#Twitter is just another example of why Ambien authority is bad. *ba-dum-tss*

#CapabilityBasedSecurityJokes #ObjectCapabilities #OCaps #OCap

New ForgeFed #Blog post:

Stabilizing the Object Capability System

https://forgefed.org/blog/stabilizing-ocaps/

Where to comment: Right here on the Fediverse :)

--pere

#forge #ocaps #activitypub #forgefed #federation #haskell #fediverse #decentralization #development

New ForgeFed blog post: Vervis actor refactoring

https://forgefed.org/blog/vervis-actor-refactoring/

Where to comment: Here on the Fediverse :)

#activitypub #ocaps #haskell #development

--pere

The #Sandstorm project is excited to finally join the fediverse!

We're a secure computing platform for one-click deployment of open source web apps. We're also an innovative way of building apps based on object capabilities (#ocaps)!

We've selected floss.social because we love the vibe of the community growing here. Our friends at @forgejo are also here which is a great bonus.

Follow us for project updates and get the latest and greatest news on the growth of our community! #introduction

@theruran The interesting aspect of this, for me, is making the denotational semantics explicit. Most of the #OCaps world seems content to leave those semantics implicit. I called this capabilities negotiation in the description of my Valkyrie storage module. This module passes a list of desired capabilities downward (towards the physical layer) and receives a key-value store back. The keys are the API names sought and the values are either false or a reference to a function that implements that API. That's probably an applicative monad, but I didn't have that terminology when I wrote it up and I still need to check that

@theruran Given this background, the way I'd describe capabilities is a secret mapping of denotational semantics to operational semantics. Passing a capability establishes an identity between a definition on the recipient side and an operation by the sender

#OCaps

@aral @cancel there's some recognition and of a possible solution to this problem using #objectCapabilities #ocaps #ocappub
https://gitlab.com/spritely/ocappub/blob/master/README.org

@jonobie havent looked at it yet, but @protean recommended this link yesterday from @bonfire about community led responses to disinfo (also relevant for spam, harassment etc.)

https://bonfirenetworks.org/zappa/

Bonfire is shaping up nice & they are implementing a group feature. Some other fediverse servers already have groups. Some of them (stuff that can federate on the zot protocol) already provide fine grained control over posting / reading permissions.

Looks like #ocaps is coming to activitypub

in the car I was pondering #ocaps, #goblins, and #functionalprogramming... I had searched for ocap frameworks in python, but today realized that simple dependency injection isn't the same, when any running code (in python at least) can inspect the internals of most anything it can get a reference to.

Perhaps ocap as a larger design only makes sense in a language that itself has a more secure design?

I'm talking out my butt here but it makes sense to me...

#programming #activitypub really interesting (though sadly unfinished) read on object capabilities with some good examples of how that might look in the wild. I think I'll do something with #ocaps for #megaloceros

https://gitlab.com/spritely/ocappub/-/tree/master

If I were to quit everything and become some kind of weird knowledge monk, I think I would try to devise a theory of maximally secure user interfaces for permissionless computer systems. I mean, that's arguably what I'm doing now, but I wouldn't mind more time diving into theory. I'm presently constantly forced into practice by necessity. I think we have a pretty good idea, but there are parts I'd like to nail down more. #secureui #ocap #ocaps

I stumbled upon this book today while reading my e-mail. Thought it would be of interest to others here. This might be old news for some; I've not seen this before, and thought I'd share.

https://homes.cs.washington.edu/~levy/capabook/

#capabilities #capability #objectcapabilites #descriptor #descriptors #ocap #ocaps

talking to @adz about the future of #fediverse security and #ocaps at #transmediale