asciilifeform: because signatures are so rare.

asciilifeform: will be believed by sufficiently many otherwise-clueful folks

asciilifeform: i, for one, would much prefer to have there be not the slightest chance that a fuckwit claiming to speak as me, but sans my key, can be believed

asciilifeform: mircea_popescu: and you like it ?

asciilifeform: not 'democratizing', just probing waters

asciilifeform: who among those present, other than mircea_popescu, wishes to be impersonateable (deniable) by default ?

asciilifeform also formed this impression.

asciilifeform: artifexd: http://log.bitcoin-assets.com/?date=07-01-2015#967274 << basic summary of the thing i was mainly on about. ☝︎

asciilifeform will, likely, happily play with whatever apparatus you folks come up with, but wishes that the choice be an informed one on the part of the implementers, rather than happenstance.

asciilifeform: (unitary hello+signature packet)

asciilifeform: by way of a considerably simpler design

asciilifeform: why is this necessary?

asciilifeform: out of band?

asciilifeform: sent - in bottle.

asciilifeform: it could be my final message as boat goes down.

asciilifeform: not necessarily

asciilifeform: it is quite impossible to sign your ip address if you communicate via courier who may stop at one of sixteen ports.

asciilifeform: mircea_popescu: when i sign my 'hello' i will have no idea where it will enter the network.

asciilifeform: what is my 'ip address' then ?

asciilifeform: let's say i communicate over courier.

asciilifeform: why is it necessary to involve ip addresses ?

asciilifeform: in no small part because i cannot really picture my impalement or reprieve as hinging on attribution of what i've said

asciilifeform: i am quite ready to ephemeralkey-sign every line i have uttered in #b-a.

asciilifeform: at the very least, one ought to have the option of (unobtrusively!) signing every line

asciilifeform still can't escape the feeling that hypothetical apparatus is a weapon, at least for the time being, that must be sharp enough to penetrate a particular tough grizzly hide if it is to carry on to being whatever it was meant to be...

asciilifeform: that will have to be re-shaped into something quite else (his words) when enemy is dead

asciilifeform: naggum had a piece where he confessed to thinking of 'open source' as a weapon, purpose-built for the destruction of a particular evil (microshit) ☟︎

asciilifeform would much like to hear more about this later

asciilifeform rather thinks that this is a military matter, where adversary can afford to ransack and search 100 houses but not 100,000, and hence his gathering bits of info - matters ☟︎

asciilifeform gets a distinct impression that mircea_popescu is still thinking of the adversary as being bound by laws, courts, procedures of evidence-gathering.

asciilifeform: teacher: 'it was one of you boys'

asciilifeform is transported to grade school mentally

asciilifeform: that's what 'deniability' means, unless i catastrophically misunderstand the concept

asciilifeform: (typically)

asciilifeform: to how many possible pubkeys (and presumably, but not automagically, people) can he narrow down the 'brezhnev sucks' ?

asciilifeform: or a series of nodes

asciilifeform: if he were to put a node in his pocket

asciilifeform: let's work out, using spec as given in mircea_popescu's article: what does an inquisitor know about a particular utterance

asciilifeform: 'absolutes' are tricky.

asciilifeform: as i reckon, same degree as the unsigned-message scenario

asciilifeform: (contrieved example)

asciilifeform: we thus have a degree of deniability, about the same as in the case of no messages carrying signatures

asciilifeform: say mircea_popescu wishes to deniably utter the words 'brezhnev sucks'. he then asks me to utter, 'my friend, who wishes to stay unmarked, wishes to inform the ladies and gentlemen of this network that brezhnev sucks'

asciilifeform: but this is inescapable

asciilifeform: the ears - can choose to believe, or not, naturally

asciilifeform: explicitly proclaimed as 'not his own'

asciilifeform: mircea_popescu: consider: a subclass of private message where you ask a friend to pass along, to the 'room', some words.

asciilifeform: mircea_popescu: there is another way to bake it in.

