w3c

Get the week's news on Kubernetes, the cloud native landscape, and the wider world of tech. Co-hosts Eric Gregory and Nick Chase break through the jargon and help you make sense of it all.

This week, Eric has a co-host once again - and its everyone's favorite guest host John Jainschigg! The dynamic duo dive into recent ransomware attacks targeting ESXi servers, the current state of DevSecOps across the industry, new AI search options from both Microsoft & Google, and of course, a whole lot more!

If you interested in learning more about DevSecOps, we invite you to check out Eric's recent blog on the topic here: https://www.mirantis.com/blog/the-state-of-cloud-native-securityand-devsecops

A full list of topics for this week's episode include:

• Mirantis acquires Shipa
• Azure's response to surging cloud costs
• VMware ESXi attacks
• Go 1.20
• Recent security reports
• W3C re-launches as public-interest non-profit
• The AI arms race
• Wasm Labs adds Python support

As mentioned by Eric, this (RCN #49) will be the final episode of Radio Cloud Native (in it's current format).

Please keep the podcast in your feed and keep an eye out for fresh content. Sometime early in this new year, the team at Mirantis is planning to revamp Radio Cloud Native (possibly under a new name, but accessible from this same RSS feed).

Thank you to all of our listeners that kept Radio Cloud Native going over the past two-or-so years. And a special thanks as well as good luck to long-time host Eric Gregory as he pursues future endeavors outside of Mirantis. Stay tuned for more podcasts from Mirantis in 2024!

Michael joined the W3C in June 2006 as a Web Accessibility Specialist. Michael is the Team Contact for the Accessible Platform Architectures Working Group which supports accessibility of W3C technologies, the Accessible Rich Internet Applications Working Group which develops accessibility semantics to support assistive technologies, and Accessibility Guidelines Working Group which develops authoring guidelines and techniques to create accessible content. He supports task forces in these groups to address accessibility for users with cognitive or learning disabilities, low vision, or users of mobile devices; research accessibility issues of upcoming technologies, and explore new technologies. Key specifications include the Web Content Accessibility Guidelines (WCAG), Accessible Rich Internet Applications (WAI-ARIA), and Framework for Accessible Specification of Technologies.

Prior to joining W3C, Michael worked at Watchfire as Accessibility Product Manager, responsible for automated and tool-assisted manual accessibility evaluation software. He focused on supporting harmonized international standards via this software and supported customers to achieve those standards. Previously Michael was the product manager at CAST for Bobby, an early accessibility evaluation tool which was purchased by Watchfire in 2002. At CAST he also worked on technical approaches to providing self-adaptive learning materials for students with disabilities. Before entering the field of Web accessibility, Michael worked in the disability services office at the University of Denver, providing academic accommodations and technical training for students with disabilities.

Michael holds a Master of Education degree from the Harvard University Graduate School of Education and a Bachelor of Arts in Psychology from the University of Denver.

Follow axschat on social media
Twitter:

https://twitter.com/axschat
https://twitter.com/AkwyZ
https://twitter.com/neilmilliken
https://twitter.com/debraruh

LinkedIn
https://www.linkedin.com/in/antoniovieirasantos/
https://www.linkedin.com/company/axschat/

Vimeo
https://vimeo.com/akwyz

In this episode, I’m joined by Roy Smith, CEO and founder of PrivacyCheq, a privacy tech company that develops privacy-enhancing technologies for mobile and web. We discuss the history of online privacy and data protection laws, current challenges within the ad tech space, and GPC, a newly proposed web standard for signaling privacy preferences.

-----------
Thank you to our sponsor, Privado, the developer friendly privacy platform
-----------

A most common myth that Roy sees end-users buying into is that cookie banners are all that a company need  deploy for compliance with modern privacy and data protection laws. Roy breaks down how adtech companies use "the cookie myth" to distort how people perceive what's required for operational compliance. He illustrates the tsunami of global privacy regulations related to adtech and the limitations that exist due to siloed consent data. 

We dive deeper into the W3C's newly proposed Global Privacy Control (GPC) specification and how GPC lets users signal their desired privacy levels just by browsing the web. Roy unpacks why it was developed and what problems it solves on a legal level. He also highlights his concern that implementing GPC will create a false sense of privacy as GPC signals depart from consumer expectations. 

Listen to  our conversation on the benefits and drawbacks of GPC.

