Thanks for the thoughtful reply. I think this is a good start and the question still remains as to how usable it will be.
We’ve seen this issue on mobile where users give access to certain capabilities on their phone and then are surprised at how apps use them (camera, mic, location, etc).
The challenge is how to describe these things in the way that the average user can understand and trust.
ACLs, capabilities, etc are generally easy for developers to consume but much harder for the average person to understand.
My main thought is that there will need to be some standardization of data and how it is consumed for this to take off. If a consumer is providing access to their location data in 15 different ways for 15 different apps, how are they even suppposed to keep track and understand that?
Standardization of ACLs/access has become standard on mobile and the permissions are very coarse so they aren’t overwhelming but it often leads to unwanted results. I’ve yet to see someone implement ACLs in a way that is easily consumable by the average user.
As noted, I’d love to see that happen. It’s a tough problem to solve but one that would benefit all users.
We’ve seen this issue on mobile where users give access to certain capabilities on their phone and then are surprised at how apps use them (camera, mic, location, etc).
The challenge is how to describe these things in the way that the average user can understand and trust.
ACLs, capabilities, etc are generally easy for developers to consume but much harder for the average person to understand.
My main thought is that there will need to be some standardization of data and how it is consumed for this to take off. If a consumer is providing access to their location data in 15 different ways for 15 different apps, how are they even suppposed to keep track and understand that?
Standardization of ACLs/access has become standard on mobile and the permissions are very coarse so they aren’t overwhelming but it often leads to unwanted results. I’ve yet to see someone implement ACLs in a way that is easily consumable by the average user.
As noted, I’d love to see that happen. It’s a tough problem to solve but one that would benefit all users.