How Tim Berners-Lee Will Fix the Internet

"Sir Tim Berners-Lee, the British computer scientist who was knighted for inventing the internet navigation system known as the World Wide Web, wants to re-make cyberspace once again," reports Reuters: With a new startup called Inrupt, Berners-Lee aims to fix some of the problems that have handicapped the so-called open web in an age of huge, closed platforms such as Facebook. Building on ideas developed by an open-source software project called Solid, Inrupt promises a web where people can use a single sign-on for any service and personal data is stored in "pods," or personal online data stores, controlled by the user.

"People are fed up with the lack of controls, the silos," said Berners-Lee, co-founder and chief technology officer of Inrupt, in an interview at the Reuters Next conference... John Bruce, a veteran technology executive who is CEO of Inrupt, said the company had signed up Britain's National Health Service, the BBC and the government of Flanders in Belgium as pilot customers, and hoped to announce many more by April...

A key aim for Inrupt is to get software developers to write programs for the platform. Inrupt, like the original web, is at its core mostly a set of protocols for how machines talk to one another, meaning that specific applications bring it to life.

"The use cases are so broad, it's like a do-over for the web," Berners-Lee said.
In a video interview, Berners-Lee tells Reuters that what people are worried about isn't privacy per se but "the lack of empowerment" — for example, to collaborate with people. And then he acknowledges that the worldwide web does suffer from limited access control. "I wanted it to be a collaborative space, but in a way that was naive, because collaborative spaces you need to be private. You need to start off with just a limited sharing, and then you allow the sharing to increase."

Social networks provided some features like a unique login and identity. But unfortunately, then "The large social networks will tend to get larger" — and ultimately without a single global signon, users then become trapped in separate silos.

NO. Please just don't.

[Arthur, KBE]

He's already done enough to fuck it up with his support for DRM and various other political nonsense.

He should take up needlepoint or something that doesn't affect most other people, instead. I think he should shut his mouth and finding something else to do.

Re:NO. Please just don't.

[nsaspook]

If he wants to fix something he can fix a sandwich.

Re:

[yassa2020]

We used to have beautiful things like GTK, MFC, Qt, and the like

[as DJT] They were beautiful, SO beautiful, you wouldn't believe how beautiful they were.

Seriously though, all 3 of those had XML template versions, which is HTML in a nutshell.

Re:

[invictusvoyd]

And then Javascript was made to "Poledance" ..

Re:

[ghmh]

What? Make it yourself.

Re:

[antdude]

He just needs to remember to use sudo command. ;)

Re:NO. Please just don't.

[ShanghaiBill]

Indeed. A single login for everything is a terrible idea. I prefer to keep my online identity segmented.

I like silos. I don't want my boss reprimanding me for my Slashdot posts.

Re:

[cygnusvis]

Your boss knowing you slashdot posts is the whole point.

Thank you Mr. Bernes-Lee

[Anonymous Coward]

For your contribution, but you're not wanted around here anymore.

Re:

[Deep Esophagus]

Have there been any online personal data stores that did not at some point get hacked and leaked? Any at all? If he thinks I'm going to put the keys to my kingdom in the cloud, he's on crack.

Berners-Lee will always have my admiration and respect for his pioneering work, but he doesn't seem to grok how nasty and dangerous the world he created has become.

Re:NO. Please just don't.

[yassa2020]

You can run it from your own computer. Or you can pay a company you trust to house it... whether that be Guaranteed Super Secure Data Corp, or your bank, or Mark Zuckerberg brand we-share-everything-with-the-highest-bidder corp. It's your choice, and you can change your choice at any time. You can make a different choice for different types of data and/or different identities you own. That's the whole point.

Re:

[AmiMoJo]

But what stops data simply being copied? If I give permission to access my name and address to say eBay so I can receive a package, what stops them simply copying it and selling it to others?

I'll tell you one thing that stops it: GDPR. Legal consequences to not obtaining affirmative, opt-in permission. Inrupt, not so much.

Re:

[Demodian]

When my colleague brought this project to my attention, I was hit with the same concern. How can we trust that a so-called secure pod is not going to be hacked/back-doored/etc? We cannot. It looks like there is no single solution to privacy security, especially this project. Too many questions to be answered, and this project falls short on addressing them.

Storage Security: If the data is stored on the cloud or hosted, how can we be sure that the entity doing the actual storage is not going to scrape a

This is just deananomizing

[cygnusvis]

The whole idea will mean everything you say is connected to every platform and not anonymous. Anonymity is the only real privacy

Re:

[KimDotOrg]

Tim can build his own social media site that requires a full ID check in order to participate.

Re:

[Arthur, KBE]

I'm trying to link to something serious about Naz1s, but the "lameness" filter won't let me.

This reminds me of the brain-dead shit from the 90's that parents would put on their teenagers computer that would block the world "breast" or "penis" and similar nonsense, and thus blocking information about cancer, etc.

Slashdot can be VERY Catholic at times.

