. I guess that assumes you have to write them for it.

                    1 Reply Last reply
                    0
                    • kdkorte@fosstodon.orgK kdkorte@fosstodon.org

                      @happyborg I don't know. The signing parties always had the effect of leveling the playing field. If you only accept those who already have connections, you might be limiting the field of contributors.

                      happyborg@fosstodon.orgH This user is from outside of this forum
                      happyborg@fosstodon.orgH This user is from outside of this forum
                      happyborg@fosstodon.org
                      wrote last edited by
                      #11

                      @kdkorte I'm not saying don't have signing parties, of course there is the problem of including late arriving humans, but that will be more easily handled if we have as large a web of known humans as possible.

                      Signing parties don't scale but they can fill in gaps and increase inclusion.

                      1 Reply Last reply
                      0
                      • aakl@infosec.exchangeA aakl@infosec.exchange

                        @kdkorte Where would I find a list of all the good things that the new AI models have done?

                        kdkorte@fosstodon.orgK This user is from outside of this forum
                        kdkorte@fosstodon.orgK This user is from outside of this forum
                        kdkorte@fosstodon.org
                        wrote last edited by
                        #12

                        @AAKL I'm sure that if such a list exists, it would be published in every major IT newspaper, and for $5k in the latest Gartner report.

                        The fact that we can find it means that there is very little that the new AI models do better than those from 3 years ago.

                        aakl@infosec.exchangeA 1 Reply Last reply
                        1
                        0
                        • kdkorte@fosstodon.orgK kdkorte@fosstodon.org

                          @AAKL I'm sure that if such a list exists, it would be published in every major IT newspaper, and for $5k in the latest Gartner report.

                          The fact that we can find it means that there is very little that the new AI models do better than those from 3 years ago.

                          aakl@infosec.exchangeA This user is from outside of this forum
                          aakl@infosec.exchangeA This user is from outside of this forum
                          aakl@infosec.exchange
                          wrote last edited by
                          #13

                          @kdkorte I did a search a couple of times to try and find some good AI contributions other than "we'll automate your life." I only found stories about promise and potential. Last story I ran into last week had AI mess up the surgery. So ....

                          1 Reply Last reply
                          1
                          0
                          Reply
                          • Reply as topic
                          Log in to reply
                          • Oldest to Newest
                          • Newest to Oldest
                          • Most Votes


                          • Login

                          • Login or register to search.
                          • First post
                            Last post
                          0
                          • Categories
                          • Recent
                          • Tags
                          • Popular
                          • World
                          • Users
                          • Groups