asciilifeform: imho it is far from a sure thing that this will so much as add one drop of sweat to a usg inquisitor's work

asciilifeform: the only possible solution to preet signing as asciilifeform, or mircea_popescu, or whoever, is to pull the pin when he comes uninvited.

asciilifeform: why not sign for friends?

asciilifeform: sigs are pure win, for a creature like myself, just about everything that comes out of my mouth is 'signed' enough for inquisitor!

asciilifeform: even if we have no sigs

asciilifeform: hence the 'adverse identity' thing

asciilifeform: 'you sound just like him!'

asciilifeform: when i grunt on the impalement pole, i will probably not be able to deny these words either, to the inquisitor, for the same reason

asciilifeform: but this is an 'informal bug-ridden implementation' of message signing.

asciilifeform: well sure.

asciilifeform: and why?

asciilifeform: how many of the folks present are ready to believe that this 'asciilifeform' is the same animal they are accustomed to enduring the company of in #b-a ?

asciilifeform: i am not presently authenticated via 'gribble'

asciilifeform: here's an observation:

asciilifeform: please don't put it on life support, it needs to die

asciilifeform: trust is simply an obsolete, pre-scientific word. ☟︎

asciilifeform: nooo

asciilifeform: 'trust' is probably a word that will have to be retired, like phlogiston.

asciilifeform did not imagine that there were.

asciilifeform: in some truly perverse cases

asciilifeform: arguing that this can be useful information

asciilifeform: not necessarily same person, but same key (e.g., is same bourbaki)

asciilifeform: you can still know that bob(today) is (or is not) same as bob(next month)

asciilifeform: ^ not entirely

asciilifeform: how is anything originating in my machine to leave my node without being signed ?

asciilifeform: let's put it this way - if i wish for my words to successfully relay beyond my own node, i have to sign them with an ephemeral key

asciilifeform: artifexd: next thing you know we're doing lamport clocks.

asciilifeform: (of signed gibblets, anyway)

asciilifeform: prevents a future forged conversation stitched out of words you have uttered.

asciilifeform: this is why i suggested chaining.

asciilifeform: (1971 story)

asciilifeform: http://pastebin.com/w5VYjyBu << possibly very relevant

asciilifeform: i will let this point prove itself, but was willing to argue for it to possibly save mircea_popescu and artifexd some unnecessary sweat

asciilifeform: in the end, you end up with a poor reimplementation of 'blockchain' anyway

asciilifeform: (i.e., just as their own live wotgraph behaves)

asciilifeform: not so many ways to choose from if result is to behave functionally live

asciilifeform: let's say that a fair number of node operators wish to cache. now they are stuck retaining (and transmitting, regularly!) a vast number of duplicate copies of many wotgraphs

asciilifeform: because things that are tedious and must be done manually, tend to not get done.

asciilifeform: i won't argue that wot moves ought to be retained for all eternity; but will say that some automatic caching is necessary

asciilifeform: well, in a sense they are; but we're really surrendering to entropy here far more than, imho, is necessary

asciilifeform: to create temporary warps in the fabric of wot.

asciilifeform: to attempt to disrupt signal, locate mirrors

asciilifeform: the 'dynamicity' of new-wot (vs classical wot) creates some very strong incentives for hooligans of all stripes

asciilifeform: right now this seems far easier than it will turn out to be on adult apparatus.

asciilifeform: where the change propagates.

asciilifeform: or adjust his own graph-weights? (that would somewhat defeat the purpose of a wot, loses information)

asciilifeform: is he to host it on an 'obelisk' node which does nothing else but relay it ?

asciilifeform: assuming he wishes it to march on

asciilifeform: there are obvious wins to this approach. but opens the question of what, e.g., my brother, is to do with my wotgraph once my ship goes down.

asciilifeform: and if so, how.

asciilifeform: whether father time should forget

asciilifeform: this is actually an ancient debate in the maths-of-p2p-nets world