Solid

Re-decentralizing the Web

The Web today - a silo world

Multiple silos...

Problems

Liability when data is leaked

Different APIs everywhere

No interoperability

Zero control over data

Lack of cross-domain identity

(identity is tightly coupled with each application)

Solid approach

Principles

Standard API

Interoperability!

Control over data

Self-managed and cross-domain online identity

What is different?

Apps no longer "run" on dedicated servers

Apps no longer require authentication

Generic, standards-based API for managing data using REST principles

No application logic in the server!

Architecture goals:

Modular design - decouple everything

Build generic platforms & tools

Reuse data between applications

Deliver open Web standards!

How does it work?

Load the application

https://app.com

Multiple data sources

My cloud

My work server

My home

App fetches data from individual sources

https://app.com

https://user.me

App providers don't see the data

https://app.com

https://user.me

Everything revolves around URIs

 

(especially for identity)

Solid offers decentralized:

Identity (self-sovereign)

Authentication

Access control

Generic (and RESTful) data API

What do we stand to gain?

Control over what data we share

Source: https://www.flickr.com/photos/fhashemi/97033289

Source:  https://moz.com

Reuse our social graph

Better

Governance & Democracy

New business models

HTTP 402

But also...new challanges arise

Identity portability

Data licensing (reversed ToS)

Data flow audit

</Presentation>

https://solid.mit.edu/

Made with Slides.com