@lautan@lemmy.ca to Technology@lemmy.worldEnglish • 1 year agoApple already shipped attestation on the web, and we barely noticedhttptoolkit.comexternal-linkmessage-square72fedilinkarrow-up1251arrow-down19cross-posted to: technology@beehaw.orgtechnology@lemmy.mltechnology@lemmy.worldprivacy@lemmy.ml
arrow-up1242arrow-down1external-linkApple already shipped attestation on the web, and we barely noticedhttptoolkit.com@lautan@lemmy.ca to Technology@lemmy.worldEnglish • 1 year agomessage-square72fedilinkcross-posted to: technology@beehaw.orgtechnology@lemmy.mltechnology@lemmy.worldprivacy@lemmy.ml
minus-square@Serinus@lemmy.worldlinkfedilinkEnglish3•1 year agoFor sites that support it, you don’t have to fill out a captcha. Instead it transmits a list of running processes (or other, formerly private info).
minus-square@SirQuackTheDuck@lemmy.worldlinkfedilinkEnglish1•1 year ago^Instead it transmits a list of running processes (or other, formerly private info). No it doesn’t. Attestation is simply a cryptographicly signed “we trust this user is human” message.
minus-square@SirQuackTheDuck@lemmy.worldlinkfedilinkEnglish1•1 year agoBased on the spec. The token is simply a signature that can be checked at the issuing party (Apple for this news item).
For sites that support it, you don’t have to fill out a captcha.
Instead it transmits a list of running processes (or other, formerly private info).
^Instead it transmits a list of running processes (or other, formerly private info).
No it doesn’t. Attestation is simply a cryptographicly signed “we trust this user is human” message.
Based on what?
Based on the spec. The token is simply a signature that can be checked at the issuing party (Apple for this news item).