How Decentralized Is Bluesky Really? https://dustycloud.org/blog/how-decentralized-is-bluesky/
A technical deep-dive, since people have been asking me for my thoughts. I'll expand a bit on some of the key points here in a thread. 🧵
Conversation
Notices
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 01:20:53 JST 
Christine Lemmer-Webber
- anban likes this.
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 01:41:20 JST
Christine Lemmer-Webber
I participated a bit in the process of when Bluesky was Jack Dorsey and Parag Agrawal's personal project. I also believe Jack and Parag were sincere about Bluesky as a decentralized social network protocol that Twitter would adopt, which is the directive that Bluesky was given as an organization.
When Jay Graber was awarded the position to lead Bluesky, I was not surprised. To me, Jay was the obvious choice to deliver what Bluesky was being directed, and I do think Jay is an excellent leader
Stefano Zacchiroli and Life is Tetris repeated this. -
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 01:41:21 JST
Christine Lemmer-Webber
On the fediverse we also see a lot of accusations of Bluesky being owned by Jack Dorsey, and this isn't true. My understanding is that Jay performed an impressive amount of negotiation to allow Bluesky to receive funding independently.
These days Jack Dorsey is instead focusing on Nostr, which I can only describe as "a sequel to Secure Scuttlebutt with extremely bad vibes where bitcoin people talk about bitcoin"
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 01:41:22 JST
Christine Lemmer-Webber
Furthermore, I think Bluesky is providing something valuable: a lot of people are trying to leave X-Twitter *right now* because it has become a completely toxic place.
The fact that Bluesky's team has managed to scale to receive such users is incredible, nearly feeling miraculous.
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 01:41:23 JST
Christine Lemmer-Webber
That said, let's get to the summary: Bluesky / ATProto are not decentralized or federated, according to my analysis.
However, the "credible exit" goal is worth perusing, and does use decentralization techniques! But it is not decentralization/federation without moving the goalposts on those terms.
Hyolobrika likes this.Mr. Bill repeated this. -
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 01:41:24 JST
Christine Lemmer-Webber
There is also something which Bluesky gets right which the fediverse does not. I mentioned that Bluesky uses decentralization *techniques*, and the most important of those is content-addressing. This allows content to exist even when a server goes down.
This is a great decision and I have advocated that the fediverse do so as well. In fact several years ago I wrote a demo in @spritely's early days showing off how one could build a content-addressed ActivityPub in a spec-compatible way.
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 01:41:25 JST
Christine Lemmer-Webber
First of all, before I say anything else, my goal here is NOT to be mean to Bluesky's devs. I know there's a lot of fediverse-Bluesky rivalry, but I have enormous respect for Jay Graber and her team and I know they believe in their vision!
This started because I got some very kind encouragement by @bnewbold to write something. I'm trying to be technical in my analysis, not unkind. I hope that can be recognized, really and truly.
bhaugen repeated this. -
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Saturday, 23-Nov-2024 05:37:23 JST 
Evan Prodromou
Hey, Christine.
Did you consider that it's in Brian's and Bluesky's interest to position the difference between ActivityPub and AT Proto as one of technology and not of governance?
Also, did you think about getting your hands dirty with a proprietary protocol that has no patent or other licensing grants?
I intentionally have not done either of these things. I think Brian encouraged you to do this for his and Bluesky's own benefit.
-
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Saturday, 23-Nov-2024 05:40:10 JST
Evan Prodromou
@cwebber @bnewbold I hope Bluesky Inc. made a big donation to the Spritely Institute for this huge amount of work you did.
Christine Lemmer-Webber and Rocketman repeated this. -
Embed this notice
Eliot Lash (eliot_l@social.coop)'s status on Saturday, 23-Nov-2024 06:52:02 JST 
Eliot Lash
@cwebber I've read your entire article, thanks so much for such a detailed & thoughtful writeup. It was very illuminating as I had not come across any discourse yet that really got into the weeds about DID implementations and so forth. I was also not aware of your proposals regarding Ocap. This is interesting stuff I want to try to understand further. I am glad that you are thinking about these pain points with current fedi implementation, we're all feeling them and I hope they can be addressed.
-
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Saturday, 23-Nov-2024 10:53:39 JST
Evan Prodromou
@cwebber omg, I skipped all the way to the end and OBVIOUSLY you look at this situation from every conceivable angle, including governance, because it wouldn't be a Christine Lemmer-Webber post without it.
I appreciate the depth of analysis. I do still think that Bluesky should make a donation to Spritely if @bnewbold asked you to make a 25-page report, though.
Christine Lemmer-Webber repeated this. -
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Saturday, 23-Nov-2024 10:56:51 JST
Evan Prodromou
@cwebber I also don't share your optimism about cross-pollination. There's a reason that W3C specifications have to only have normative dependencies on specs from recognized standards bodies. Too many minefields unless you have a clear license.
I'm glad that @bnewbold is in the SocialCG and I hope we can find some opportunities to publish reports with some or all parts of the AT Proto stack.
