Content update

This commit is contained in:
Yarmo Mackenbach 2021-03-31 14:34:27 +02:00
parent 16c5997004
commit 88ff210d90
No known key found for this signature in database
GPG key ID: 37367F4AF4087AD1
4 changed files with 33 additions and 29 deletions

View file

@ -138,6 +138,21 @@ Some services like Gitlab or DNS require complicated verification processes or c
Since this is the internet we are talking about, you should always be skeptical about data that comes from some unknown server. In order to mitigate this, each profile page on this website will invite you to perform the identity verification again but locally, using a native client appropriate to your device if one exists. Since this is the internet we are talking about, you should always be skeptical about data that comes from some unknown server. In order to mitigate this, each profile page on this website will invite you to perform the identity verification again but locally, using a native client appropriate to your device if one exists.
### Claims
Claims are the pieces of data to lets you claim an online property. A claim can only be verified by a proof.
Claims are stored inside cryptographic keys as so-called "notations": these can be seen as custom data entries. Typically, claims are structured as follows:
`proof@metacode.biz=https://platform.com/username`
- *proof* tells us we are looking at the location of a potential proof the current claim.
- *@metacode.biz* tells us this is a specific type of proof, as defined on the [metacode.biz website](https://metacode.biz/openpgp/proofs). This part should NOT be changed when adding a new proof to your key.
- The rest of the proof is simply a URL to the profile page of your account on a website.
It is important to note that not all websites are supported. For now, supporting a single online platform involves a bit of work. It is also important to note not all platforms can be supported. You can always suggest new platforms to support by [creating an issue here](https://codeberg.org/keyoxide/doipjs) or contacting me at [yarmo@keyoxide.org](mailto:yarmo@keyoxide.org).
### Keyoxide instances ### Keyoxide instances
The Keyoxide website was built with the idea that other people could put it on their servers as well. We call these "instances". The Keyoxide project's lead developer has put an instance on [https://keyoxide.org](https://keyoxide.org) but that is not the only way to access Keyoxide. Everyone could put it on their servers. The Keyoxide website was built with the idea that other people could put it on their servers as well. We call these "instances". The Keyoxide project's lead developer has put an instance on [https://keyoxide.org](https://keyoxide.org) but that is not the only way to access Keyoxide. Everyone could put it on their servers.

