Technology

58223 readers

4626 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS

233

Apple already shipped attestation on the web, and we barely noticed (httptoolkit.com)

submitted 1 year ago by lautan@lemmy.ca to c/technology@lemmy.world

62 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] elouboub@kbin.social 40 points 1 year ago (3 children)

The danger would be important entities like governments and banks using attestation. Then you'd be limited to using only Chrome, Safari and Edge, and Firefox could kiss its ass goodbye.

[–] kitonthenet@kbin.social 26 points 1 year ago (1 children)

Bank: my bank is too boomercore to ever implement something like this, we only recently got 2fa

Government: my government still makes me file my taxes on paper and mail it to them so I’m ok for now

[–] Kbin_space_program@kbin.social 18 points 1 year ago (1 children)

Banks and governments could get trapped into this because a third party vendor implements a system for them that includes this.

Like Salesforce's "Lightning Experience sites" only supports the latest versions of iOS and Android, as well as only supporting chromium based browsers and Firefox.

A lot of banks and government services run on that platform, and not all of them are going to be smart enough to pay for a custom solution that increases device support.

[–] kitonthenet@kbin.social 2 points 1 year ago (1 children)

It’s less about what they implement, and more about what their users who have clout expect. My regional bank is far more responsive to customer feedback than, for example, Bank of America. As for governments there’s all sorts of bureaucracy I can push on with not a lot of resources. It’s not accessible to everyone but organizations don’t need all that much prodding to respond anyway

[–] Kbin_space_program@kbin.social 2 points 1 year ago* (last edited 1 year ago)

Salesforce dictates what they support now, not on what people want. If an entity implements it, they can use the put of the box functionality or pay to have it customized to increase accessibility, security and support.

[–] Edgelord_Of_Tomorrow@lemmy.world 5 points 1 year ago (2 children)

The EU wouldn't really stand for that.

[–] Zak@lemmy.world 2 points 1 year ago* (last edited 1 year ago)

The EU lets them get away with requiring device attestation for their mobile apps. It's not exactly the same thing since system requirements for native apps are traditionally narrower than websites, but it's similar.

[–] elouboub@kbin.social 1 points 1 year ago

Let's hope not.

[–] _pete_@lemmy.world 2 points 1 year ago* (last edited 1 year ago)

In the UK at least, switching banks is super easy, I’ve done in twice in the last 2 months because they offered free cash to do so, there is enough competition that the banks have to make it easy to move or else they lose customers.

For government, generally most systems are built to be as accessible as they can be because there has been [https://www.gov.uk/guidance/accessibility-requirements-for-public-sector-websites-and-apps ](whole raft of legislation) written up to cover this.

I’m not saying it wouldn’t be a problem (power companies etc could prove to be sticky) but there are legal requirements that entities above a certain site have to meet.