1 Matching Annotations
- Apr 2024
-
identity.foundation identity.foundation
-
web security is provided at the transport level (TLS); it is not an independent attribute of the messages themselves
I.e., in web, parties that reside on the ends of an encrypted channel authorize each other. Whereas data that's passed between them does not have this authorization built in.
Taking a reverse approach, akin to having locks on data and not a channel, we can have authorization on data and not the channel.
-