-----------
Listen to the episode on Apple Podcasts, Spotify, iHeartRadio, or on your favorite podcast platform.
-----------

Topics Covered:

• How the regulatory framework for privacy and tracking has changed over time 
• The global response to surveillance capitalism
• The challenges and downfalls of the IAB's Transparency & Consent Framework (TCF)
• The problem of “consent fragmentation”
• The W3C’s newly-proposed Global Privacy Control (GPC) specification
• Where Roy sees opportunities for improvement
• The nuances between WC3’s "do-not-sell or share interaction" and "do-not-sell or share preference"
• Roy's point of view regarding web privacy and whether GPC is sufficient for signaling privacy preferences, the benefits to the adtech industry, and potential drawbacks. 

Resources Mentioned:

• Check out the GPC educational website and the proposed W3C technical specification 

Guest Info:

• Follow Roy on LinkedIn
• Follow Roy on Twitter
• Learn more on PrivacyCheq's website

Copyright © 2022 - 2023 Principled LLC. All rights reserved.

Evin McMullen is the CEO of Disco, a toolkit that allows users to own and control their data and digital identity. She’s also an active member of DAO Jones, Boys Club, and one of the OG members of $INK DAO.

If you’re interested in digital identity, verifiable credentials, or decentralized identifiers, this episode is for you and Evin has got you covered. We start by defining digital identity to lay the groundwork for listeners who may be new to the space and we cover Kim Cameron’s 7 Laws of Identity and how blockchain companies can improve user experience by implementing them more consciously. 

Now that we have some context, we hit the ground running and Evin dives deep into off-chain vs. on-chain data storage, off-chain vs. on-chain reputation, Decentralized Identifiers (DIDs), Verifiable Credentials (VCs), and how these technologies can help bring some humanity and understanding to the highly technical world of web3. 

We discuss identity more broadly and Evin shares her analogy between identity and a disco ball. We touch on topics like social capital, reputation, tattoos, identity in DAOs, and discoverability in web3. Evin shares how disco helps users control and own their digital identity with their personalized disco data backpack, and the ways in which disco is exploring monetization. 

🔗 FOLLOW US

Rehash: https://twitter.com/rehashweb3

Diana: https://twitter.com/ddwchen

Evin: https://twitter.com/provenauthority

Disco: https://twitter.com/discoxyz

⌛ TIMESTAMPS

0:00 Intro

5:04 Evin’s background

6:43 Defining digital identity

7:02 Kim Cameron’s 7 Laws of Identity

9:24 How blockchain companies can improve utilizing the 7 Laws of Identity

12:24 Off-chain data storage

14:41 Decentralized Identifiers (DIDs) 

16:03 Verifiable credentials (VCs)

19:40 On-chain vs. off-chain reputation

25:18 The Disco Ball identity analogy 

28:56 Evin’s ERC-721 tattoo

31:33 DAOs and identity

35:35 Disco and VCs

38:01 Social capital and reputation

40:08 Launching Disco

44:16 How Disco makes money

47:54 Discoverability in web3

50:38 Rebranding seed phrases

51:33 I’m not a bot

52:50 Britney Spears 

53:33 The Metaverse

54:13 Follow Evin!

54:36 Shoutouts!

🤝 SPONSORS

Lens Protocol: https://lens.xyz

Avenue: https://avenue.place

Govrn: https://govrn.app

DISCLAIMER: The information in this video is the opinion of the speaker(s) only and is for informational purposes only. You should not construe it as investment advice, tax advice, or legal advice, and it does not represent any entity's opinion but those of the speaker(s). For investment or legal advice, please seek a duly licensed professional.

Get the week's news on Kubernetes, the cloud native landscape, and the wider world of tech. Co-hosts Eric Gregory and Nick Chase break through the jargon and help you make sense of it all.

This week, Eric & Nick walk through some exciting alpha features from the Kubernetes 1.25 release, W3C's bumpy road to a HTTPS transition, whistleblowing at Twitter, a Unix legend still updating core utilities after 45 years and much, much more.

A full list of topics for this week include:

• Alpha features for K8s 1.25
• FreedomFi
• Deno's promise of NPM compatibility & speed
• Astro web framework hits 1.0
• W3C's transition to HTTPS 
• Twitter's ex-CSO whistleblower
• Google Cloud Stops big DDOS attack
• Twilio hack
• Metaverse
• Quantum entanglement from 12KM
• Brian Kernighan adds Unicode support to AWK
• Whack-a-Doodle

As mentioned by Eric, this (RCN #49) will be the final episode of Radio Cloud Native (in it's current format).

Please keep the podcast in your feed and keep an eye out for fresh content. Sometime early in this new year, the team at Mirantis is planning to revamp Radio Cloud Native (possibly under a new name, but accessible from this same RSS feed).