Re:This is just deananomizing

[lxnt]

It also brings out the best.

Re:

[AlexHilbertRyan]

Life isnt about absolutes its about relative comparisons. Just because you found one good exaple doesnt cancel out the bad of the large minority or majority.

Re:

[nine-times]

I don't know/understand the technical details of how he plans for things to work, but I think there are a couple of different concepts that people conflate:

• Being able to establish and verify an identity online across various services - This would be that if I establish myself as nine-times, I could have a kind of SSO that lets me prove that identity to other websites, so that you could look at nine-times posts on Reddit and Facebook and other places and know that you're talking to the same nine-times.
• The

Spoiler Alert: He Won't

[Dracos]

TBL enabled the current state of the Internet, where tech companies have built data-driven walled gardens, and baited unsuspecting Luddites with trails of poisoned candy. From the mid-2000s, it was clear that "developer interests" mentioned in any Working Group correspondence referred to big tech, not individual workers.

The W3C should have been absorbed into a more stable, formidable, and respect-worthy organization a decade ago, such as IEEE or IETF.

Big Tech has exactly the environment they want, and there's no incentive for them to change any of it.

Users are no longer the consumer, they are the product source. If the Internet was a dairy farm, we are the cows, and the farmers only care about bringing the milk to market.

Re:

[yassa2020]

Each Working Group (and Community Group for that matter) are very different, almost like their own individual standards orgs. It is for this reason that some WG/CG are actually organized better than IETF/IEEE. The WhatWG is what you are criticizing. The SocialCG is actually positioned to update many (but not all) of the standards involved in the Inrupt implementation. SocialCG is IMHO better organized and more accessible than IETF or IEEE. As a matter of fact, IETF and IEEE are both very corporate-centric.

Re: Spoiler Alert: He Won't

[Anonymouse Cowtard]

It seems like he says this every year. I'm too lazy to search.

Re:

[AlexHilbertRyan]

Wrong, you forget to mention that the big internet corps are actively supported by the american gov. WIth your reasoning the american gov is a large part of the problem.

How long?

[yassa2020]

3 years and counting and he's just now getting around to some pilots? I've been working in this space for years entirely self-funded, and if I had startup capital like he does I just can't imagine how he hasn't actually made anything yet. It's mind-boggling.

Re:

[Paul Fernhout]

Yeah, I agree that Tim Berners-Lee seems to have little to show recently for so much resources.

Likewise, I too have worked in this space on and off over the last decade or so, also self-funded and in my spare time. Example: http://twirlip.net/ [twirlip.net]

The video there is from when I was considering doing a kickstarter a decade ago -- but ironically I ended up instead working for years for a major media company (NBCUniversal) as a contractor instead to pay the bills.

I'm hoping in a few more years to be able to "retire

Re:

[green1]

Press releases make more money (through venture capital) than a shipped product that no big tech company will touch with a 10ft pole, and nobody else will even care about.

oh wow

[AlexHilbertRyan]

we better listen he is the CEO of the company..

Re:

[h33t l4x0r]

He's also a literal "white knight".

Data vs. Applications vs. Identity

[aharth]

The goal is to separate data from applications and to provide a decentralised way for authentication. Users can store and manage their data in so-called pods (personal online datastores).

Pods are essentially souped-up HTTP servers (based on Linked Data Platform containers) that allow the management of graph-structured data (RDF) via HTTP. Authentication for accessing and manipulating data is done via WebID, which builds on OpenID and OAuth.

Overall, the technologies (unsurprisingly) fit well into web architecture and are simpler and more developer-friendly than the previous technologies around the Semantic Web. With a focus on running code and practical applications, I see that his effort is gaining traction. I hope he succeeds, it is time to get alternatives to the centralised cloud systems run by big companies.

Best ...

[Retired ICS]

If he wanted to "save the webs" then he would want to ban JavaScript and the execution of arbitrary code in the Web Browser, and ban DRM.

He doesn't want these things. He is part of the problem, not part of the solution.

Re:

[null etc.]

If he wanted to "save the webs" then he would want to ban JavaScript and the execution of arbitrary code in the Web Browser, and ban DRM.

ALL RIGHT, let's jump on the JavaScript hate bandwagon!!!

Do you know who Guy L. Steele is?

Toxic anonymity

[Applehu Akbar]

Deanonymizing users of social media would do a lot to solve the toxicity problem. If Twitter could blue-check every user, it would be a much more tolerable forum of discussion.

Privacy

[markdavis]

>"Inrupt promises a web where people can use a single sign-on for any service and personal data is stored in "pods," or personal online data stores, controlled by the user."

I don't want "single signons" with different systems, tied back to some central place. Unless I can still control which logins I want to use. If something like this becomes popular, governments will move in, trying to mandate ID. And/or big business will force unified logins and force tying it to something like your phone (in the name of 2FA), which reveals identity. This is already happening.

>"Lee tells Reuters that what people are worried about isn't privacy per se but "the lack of empowerment"

I don't care what users THINK they want. *I* want privacy, a key part of security, more than I want convenience. "People" probably want privacy and security also, they just don't realize it or realize it YET. And once they do, it is too late.

Re:

[aharth]

WebID provides a "single signon" but based on a decentralised way of managing user ids.

With WebID it is in principle possible to host your own identity provider (identified via a HTTP URI), which takes care of authentication. So you can control yourself what login to use.

If somebody wants to give you access to a resource, they add your WebID (the HTTP URI) to the access control list of the resource, which takes care of authorisation.

A pity that WebID+TLS, with which you can easily set up WebID via yo

Please rest on your laurels

[Malifescent]

TBL keeps trying to "reinvent" the internet yet keeps failing at it. First there was the Semantic Web which he worked on for more than a decade, then something else and now InRupt. Why doesn't he just rest on his laurels and call it a day? I mean, each successive idea is worse than the previous, so there's no use to keep trying. I've contacted TBL several times to ask him to support HORNET (the High Speed Onion Routing Network; a network similar to the Tor network, but with the speed of the regular intern

Re:

[aharth]

Internet != Web

No

[cascadingstylesheet]

I would like more "silos" please.

Sites that don't interoperate with each other and share my information with each other. Sites that don't require me to log into a different site just to get access. Sites that are truly independent of each other.

Farmers invented silos for a reason, dude! That's my grain, not yours.

been done

[nottooloud]

"You need to start off with just a limited sharing, and then you allow the sharing to increase." Zuckerberg already tried that one. At first, it was limited to your school. Then other schools. Then Mom wanted in.

Sorry Tim, cats out of the bag

[wakeboarder]

To change the internet, you don't just need an technological argument, but an economic one as well. The tech giants aren't going to change and give up thier money. Much of the internet is supported by ad revenue and that's not going to change anytime soon

Re:

[Retired ICS]

The "Internet" is not supported in any way by advertising revenue. Only the "criminal class" is supported by advertising and spying revenue. Unfortunately most of the "Web" is inhabited by the "criminal class" -- and the "Web" is an application which runs on the Internet.

Re: Sorry Tim, cats out of the bag

[sonamchauhan]

Some internet *content* is supported by ad revenue. The internet infrastructure is largely not ad-supported. It is supported by ~2 billion people (give or take a billion) paying ~15 dollars/month (give or take 10 dollars) on average to telcos (including mobile companies and ISPs).

Centralization, Decentralization cycle

[dmahurin]

Most comments here seem to be dismissive without acknowledging the core problem.

Before 1995, at the being of a public internet, power was centralized. CompuServe or AOL. Walled gardens.

But they could not keep up with services offered by the larger forming internet, and eventually just became competing ISP's to give you internet access. The rest became irrelevant.

In 1995, there was no centralized power on the internet.

Protocols were all decentralized for:
- personal web presence.
- chat
- newsgroups
- email

Now

Focusing on the wrong part

[Chelloveck]

You guys are all focusing on the "single sign-on" part, which isn't the important part. There's nothing that would prevent you from creating alternate profiles to keep parts of your life separate if you like. The important part of his plan is that the data associated with a profile is kept in a single location, under your control. Access control is very granular, probably down to the field level. Grant Company A access to your name and email only. Grant company B access to your name, email, street addres

Sounds like more 'cloud'-based shit to me

[Rick Schumann]

No, no, HELL no, not more 'cloud' based nonsense. Keep your own data on your own computer, that's the only way you can ensure it just doesn't go away.

Re:

[Demodian]

Until...

a) Your computer dies (and you don't have an updated backup ready) or gets corrupted,
b) Your computer is hacked/hijacked,
c) Your access to the Internet is compromised/banned,
d) You accidentally delete your pod,
e) You butcher your pod because you are bored and everything in it is a lie,
f) You do not have the experience to properly maintain a computer,
g) You use an operating system that does not give you complete control over your equipment (and will likely shove everything into the cloud in the near

Networks don't work if everyone does their own

[Britz]

This will never take off, if everyone does their own. Berners-Lee should have done his research and just joined an existing project instead of starting his own. Hubzilla, for example.

Brochureware and source-code, no midde-ground?

[Dr.Dubious DDQ]

I [insert profanity here] hate these things.

I seem to often run across projects that sound potentially interesting, but (as it appears in this case) if I want to know what the heck they're really doing there's either a site with a handful of graphics and maybe an incomprehensible diagram or two with some marketing phrases, or a source-code repository. If I wanted to know what a "pod" is and how it works, I have a choice between Inrupt's awful brochureware site where I can watch vague buzzwords zoom in and

Get rid of distributed client-server

[Rexdude]

The web is broken by design thanks to being designed as a bunch of web servers that individuals have to connect to. If he wants to fix the internet and not just the web, we need something like I2P [geti2p.net] to become the norm. In fact why not just use and popularize I2P without any more genius ideas from him?