View file

@ -2,11 +2,17 @@
## What is Keyoxide? ## What is Keyoxide?
[Keyoxide](/) is a modern and privacy-friendly platform to establish your decentralized online identity. It is fully Open Source under an AGPLv3 license and it can even be self-hosted. It can also perform basic cryptographic operations like encryption and signature verification. Keyoxide is a modern and privacy-friendly platform to establish your decentralized online identity. It is fully Open Source under an AGPLv3 license and it can even be self-hosted. It can also perform basic cryptographic operations like encryption and signature verification.
## Who is Yarmo Mackenbach?
Hey, I am the lead developer for the Keyoxide project, which I am able to work on full-time thanks to the donations of those supporting the cause.
You can contact me at [yarmo@keyoxide.org](mailto:yarmo@keyoxide.org). My website is [yarmo.eu](https://yarmo.eu).
## Why does Keyoxide exist? ## Why does Keyoxide exist?
[Keyoxide](/) helps solve a growing issue on today's internet: **identity**. Keyoxide helps solve a growing issue on today's internet: **identity**.
During the *Web 1.0* days of the internet shortly after its inception, it served as a new world for people to explore. **Anonymity** reigned as all websites were silos: you could be two completely different personas on two different sites. You could even have different personas on the same website. There was no method to link personas to our real-world identity, nor a reason to. During the *Web 1.0* days of the internet shortly after its inception, it served as a new world for people to explore. **Anonymity** reigned as all websites were silos: you could be two completely different personas on two different sites. You could even have different personas on the same website. There was no method to link personas to our real-world identity, nor a reason to.
@ -14,47 +20,27 @@ Entered the *Web 2.0*. Small sites disappeared as large corporations took over.
We know better now. These internet corporations gave us convenience with one hand and took away our privacy with the other. But we are getting a third chance. We know better now. These internet corporations gave us convenience with one hand and took away our privacy with the other. But we are getting a third chance.
Developers all over the world are building the *Web 3.0*, a new vision of the internet where its citizens keep control over their data and, by extension, their **identity**. The internet is only growing bigger and becoming a larger part of our lives. This new Web will have a strong focus on both **anonymity** and **identity**. [Keyoxide](/) is here to help with the latter. Developers all over the world are building the *Web 3.0*, a new vision of the internet where its citizens keep control over their data and, by extension, their **identity**. The internet is only growing bigger and becoming a larger part of our lives. This new Web will have a strong focus on both **anonymity** and **identity**. Keyoxide is here to help with the latter.
While **anonymity** is the art of keeping a persona devoid of individualizing characteristics or qualities, **identity** is the science of tying online entities together, making sure the world can see these entities are part of a larger persona. A person can have multiple personas, or online **identities**. While **anonymity** is the art of keeping a persona devoid of individualizing characteristics or qualities, **identity** is the science of tying online entities together, making sure the world can see these entities are part of a larger persona. A person can have multiple personas, or online **identities**.
## How does Keyoxide work? ## How does Keyoxide work?
### The simple explanation Please have a look at the [About Keyoxide](/about) page.
You create a special secure document that only you can edit, containing a list of accounts that you have created: one of these accounts is, let's say, a Twitter account. At the same time, you also a little piece of text to, for example, your Twitter bio, containing the name of that same document. [Keyoxide](/) reads this special document, sees you have a Twitter account, has a look at that account and finds the name of your document.
Because this is only possible if one and the same person has access to both that special document and the Twitter account, we have now verified this account belonging to you. If you add other accounts, you get a profile page which people can use to know who you are on different websites.
### The complicated explanation
Cryptographic keypairs consist of a private key and a public key. While both keys contain the same information, the private key allows one to edit the contents of the keypair and the public key allows one to simply read the contents of the keypair.
This makes cryptographic keypairs a perfect vessel for online identities. Only one person can add so-called "proofs" to the keypair while the rest of the world can only read the proofs. The same is true for accounts on websites: the whole world can see your profile while only you can make changes to it.
Proofs are stored inside keypairs as so-called "notations": these can be seen as custom data entries. Typically, proofs are structured as follows:
`proof@metacode.biz=https://platform.com/username`
- *proof* tells us we are looking at a proof.
- *@metacode.biz* tells us this is a specific type of proof, as defined on the [metacode.biz website](https://metacode.biz/openpgp/proofs). This part should NOT be changed when adding a new proof to your key.
- The rest of the proof is simply a URL to the profile page of your account on a website.
It is important to note that not all websites are supported. For now, supporting a single online platform involves quite a bit of manual work. It is also important to note not all platforms can be supported. You can always suggest new platforms to support by [creating an issue here](https://codeberg.org/keyoxide/) or contacting me at [yarmo@keyoxide.org](mailto:yarmo@keyoxide.org).
## How does Keyoxide fit in the Web 3.0? ## How does Keyoxide fit in the Web 3.0?
The one word to associate with the Web 3.0 is **decentralization**. This indirectly refers to the process of separating applications from data. The one word to associate with the Web 3.0 is **decentralization**. This indirectly refers to the process of separating applications from data.
This means that while [Keyoxide](/) (the application) does the verification of your identity, it should not store that identity on its server! The data associated with your identity is stored in a different place where you keep control over it, typically a dedicated key server. We strongly recommend [keys.openpgp.org](https://keys.openpgp.org/) which is the default key server [Keyoxide](/). This means that while Keyoxide (the application) does the verification of your identity, it should not store that identity on its server! The data associated with your identity is stored in a different place where you keep control over it, typically a dedicated key server. We strongly recommend [keys.openpgp.org](https://keys.openpgp.org/) which is the default key server Keyoxide.
## How can I make an account? ## How can I make an account?
You can't and that is the whole point of [Keyoxide](/). Your data and your keys are not stored on our server. Therefore, there is no need to create an account. You simply [create a cryptographic keypair](/getting-started) and upload it to a dedicated key server. [Keyoxide](/) will automatically fetch your key only when needed. You can't and that is the whole point of Keyoxide. Your data and your keys are not stored on our server. Therefore, there is no need to create an account. You simply [create a cryptographic keypair](/getting-started) and upload it to a dedicated key server. Keyoxide will automatically fetch your key only when needed.
## Can I get a sweet profile page? ## Can I get a sweet profile page?
That, we can help you with! Just append the fingerprint of your keypair to the domain like so: [https://${domain}/9f0048ac0b23301e1f77e994909f6bd6f80f485d](/9f0048ac0b23301e1f77e994909f6bd6f80f485d) to generate a profile page. That, we can help you with! Just append the fingerprint of your keypair to the domain like so: [https://${domain}/3637202523e7c1309ab79e99ef2dc5827b445f4b](/3637202523e7c1309ab79e99ef2dc5827b445f4b) to generate a profile page.
## Where is my profile avatar? ## Where is my profile avatar?

View file

@ -1,4 +1,6 @@
Glad you made it here :) Glad you made it here!
If you'd like to know more about how Keyoxide works before getting started, please have a look at the [About Keyoxide](/about) page.
Let's get you started on setting up your online identity and profile page. Let's get you started on setting up your online identity and profile page.

View file

@ -1,11 +1,12 @@
header header
nav nav
.spacer .spacer
a.text(href='/about') About a.text(href='/') Home
a.text(href='/getting-started') Getting started a.text(href='/getting-started') Getting started
a.logo(href='/') a.logo(href='/')
img(src='/static/img/logo_circle.png' alt='Keyoxide') img(src='/static/img/logo_circle.png' alt='Keyoxide')
nav nav
a.text(href='/about') About
a.text(href='/guides') Guides a.text(href='/guides') Guides
a.text(href='/faq') FAQ a.text(href='/faq') FAQ
.spacer .spacer