Thank you to all of our listeners that kept Radio Cloud Native going over the past two-or-so years. And a special thanks as well as good luck to long-time host Eric Gregory as he pursues future endeavors outside of Mirantis. Stay tuned for more podcasts from Mirantis in 2024!

Da Sebi immer noch krank im Bett liegt, muss Fabi das Update zu Vite 3.0 übernehmen.

Jojo spricht über die neue Version von WebStorm 2022.2 und die neusten Entwicklungen rund um Jetpack Compose.

Dennis findet eine API ganz toll, aber zu 100% verstehen wir auch noch nicht, wie sie funktioniert. Die Payment Request API, die bereits in allen Browsern umgesetzt ist, soll den Bezahlprozess für Anbieter:innen und Kund:innen deutlich vereinfachen. Wir fragen uns, warum das nicht schon jetzt der Fall ist. Eine Demo gibt es hier.

Wir machen jetzt Sommerpause mit den News und sind Mitte September wieder für euch da – unser DALL-E-Cover zeigt euch dafür unsere Urlaubsstimmung! Außerdem empfiehlt Dennis, mit der GPT-3 AI zu spielen.

Die (übersetzte) Geschichte für Dennis Sohn aus der GPT-3 AI könnt ihr hier lesen:

Es war einmal ein großer, grüner Dinosaurier, der gerne Autorennen fuhr. Sein Lieblingsauto war ein knallroter Ferrari. Der Dinosaurier und der Ferrari fuhren jeden Tag gegeneinander, und der Dinosaurier gewann immer.
Eines Tages forderte der Ferrari den Dinosaurier zu einem Rennen durch die Wüste heraus. Der Dinosaurier willigte ein und sie fuhren los. Der Dinosaurier rannte so schnell er konnte, aber der Ferrari war schneller. Der Ferrari überquerte die Ziellinie als Erster, und der Dinosaurier blieb auf der Strecke.
Der Dinosaurier war so wütend, dass er nie wieder gegen den Ferrari antreten wollte. Aber der Ferrari war fest entschlossen, den Dinosaurier zu schlagen, und forderte ihn zu einem weiteren Rennen heraus. Diesmal ging das Rennen durch den Dschungel.
Der Dinosaurier rannte durch den Dschungel und schlug sich durch die Bäume und Büsche. Der Ferrari war ihm dicht auf den Fersen, aber er konnte ihn einfach nicht einholen. Der Dinosaurier überquerte die Ziellinie wieder als Erster und der Ferrari blieb weit zurück.
Der Ferrari war so wütend, dass er sich seinen Weg durch den Dschungel zurück zum Dinosaurier bahnte. Er forderte den Dinosaurier zu einem letzten Rennen heraus, das auf einen Berg führen sollte.
Der Dinosaurier akzeptierte und sie begannen ein Rennen. Der Ferrari fuhr so schnell er konnte, aber der Dinosaurier war einfach zu schnell. Er erreichte die Spitze des Berges als Erster und der Ferrari blieb weit, weit zurück.
Der Ferrari war so wütend, dass er sich den Berg hinunterstürzte, den ganzen Weg zurück zum Dinosaurier. Er forderte den Dinosaurier zu einem letzten, finalen Rennen heraus.
Diesmal ging das Rennen um die Welt. Der Dinosaurier und der Ferrari lieferten sich ein Rennen durch Wüsten, Dschungel, Berge und Ozeane. Das Rennen dauerte tagelang, und keiner der beiden konnte die Ziellinie als Erster überqueren.
Schließlich erreichten sie beide gleichzeitig das Ziel. Sie waren so müde, dass sie beide zusammenbrachen. Der Dinosaurier stand als erster auf und hob die Arme zum Sieg. Er hatte das Rennen um die Welt gewonnen und war das schnellste Lebewesen der Erde!

Picks of the Day:

• Dennis: GPT-3 Playground – Auf dem Playground von OpenAI kann man mit der Text-KI GPT-3 spielen. Und das ist faszinierend.

Schreibt uns!
Schickt uns eure Themenwünsche und euer Feedback: podcast@programmier.bar

Folgt uns!
Bleibt auf dem Laufenden übe

Your association’s prospective members are of all levels of ability. With the world moving increasingly online, you can expand your membership and grow your association through inclusive web design.

In this podcast, listen to renowned web accessibility expert David Berman. David is the author of the groundbreaking Do Good Design: How Designers Can Change the World, UN Special Advisor on web accessibility and W3C Invited Expert.

