this post was submitted on 18 Aug 2023
528 points (95.2% liked)

Technology

59377 readers
4098 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] theterrasque@infosec.pub 2 points 1 year ago (2 children)

There's basically 3 ways to verify a certificate.

  1. TOFU - trust on first use - save the certificate print first access and remember it so you know if it gets changed
  2. WoT - web of trust - other certificate holders verify the certificate and hopefully you find a chain to someone you trust.
  3. Central authority - the most popular. A central entity verifies and goes good for the identity.

In all three you need to trust someone, and ask three are a pain to transfer something to new owner.

NFT gives a fundamentally new option here, that's transferable and doesn't require trust. That it's been used for and gotten known for monkey scams is a shame.

[–] magic_lobster_party@kbin.social 6 points 1 year ago* (last edited 1 year ago)

And how do you verify that the NFT can be trusted? With any of the 3 methods you mentioned!

Blockchain doesn’t circumvent this need of trust.

The thing blockchain eliminates is the need of a timestamp authority when doing transactions. Satoshi even called his invention “distributed timestamp server” before people started to call it blockchain. You don’t need timestamps when verifying the authenticity of an NFT.

[–] Natanael@slrpnk.net 1 points 1 year ago

Not really, signatures on blockchains is just another TOFU or WoT variant, because how do you know the original token is the legit thing you wanted in the first place? It's only after you have identified it that the existence of the blockchain becomes relevant in that it can track ownership without central authority.