Profile picture
, 8 tweets, 2 min read
For the #web #developers out there. Imagine this. The first packet a client sends to a service is encrypted already with an AEAD algo. With this single packet the user is able to establish a real time bidirectional socket to the server.
During the handshake process the server automatically logs the user in using their identity certificate which holds their public key. The certificate is signed and verifiably authentic.
A username and password was never sent. Next to no login middleware is required to do your typical user authentication procedure. Avoiding potentially a good amount of typical security protocols.
Avoid spending a pretty penny on hardware designed to store hashed psws. Avoid hashing algorithm logic and instead rely on raw cryptography embedded in the protocol.
Imagine not having a client app send cookies that you use to constantly re-authenticate each time the user makes a request to the app. Instead you have a persistent authenticated socket connection with requests over time.
Checking if a user is logged in can be as easy as a Boolean. This is exceptionally useful for systems designed so that login isn’t automatic (when resources count) and you would rather save the small login logic after a user clicks a button.
The same goes for signup. Imagine if your service could instantly identify and signup users. Yet the true identity of the user still sits behind strong cryptography.
Imagine if you could also bill users using the same info found in that first encrypted packet. A lot of power in just a single UDP packet.
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Thomas DeMarchi

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

Related hashtags

#web #developers

More from @tommarchi see all

Profile picture
Thomas DeMarchi
@tommarchi
A Story from the future. I look to my dock and see the UW Browser bouncing to call my attention. I click and see that over the Viat wallet icon on the top right side of the browser there’s a 1 indicating unread wallet activity.
I read the most recent one. It’s from @MattKarasiewicz paying me back for getting him a coffee the other day (I don’t drink coffee). I can see that he paid a little extra to use some of the centralized services to guarantee instant delivery and he sent it a few hrs ago.
I look under and see that my @netflix & #DcUniverse subscriptions were recently billed. Which I’ll be renewing as I rather enjoyed the new season of Titans. I see that they used again centralized services to get instant billing which I had initially agreed to.
Read 14 tweets
Profile picture
Thomas DeMarchi
@tommarchi
“Will current hardware be compatible.
Yes. No new hardware would be needed to support the Universal Web. All existing hardware works perfectly fine.
“How do people gain access to the new web”
Simply support it via a module/library like we do now with HTTP and quick. UDP is already supported. We are providing a browser with built-in support via electron which is chrome + Nodejs. This is why we have a client module.
“Does this put companies like Cisco our of business”
Nope. It would open them up to new markets and new unique technology offerings. Same situation with HTTP3.
Read 7 tweets
Profile picture
Thomas DeMarchi
@tommarchi
Technically any Universal Web server can run on any port and won’t be an issue for the client. Due to the client getting the certificate from the DIS which specifies port.
A client could request a hostname and the DIS would respond with a default certificate for that specific hostname. Meaning a port isn’t a required property for the request object sent to the DIS.
The Domain Information Service is designed to be smart, lean, flexible, and robust. There is so much power in DNS as a service that would fix a plethora of issues on the web.
Read 8 tweets

Related threads

Profile picture
Chris Achard
@chrisachard
🔥 Intro to regex for web developers 👇
1/10

Regular expressions find parts of a string that match a pattern

In JS they're created in between forward slashes //, or with `new RegExp()`

and then used in methods like `match`, `test`, or `replace`

You can define the regex beforehand or directly when calling the method
2/10

Match individual characters one at a time,

or put multiple characters in square brackets [] to capture any that match

Capture a range of characters with a hyphen -
Read 12 tweets
Profile picture
Stu Cvrk
@STUinSD
Thread: On Military and Security Developments Involving the People’s Republic of China 2019, Part VI

1. The US Congress requires the Executive Branch to produce an annual report on Chinese military and security developments.
2. The purpose of this thread series is to summarize key elements of the official document produced this year by the Trump Administration.
3. So far in the series we have discussed the paramount objectives of Chinese Communist Party (CCP) strategic policies, top-level Chinese national security objectives, a summary of Chinese internal security, Chinese military strategy, ….
Read 60 tweets
Profile picture
CtrlSec
@CtrlSec
📊#Time for monthly #stats

Good news! #ISIS activity on @Twitter decreased again in June: 7 195 new 🎯That's 12% less compared to May.
Again, 88% of these accounts were hacked: old, inactive, weakly protected.
They could easily be frozen in bulk. 😐

Thanks everyone!
#opiceisis
📊Time for monthly #stats

In average, we found 240 new #ISIS accounts per day in #June2019 (May: 263). Always the same guys, coming back again and again, spreading mostly the same propaganda month after month.
A bunch of losers...

#opiceisis
📊Time for monthly #stats

Less good news now. With 6 903 suspensions for 7 195🎯, the outcome (96%) slightly dropped again, by 1%.
@TwitterSupport provided a lower service this month for #ISIS accounts removals, both in terms of quantity...

#opiceisis
Read 6 tweets
Profile picture
Alan Cooper
@MrAlanCooper
A fundamental truth about any good white collar worker--manager or practitioner--is that they know how to react to different situations that arise on a daily basis, adapting and adjusting their behavior to suit. 1
That is, business process is a framework for the use of appropriate tools and techniques in situationally-appropriate amounts. It’s all very personal and emergent, within the clearly stated goals of the enterprise. 2
Everyone who works in an office knows this. It’s obvious to anyone with any experience at all. 3
Read 24 tweets
Profile picture
Sibel Edmonds
@sibeledmonds
#Khashoggi Case Thread: I am going to ‘pin’ this post to use it as an ‘Info Thread’ on the #Khashoggi Case. I am in #Turkey. I’ve been following the case closely and with access to sources & experts here. This is a very ‘sensitive’ criminal case due to ‘Diplomatic Booby Traps’!!!
The Evidence Obtained Outside Cameras will not show any evidence of ‘tempering’ but other than license plates of dozens of diplomatic cars (Many with tinted windows-large trunks) with related time stamp, drivers Info, model/year: Nothing.
#Turkish Intel-Investigative Bodies also have the list of all Diplomatic & Private Saudi & “other significant’ Planes in #Turkey for the period of ‘interest.’ Many of the Target airports have their own security cameras & related evidence.
Read 335 tweets

Trending hashtags

#İnsanhakları #OIC #USARendition #ShellCompanies #MiddleEast #khasoggi #dial #client #Italy #BinLaden #tweetstorm #Turkish #USA #Russia #Media #Iraq #BM #Saudi #NgLapSeng #InternationalFugitive #Gulen #MIC #AEI #lawyer #Fiancé
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!