From the advice shared by David in this episode, we created a handy Web Accessibility Checklist & Worksheet. Download a copyto get your association started on making your website more accessible. 

01:55
Can you start by telling us a bit about yourself and your work?

03:18
Why is accessibility important to you?

04:30
Often people are not sure if they want to make their site accessible, what are the first steps they should take? Do you have any thoughts on the best practices of accessible web design?

06:25
How would you go about doing a needs analysis of your stakeholders?

08:57
If our audience has an audience that is an older population would you choose to address visual accessibility over other accessibility functionality (eg. hearing impaired), how would you choose to divide your resources

12:18
How can we make it more welcoming to our stakeholders with disabilities to self-identify?

15:22
How do we do accessible design on a limited budget?

17:28
How do we convince developers that accessible design is important?

18:00
Can you think of other reasons that make for powerful arguments to design for accessibility?

21:52
You mentioned that accessible design improved the user experience for all users; do you have examples of this you can share?

23:17
For our audience members who are not familiar, can you please explain what WCAG is?

24:44
From WCAG’s three levels of accessibility, how do you choose between which level of WCAG accessibility do follow on your site?

26:30
Do you have any thoughts on using external accessibility tools or build into the website?

29:40
Would you prefer an external tool to fill the gap, or do you think it's not effective?

32:35
Think of a hypothetical client who has an older website and they don’t have the budget to rebuild their website. Where would you start to improve the site?

35:27
Since a lot of our audience are associations who have member benefits, what advice would you give to association executives to make their member benefits more accessible?

41:36
How can we make a design artistic and also accessible?

47:10
How can we include people with accessibility needs in our development process, and not just the usability testing?

53:27
What are some concrete steps we can take to meet accessibility standards today?

55:05
What are some examples of popular websites that are most accessible?

58:51
What if you have to implement accessibility features that don't quite comply with W. 3 C. guidelines?

01:02:20
What would be your key takeaways for our audience today?

01:03:55
Can you share a personal habit that has contributed to your success?

01:05:03
Can you share a tool or strategy that helps you with your work?

01:07:00
How can people reach you?

David's practical inclusive web design suggestions have been summarized in this handy Web Accessibility Checklist & Worksheet. Download a copyto get your association started on making your website more accessible. 

Special acknowledgement to our guests for providing powerful insights into membership management. 

Follow our podcast for more free educational content.

Visit memberlounge.app to learn more about us.

Contact anika@grype.ca for questions or support.

Putting the evils back in Pandora’s box just doesn’t seem possible - much like reclaiming privacy in today’s datacentric world. This week, Paul Breitbarth and K Royal hosted Rob Shavell, CEO and founder of Abine (rhymes with hey mine) to discuss consumer privacy controls related to online privacy. Just over a decade ago, the World Wide Web consortium (W3C) started the development of a Do Not Track (DNT) standard, that would limit the way in which people could be tracked between websites. In 2018, the project stopped, because it simply did not gain traction. Now, DNT is back in the form of Global Privacy Control (GPC): a new technical standard to help companies meet the CCPA Do Not Sell requirement and similar requirements around the world. GPC is supported by quite a few companies, such as Mozilla, Brave, the Electronic Frontier Foundation, and the NY Times. 

Join us as we speak on a variety of topics from the complexities of managing privacy online to the consequences that may arise through enforcement. Rob touches on concepts such as ferociously imperfect laws and controls as well as informed consequential debate. Through these open conversations with privacy professionals and activists, the discussion is unfettered and thus, brings up many elements, such as meetings in Brussels, AI, and being zealous about privacy.

Resources

• The newly announced Global Privacy Control standard. Abine is an early collaborator on the standard, which is like a next-generation "Do Not Track" 
• Rob’s Op-Ed for Help Net Security discussing the CPRA and why it may be more employer-friendly (re: employee data regulation) than widely reported.
• Privacy as an Employee Benefit - why more companies are investing in employee privacy as a value-add benefit, plus how investing in a culture of privacy can reduce cybersecurity risk.
• FD (€): https://fd.nl/ondernemen/1359994/een-muisklik-en-alle-cookies-staan-voor-altijd-uit 
• Global Privacy Control on Github: https://globalprivacycontrol.github.io/gpc-spec/ 

Social Media
Twitter: @privacypodcast, @EuroPau

If you have comments or questions, find us on LinkedIn, Twitter/Mastodon @podcastprivacy @euroPaulB @heartofprivacy and email podcast@seriousprivacy.eu. Rate and Review us!

