One of my favourite things about working on Fluidkeys is speaking to new people every week, and discovering there are *soo* many people trying to do security right for their customers. It's definitely not all doom and gloom!

@micahflee Congrats! We're publishing fingerprints.txt ourselves, I'll have to check we're still complying with the standard though :)

Thanks to everyone whose valuable feedback guided today's release of Fluidkeys 👋

Now you can send private keys and certs direct from a file with no fiddly copy/paste 💾

fluidkeys.com/blog/release-0-4

Nor are companies:

"Perfect credit cooperation models between retailers and suppliers. Strengthen anti-monopoly and anti-unfair competition law enforcement, strengthen investigation and prosecution of acts of market distortion, false propaganda, commercial swindling, commercial slander, commercial bribes and other such unlawful acts, expose model cases and major cases increase the costs for enterprises to break trust, and stimulate sincere business and fair competition"

Civil servants aren't off the hook:

"...enter civil servants’ personal credit information concerning reports on events, records of sincerity and cleanliness in government affairs, the results of annual evaluations, acts violating laws, disciplines and contract into their files"

Some select highlights:

"Sincerity in government affairs is the crux of social credit system construction..."

"[to] perfect mechanisms and procedures for government policymaking, raise the transparency of policymaking"

"...broaden channels for public participation in government policymaking, strengthen social supervision over and constraints on the use of power, improve government credibility, establish an honest image of an open, fair and clean government."

(it isn't how I expected)

Finished prepping my talk on China's Social Credit System (thanks for the great links).

I was most surprised by the official Planning Outline [translated]: chinacopyrightandmedia.wordpre

1/2 of the focus is on government itself (typically I read only about area #3):

1. integrity in government affairs
2. commercial integrity
3. societal integrity
4. judicial credibility

@HerraBRE Ah yes I know the one. I kind of want to wear it on a chain round my neck like some sort of post-apocalyptic prepping nutcase

@wiktor The brand confusion is entirely my fault! I should never have release Monitor under the same domain / name as Expirybot!

@keverets Excellent links, thanks. Turns out asking you mastodon folks is a very good way of learning things!

Slightly sad but mostly relieved to be shutting down my PGP keyserver monitoring service.

It wasn't working well and it was difficult and stressful to maintain.

Planning how to close it respectfully and delete people's data has felt good. Getting some nice email replies :D

paulfurley.com/shutting-down-k

@wiktor The authority key model is the sort of thing we're planning: the team roster is a signed file containing the fingerprints of the whole team and the team's admin (similar to gpgsync). Then Fluidkeys can either 1) set "ultimate" trust to the admin in GnuPG or 2) locally-sign all the team keys in the roster.

There are pros and cons to each: 1) gives the admin control over keys *outside* the team which is strange.

@genmon @tomtaylor That's exactly the problem @ian and I are working on :) The aim of Fluidkeys is making key management so automatic that tools like git-crypt, pass, enigmail all *just work* for the team

I'm giving a (5 minute) Ignite talk on China's social credit system next week, and I admit I don't know a lot about it yet.

Can anyone point me towards good reading on the topic?

Show more
Open social media for the UK

A social media community hosted in the UK; part of the Mastodon/ActivityPub federated social network, which allows you to follow users on other communities. It's a bit like Twitter but without a single company in control.

If you use this server, you are required to abide by our Code of Conduct. If you don't like it, there are plenty of other communities you can use.

If you're coming here from Twitter, there are some very useful services to help you find friends and automatically crosspost toots that you might like to set up once you're signed in.

Backers

This is a volunteer-run community administered by @floppy, and hosted by Mastohost in the UK. Please support our running costs by joining the Open Collective and becoming a backer. Thanks go to our existing backers - this place exists because of them!

Service status is available from our status page and the @status account.