[GNAP] Human rights perspective on W3C and IETF protocol interaction

Adrian Gropper <agropper@healthurl.com> Wed, 05 January 2022 02:02 UTC

Return-Path: <agropper@gmail.com>
X-Original-To: txauth@ietfa.amsl.com
Delivered-To: txauth@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id C5EC53A22E7 for <txauth@ietfa.amsl.com>; Tue, 4 Jan 2022 18:02:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.292
X-Spam-Status: No, score=-1.292 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.25, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001, HTML_OBFUSCATE_10_20=0.093, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_FREEMAIL_DOC_PDF=0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id hlaJCllVXkkX for <txauth@ietfa.amsl.com>; Tue, 4 Jan 2022 18:02:41 -0800 (PST)
Received: from mail-qt1-f169.google.com (mail-qt1-f169.google.com []) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6D8723A1398 for <txauth@ietf.org>; Tue, 4 Jan 2022 18:02:40 -0800 (PST)
Received: by mail-qt1-f169.google.com with SMTP id l17so36020907qtk.7 for <txauth@ietf.org>; Tue, 04 Jan 2022 18:02:40 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=p1+TlBN7zDQj6dHzWmBqbF0n6+UNjL3kheiaAz9ZlHc=; b=Opepdlwut0KO2SrW5wFvNOJKIhYnPtI+/JA4fwrrGFK9APvpvtdnfS/wAcD1KFNKgJ 8BYeWU4tADlLdySsmk0BbYHnljGlonjSCyImgXl1z4urBdDWuDOxgngoo98KhVL26zyc V8YeFZW0St7AmQUXWfZBRdWDrHGal2zG/zx+j2f3KEvY69ZvrJavUl9MjyLfXnJfvMJj iSn6k1+93KoE7z38dEVVOxq6WON8IYYm/+I0znEun7TQh4XZ/9D+X+P2v0pX/QEyAiFM boeQVnyxkkR6d82F8RiyT6/WB42soIRZjAy01O8L0uPlpEx85p03FbdTbQKpYxjsiKSV doqw==
X-Gm-Message-State: AOAM5310Lqn1xgSk9dfSHIgQD8dV4B+TwKkuFJg7uTx7MhI2LEkHIZhz Bpbsb6b0Lp7P0NfkU+S6LK1vyaj47Rqn8Z9bPKegywCRZgYcbA==
X-Google-Smtp-Source: ABdhPJzBrmuwRGtHx96GaQgvZSL5si7A5n8Cj4o+Y6vC2uiuAsP1OBciKKfYdh1VN3KlxHlv4E6q1WUIXXD3cqEh8uU=
X-Received: by 2002:a05:622a:15c6:: with SMTP id d6mr46700909qty.388.1641348158539; Tue, 04 Jan 2022 18:02:38 -0800 (PST)
MIME-Version: 1.0
From: Adrian Gropper <agropper@healthurl.com>
Date: Tue, 04 Jan 2022 21:02:25 -0500
Message-ID: <CANYRo8i=H3p23boH4OQ6sCXds8ADqaizwDHebE6-xMP2mZ5QEg@mail.gmail.com>
To: GNAP Mailing List <txauth@ietf.org>, W3C Credentials Community Group <public-credentials@w3.org>
Content-Type: multipart/mixed; boundary="000000000000f17ef005d4cc258b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/txauth/qQAu22EsZ17aupvQoWpQ2NwgiuI>
Subject: [GNAP] Human rights perspective on W3C and IETF protocol interaction
X-BeenThere: txauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: GNAP <txauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/txauth>, <mailto:txauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/txauth/>
List-Post: <mailto:txauth@ietf.org>
List-Help: <mailto:txauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/txauth>, <mailto:txauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Jan 2022 02:02:50 -0000

This is a new thread for a new year to inspire deeper cooperation between
W3C and IETF. This is relevant to our formal objection issues in W3C DID as
well as the harmonization of IETF SECEVENT DIDs and GNAP with ongoing
protocol work in W3C and DIF.

The Ford Foundation paper attached provides the references. However, this
thread should not be about governance philosophy but rather a focus on
human rights as a design principle as we all work on protocols that will
drive adoption of W3C VCs and DIDs at Internet scale.

https://redecentralize.org/redigest/2021/08/ says:

*Human rights are not a bug*
> Decisions made by engineers in internet standards bodies (such as IETF
> <https://www.ietf.org/> and W3C <https://www.w3.org/>) have a large
> influence on internet technology, which in turn influences people’s lives —
> people whose needs may or may not have been taken into account. In the
> report Human Rights Are Not a Bug
> <https://www.fordfoundation.org/work/learning/research-reports/human-rights-are-not-a-bug-upgrading-governance-for-an-equitable-internet/>
>  (see also its launch event
> <https://www.youtube.com/embed/qyYETzXJqmc?rel=0&iv_load_policy=3&modestbranding=1&autoplay=1>),
> Niels ten Oever asks *“how internet governance processes could be updated
> to deeply embed the public interest in governance decisions and in
> decision-making culture”*.
> “Internet governance organizations maintain a distinct governance
> philosophy: to be consensus-driven and resistant to centralized
> institutional authority over the internet. But these fundamental values
> have limitations that leave the public interest dangerously neglected in
> governance processes. In this consensus culture, the lack of institutional
> authority grants disproportionate power to the dominant corporate
> participants. While the governance bodies are open to non-industry members,
> they are essentially forums for voluntary industry self-regulation. Voices
> advocating for the public interest are at best limited and at worst absent.”
> The report describes how standards bodies, IETF in particular, focus
> narrowly on facilitating interconnection between systems, so that *“many
> rights-related topics such as privacy, free expression or exclusion are
> deemed “too political””*; this came hand in hand with the culture of
> techno-optimism:
> “There was a deeply entrenched assumption that the internet is an engine
> for good—that interconnection and rough consensus naturally promote
> democratization and that the open, distributed design of the network can by
> itself limit the concentration of power into oligopolies.
> This has not proved to be the case.”
> To improve internet governance, the report recommends involving all
> stakeholders in decision procedures, and adopting human rights impact
> assessments (a section on *human rights considerations* should become as
> normal as one on *security considerations*).
> The report only briefly touches what seems an important point: that
> existing governance bodies may become altogether irrelevant as both tech
> giants and governments move on without them:
> “Transnational corporations and governments have the power to drive
> internet infrastructure without the existing governance bodies, through new
> technologies that set de facto standards and laws that govern “at” the
> internet not “with” it.”
> How much would having more diverse stakeholders around the table help,
> when ultimately Google decides whether and how a standard will be
> implemented, or founds a ‘more effective’ standardisation body instead?

Our work over the next few months is unbelievably important,

- Adrian