Proudly sponsored by TrustArc. Learn more about the TRUSTe Data Privacy Framework verification. upcoming webinars.

#heartofprivacy #europaulb #seriousprivacy #privacy #dataprotection #cybersecuritylaw #CPO #DPO #CISO

One of the Web’s greatest strengths is its generality—its openness to new links and unexpected uses. Openness also means that different applications and users have different security goals and threat models: a mash-up that’s desired by one may be dangerous to another. As stewards of the Open Web Platform, W3C aims to accommodate these different needs through modular components, including work on user security and authentication, cooperative policy enforcement, and platform-level reviews. W3C’s Wendy Seltzer explores design patterns and modularity to support a platform for trustworthy application development. We'll discuss what’s already been done, what’s in progress, and where we’re looking next to support an environment for trustworthy application development. We will also talk about broader patterns. While we can’t guarantee the security of “the Web” as an application platform, we can make it easier for authors to write secure web apps and for users to distinguish those they trust. Can we take the hard-earned lessons of web security to other emerging environments, such as the burgeoning universe of connected things and cars? Can we get both security and space for innovation? Wendy Seltzer is policy counsel to the World Wide Web Consortium (W3C) at MIT, where she leads the Technology & Society Domain’s focus on privacy, security, web payments, and social web standards. Wendy researches openness in intellectual property, innovation, privacy, and free expression online. As a fellow with Harvard’s Berkman Center for Internet & Society, Wendy founded the Lumen Project (formerly Chilling Effects Clearinghouse), helping bring transparency to online content removal requests. She serves on the board of directors of the Tor Project, which promotes privacy and anonymity research, education, and technology. Wendy seeks to improve technology policy in support of user-driven innovation and communication.

One of the Web’s greatest strengths is its generality—its openness to new links and unexpected uses. Openness also means that different applications and users have different security goals and threat models: a mash-up that’s desired by one may be dangerous to another. As stewards of the Open Web Platform, W3C aims to accommodate these different needs through modular components, including work on user security and authentication, cooperative policy enforcement, and platform-level reviews. W3C’s Wendy Seltzer explores design patterns and modularity to support a platform for trustworthy application development. We'll discuss what’s already been done, what’s in progress, and where we’re looking next to support an environment for trustworthy application development. We will also talk about broader patterns. While we can’t guarantee the security of “the Web” as an application platform, we can make it easier for authors to write secure web apps and for users to distinguish those they trust. Can we take the hard-earned lessons of web security to other emerging environments, such as the burgeoning universe of connected things and cars? Can we get both security and space for innovation? Wendy Seltzer is policy counsel to the World Wide Web Consortium (W3C) at MIT, where she leads the Technology & Society Domain’s focus on privacy, security, web payments, and social web standards. Wendy researches openness in intellectual property, innovation, privacy, and free expression online. As a fellow with Harvard’s Berkman Center for Internet & Society, Wendy founded the Lumen Project (formerly Chilling Effects Clearinghouse), helping bring transparency to online content removal requests. She serves on the board of directors of the Tor Project, which promotes privacy and anonymity research, education, and technology. Wendy seeks to improve technology policy in support of user-driven innovation and communication.

One of the Web’s greatest strengths is its generality—its openness to new links and unexpected uses. Openness also means that different applications and users have different security goals and threat models: a mash-up that’s desired by one may be dangerous to another. As stewards of the Open Web Platform, W3C aims to accommodate these different needs through modular components, including work on user security and authentication, cooperative policy enforcement, and platform-level reviews. W3C’s Wendy Seltzer explores design patterns and modularity to support a platform for trustworthy application development. We'll discuss what’s already been done, what’s in progress, and where we’re looking next to support an environment for trustworthy application development. We will also talk about broader patterns. While we can’t guarantee the security of “the Web” as an application platform, we can make it easier for authors to write secure web apps and for users to distinguish those they trust. Can we take the hard-earned lessons of web security to other emerging environments, such as the burgeoning universe of connected things and cars? Can we get both security and space for innovation? Wendy Seltzer is policy counsel to the World Wide Web Consortium (W3C) at MIT, where she leads the Technology & Society Domain’s focus on privacy, security, web payments, and social web standards. Wendy researches openness in intellectual property, innovation, privacy, and free expression online. As a fellow with Harvard’s Berkman Center for Internet & Society, Wendy founded the Lumen Project (formerly Chilling Effects Clearinghouse), helping bring transparency to online content removal requests. She serves on the board of directors of the Tor Project, which promotes privacy and anonymity research, education, and technology. Wendy seeks to improve technology policy in support of user-driven innovation and communication.