Is it wrong to want :my-hero: to buy Gmail now?
Everybody on hexbear is going all "literally 1984" in the comments over this, but according to the article this is more intended for brands to use logos in gmail and help distinguish real Chuck E. Cheese account suspension emails from impersonators.
It's not that I think this is 1984, but more that with conditions as they are, this can only progress in a 1984 direction
The extent of my personal take is, "... Huh."
My wish for :my-hero: to buy Gmail is solely for entertainment
I can already tell that certain jobs and websites are going to require 'verified' Google accounts to use their services. Going to be forced to share my verified data with Google... who will then sell it to whichever police or government or organisation wants it.
:doubt:
Especially since the article only mentions companies verifying.
I'm pretty sure Google/YouTube have certain services locked off unless you verify yourself by sending a passport photo and a selfie. I seem to remember having to fill these out before.
I'm not sure what there is to doubt about this. You doubt that a megacorporation known for data harvesting would coerce people into handing their data over?
You doubt that a company would incorporate itself into computer infrastructure so deeply that you'd be almost forced to use their software unless you've got a bit of tech savviness about you? (Windows)
Sure at some point in the hypothetical future maybe every Google account will require ID but that's not happening today. I remember years ago I had to send facebook my ID to unlock my account cause i used a fake name(just to try and hide from anyone searching for me). But i only had to show certain parts of the ID and they really didn't matter in terms of OMG MY DATA. It was that or lose the account which i didnt have shit saved or backed up. They didnt learn anything new about me that wasn't public. Google requiring ID for billions of accounts? Probably not. Most of the data about us is just to try and sell us shit, which can be defeated by not buying shit.
respectfully this has nothing to do with having a google account. i hate google but this is just a layer of user-friendly sheen on top of existing email authentication standards like DMARC
This is what SPF, DKIM, and DMARC already do with DNS records to verify the identity of the email sender. There's no need for this except for more surveillance.
99.9% of the planet doesnt know what youre talking about. How is this different than how Twitter checkmarks used to work?
SPF is basically a record of email servers/IP addresses that the domain authorizes to send emails. So you can't send a fake email from @hexbear.net from another IP address.
DKIM is a digital signature for outgoing emails, the public key is available on their DNS records so recipients can verify the key (signed with the sender's private key) in the email header of the message they received.
DMARC is a policy that allows or quarantines emails received based on if they fail SPF or DKIM checks. These can be adjusted to allow emails through that aren't signed via DKIM.
Edit: Current email clients use icons similar to web browsers for this. Secure/insecure lock icons.
I don't know how this would be different from Twitter checkmarks. This isn't necessary at all, since we can already verify an email from corporation.com was sent and signed by their email servers using open standards.
i should have said "How is Google checkmarks different than how Twitter checkmarks used to work?"
sorry. I'm in IT so I know what that stuff is. We get DMARC fails alllllll the time at my job.
It looks like it's something you have to register for, unlike the old Twitter checkmarks. As I look into it, the level of detail is quickly overwhelming my level of interest, but my impression from a skim of this Google blog post about Gmail's implementation of the 'BIMI' standard which is being expanded to now show checkmarks is that Google's BIMI implementation lets businesses register with them so that their DMARC authentication is integrated into Gmail's UI
They might require Google Verified companies to have passed a certain level of security audit, or have baseline security measures, to receive a checkmark.
Or route their emails through Google's servers or store a copy of their DNS/SPF records on Google infrastructure.
they can value-add to all that as long as your mail stays within the google empire
embrace, extend, extinguish
from looking at the FAQs for this technlogy all this is is another DNS record that points to an image URL. no surveillance at all
Unironically a good idea, should help curb phishing scams, a bit
what about those of us who got on the gmail train when you still needed an invite huh? I was there when Google Chat was invented. I suffered through Circles. Spaces? Status indicators? Future dreams of the year 3000. Kids these days... :grillman:
