this post was submitted on 24 Jun 2026
34 points (100.0% liked)

Technology

85670 readers
3794 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 3 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
34
Cloudflare, Chrome, Firefox Developing Next-Gen Privacy Pass: PACTs (www.theregister.com)
submitted 3 hours ago by XLE@piefed.social to c/technology@lemmy.world
7 comments fedilink hide all child comments
top 7 comments
sorted by: hot top controversial new old
[–] tomalley8342@lemmy.world 2 points 27 minutes ago

They've been working on this since last year and still haven't figured out the question of "who will we trust tokens from". You'd think that such a question would have been the focus from the very beginning! Lot of "I hope", "I'd love to", and "wondering if we might be able to" and other such non-committal language regarding the kind of power that is given to token issuers.

[–] mschae@discuss.mschae23.de 18 points 3 hours ago

PACTs will let websites “with strong knowledge of ‘personhood’” issue anonymous tokens that browser users and designated bots can present at other websites, [...]

This sounds like another attempt at what google already tried with “web environment integrity”.

[–] BlackEco@lemmy.blackeco.com 8 points 3 hours ago (1 children)

If I got it straight, users can ask certain websites to vouch for their "personhood" and get a token that proves it. What exactly prevents a human from creating a token and hand it to a bot or crawler? How is it helping websites operators to differenciate legitimate traffic from the rest?

[–] bluGill@fedia.io 3 points 2 hours ago

A human can, but as soon as that is discovered that human is rejected. They have to slowly develop a whole new persona, likely taking years - before they are trusted again.

At least for now when Kids regularly grow up enough to join the internet and so we have to have ways to let new people in. If tokens ever trade to a real verified human it may not be possible to get another. (though I doubt this - governments in some places will issue tokens to bots and real humans and so there is no way to tell without cutting off someone real.)

[–] shortwavesurfer@lemmy.zip 7 points 3 hours ago

Limiting traffic already exists, and it's called proof of work. Try it out.

Tor implemented it in August of 2023 and was an extremely successful integration.

[–] realityisascammer@lemmy.ml 9 points 3 hours ago (1 children)

Here we go again. Obviously they will implement this in the most correct way possible....what could go wrong? /s

[–] XLE@piefed.social 7 points 3 hours ago

This reminds me of when Telegram announced they had reinvented the concept of end-to-end encryption. Something stinks, and I can't put my finger on it because I'm not a cryptography expert.

But I'm not going to be thrilled until somebody I trust is able to validate it one way or the other first.