As a hacker and engineer I've been interested in identity and privacy since the dawn of the Internet and the online services it's enabled. For the past year I've been helping to build and open source The @ Platform, which inverts the usual model by giving everybody (and every thing) their own place to store data and control who (and what) has access to it. This talk will give an overview of the platform and its underlying protocol, and illustrate how it can be used to build privacy preserving apps and Internet connected things. It will also cover how the platform can be self hosted on devices like the Raspberry Pi, and how people can get involved in the open source community growing around it.
10. Flipping the model
10
Your work apps
Your travel apps
Your social apps
Your shopping apps
Your banking apps
You
YOUR
DATA
● Apps don’t own data
- people own data
● You don’t log into apps
- apps log into you
● No more
○ duplicate data
○ out of date data
○ surveillance
○ usernames
○ passwords
11. 11
The @platform - a change in architecture
● Everyone/everything has a unique
@sign
● All apps are peer-to-peer
● Microservers can be hosted anywhere
● Everything is open source
● Everything is end-to-end encrypted
@tina_she @colin
Only the namespace is centralized - much like DNS
A simple open source platform and protocol - no blockchain necessary!
17. ● No passwords
● No VPN/firewall
● Outbound only
● Only one open port
● No administration
● Device generates its
own keys
● Device to application
encryption
@sign @sign
@microservice
Today’s IoT Architecture
IoT flipped with the @platform
18. The @platform in action
@tina_she
@doctor
@personaltrainer
@monitor A complete development
platform that
● Protects devices
● Protects data
● Routes data
Data has both routing and
attributes
● Time to live
● Time to borne/die
● Revoke
All data
Heart rate/
oxygen
activity
data
Heart rate/
oxygen
glucose
data
27. How do we make money?
Now
● Sell custom @signs
● Host microservers (secondaries)
Future
● Offers not ads - monetizing the base with true
permission-based sales
● Advanced tools/tech
28. Who else is doing this?
● Solid (the Tim Berners-Lee thing)
○ Personal Online Data Store (PODS)
● Mydex
○ Personal Data Store
● Lots of Blockchain based attempts