Does anyone else see what I see? This is supposedly the latest and greatest by the Cloud Signature Consortium, but I see a major problem is they are still combining signatures with web of trust and this combining is a single point of failure.
As I mentioned in my earlier posts, the #nostr protocol has successfully separated signing from trust, so you alone can decide. But the traditional approaches by PKI and these consortia, is they decide, or you need to abide by their terms so a signature can be ‘trusted’.
I won’t say that the traditional approach is ‘wrong’ but it does give undue influence to the party who is responsible for combing trust and signatures, especially when it is backed by government.
In contrast, #nostr lets everyone build, honour their own web of trust because signatures are a starting point of the protocol, not something added in later.