Content Credentials

List overview All Threads
Download

newer

older

Tech News 2024, week 48

Data annotation services

Bernhard Krabina, KM-A

22 Nov 2024 22 Nov '24

5:06 p.m.

Hi,

are there any plans or initiatives to support Content Credentials in MediaWiki? https://contentcredentials.org/ https://opensource.contentauthenticity.org/docs/getting-started/

Have just learned about this myself, so I don't have any more background information.

Best, Bernhard

Attachments:

attachment.html (text/html — 2.3 KB)

Show replies by date

bawolff

22 Nov 22 Nov

9:25 p.m.

Personally i don't think it makes very much sense for mediawiki to create content credentials

Essentially they are just some metadata signed with a public key. The idea is that the owner of the public key is responsible for verifying everything is true. But we allow randoms to upload files so i don't think it makes sense for us to sign these things.

Unless you just mean support for displaying them (and validating existing sigs). That could certainly make sense, although im not aware of any plans right now.

- Bawolff

On Fri, Nov 22, 2024 at 1:07 AM Bernhard Krabina, KM-A < bernhard.krabina@km-a.net> wrote:

...

Hi,

are there any plans or initiatives to support Content Credentials in MediaWiki?

https://contentcredentials.org/

https://opensource.contentauthenticity.org/docs/getting-started/

Have just learned about this myself, so I don’t have any more background information.

Best,

Bernhard _______________________________________________ Wikitech-l mailing list -- wikitech-l@lists.wikimedia.org To unsubscribe send an email to wikitech-l-leave@lists.wikimedia.org https://lists.wikimedia.org/postorius/lists/wikitech-l.lists.wikimedia.org/

레비 (revi)

9:59 p.m.

On 2024-11-22 (Fri) 22:25:58+09:00, bawolff bawolff+wn@gmail.com wrote:

...

Essentially they are just some metadata signed with a public key. The idea is that the owner of the public key is responsible for verifying everything is true. But we allow randoms to upload files so i don't think it makes sense for us to sign these things.

Or even more so given that you have to pay a bunch of money to CAs. (because LE doesn't issue certs required for this stuff — S/MIME or 'Document Signing' certificates)

In theory WMF has the resource to buy the certificate, but IMO that would be a gross waste of donor money. (Or if they demand each user purchase the certificate, that might quickly go useless for our use case. I didn't read the docs beyond the 'you need to purchase' part.)

-- ---- revi | 레비 (IPA: lɛbi) - https://revi.xyz - he/him https://revi.xyz/pronoun-is/ - What time is it in my timezone? https://issuetracker.revi.xyz/u/time - OpenPGP https://revi.xyz/pgp/ - In this Korean name https://en.wikipedia.org/wiki/Korean_name, the family name is Hong https://en.wikipedia.org/wiki/Hong_(Korean_surname), which makes my name HONG Yongmin. - My texts (excluding quotes marked with `>`) to public mailing lists are licensed under CC BY ND 2.0 KR https://creativecommons.org/licenses/by-nd/2.0/kr/. - I reply when my time permits. Don't feel pressured to reply ASAP; take your time and respond at your schedule.

Age (days ago)

Last active (days ago)

wikitech-l@lists.wikimedia.org

2 comments

3 participants

tags (0)

participants (3)

bawolff
Bernhard Krabina, KM-A
레비 (revi)