-
Embed this notice
dave (dthompson@toot.cat)'s status on Saturday, 23-Nov-2024 11:34:42 JST 
dave
@evan @cwebber @bnewbold they said the big novelty check is in the mail
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Saturday, 23-Nov-2024 21:44:02 JST
Christine Lemmer-Webber
@evan I am glad you liked it after reading the whole thing :)
I absolutely would not turn down a donation from Bluesky to Spritely should they want to ;P but also @bnewbold welcomed and said he would be "honored" to see me write something, but absolutely did not ask me to write a 25 page document, that's just me lol
But there was too much to cover, and I felt I really could not do the issue justice without covering it from every important angle, so I did. Glad it was well received. <3
-
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Saturday, 23-Nov-2024 22:18:24 JST
Evan Prodromou
@cwebber @bnewbold I didn't read the whole thing. ☹️
Since I actively work on ActivityPub, I can't afford to introduce patented ideas into our specs or extensions, even accidentally or unconsciously.
So, I avoid reading any technical discussions of the BS protocol. I've asked Brian and Mike to offer a public patent license or to release their work through W3C or IETF which also uses a patent license. No luck so far.
Anyway, I'm glad you had fun.
-
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Saturday, 23-Nov-2024 23:45:39 JST
Evan Prodromou
@cwebber @bnewbold Anyway, I just set up my own personal monthly donation to Spritely Institute. It was a good reminder!
-
Embed this notice
m455 (m455@tiny.tilde.website)'s status on Sunday, 24-Nov-2024 00:01:35 JST 
m455
@cwebber @bnewbold i think stating upfront that you are trying to be kind and objective in your technical analysis, before your technical analysis, is important, because its so easy for readers to take things personally when you arent intending to do that.
it's also great for your mental health, where if someone does give u an earful, its kind of on them to realize that you put in an effort to try and be kind, and that you even considered it in the first place.
-
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Sunday, 24-Nov-2024 00:01:46 JST
Evan Prodromou
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Sunday, 24-Nov-2024 00:02:43 JST
Christine Lemmer-Webber
@m455 it was good!
-
Embed this notice
m455 (m455@tiny.tilde.website)'s status on Sunday, 24-Nov-2024 00:02:44 JST
m455
@cwebber @bnewbold sorry for the long ridiculous reply in retrospect--my meds are most effective in the morning and it's the small fraction of the day where i dont get too much brain noise and things are clear, so im able to actually express what i mean coherently lol
-
Embed this notice
Evan Minto (vamptvo@mastodon.social)'s status on Sunday, 24-Nov-2024 00:03:01 JST 
Evan Minto
@cwebber This is excellent, thank you for writing it up. It roughly matches my gut feeling from the little I knew about BlueSky's architecture, but of course with much more expertise and detail
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Sunday, 24-Nov-2024 00:03:17 JST
Christine Lemmer-Webber
@VamptVo 💜
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Sunday, 24-Nov-2024 00:04:32 JST
Christine Lemmer-Webber
@aeris if every PDS queries every PDS, that's quadratic cost on scaling
-
Embed this notice
aeris (aeris@firefish.imirhil.fr)'s status on Sunday, 24-Nov-2024 00:04:41 JST 
aeris
@cwebber@social.coop I read many time the paper to be sure to not miss that point, but it seems you never consider the fact that a relay is not needed and that's explicit on the AT proto documentation here
https://atproto.com/guides/glossary#relay
Relay is only optimisation a huge appview want to use, but smaller appview can directly query PDS, avoiding totally the relay cost.Darnell Clayton :verified: repeated this. -
Embed this notice
Dr. Professor Fred Rococo (morgan@sfba.social)'s status on Sunday, 24-Nov-2024 00:11:04 JST 
Dr. Professor Fred Rococo
" Then along came Google Reader and... friends, if you are reading this and are of a certain age range, there is a strong chance you have feelings just seeing the phrase "Google Reader" mentioned."
You got me. Great read, thank you.
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Sunday, 24-Nov-2024 00:31:13 JST
Christine Lemmer-Webber
@evan I am reading backwards in time but @bnewbold encouraged me to speak after I had expressed frustration about biting my tongue about things. I don't think this was for Bluesky's benefit at all and, I think you recognize this later but, tbh my article was *extremely* critical, even if polite
Bluesky folks have received it very thoughtfully but trust me I did *not* take that as a given and it could have very much so have not gone that way. I'm glad it did tho
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Sunday, 24-Nov-2024 00:49:57 JST
Christine Lemmer-Webber
@dthompson @evan @bnewbold lmao
-
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Sunday, 24-Nov-2024 00:52:41 JST
Evan Prodromou
@cwebber @bnewbold it's like living in the movie Memento!
Anyway, good work.
-
Embed this notice
Erin 💽✨ (erincandescent@akko.erincandescent.net)'s status on Sunday, 24-Nov-2024 01:08:13 JST 
Erin 💽✨
@cwebber Some notes:
(Also choosing sha256 over sha256d, there’s maybe the question of length extension attacks, but I suppose the parsing of the document means this is maybe not a problem, I’m not sure.)
So a fun thing amout merkle-damgård hash functions is that they’re only subject to length extension attacks if used at full length. If truncated they’re not vulnerable. So SHA-256 and SHA-512 are vulnerable, but SHA-224 (which is SHA-256 with different constants and truncated to 224 bits) and SHA-384 (which is SHA-512 with initial different initial constants and truncated to 384 bits) are not. Back in 2012 NIST standardised SHA-512/224 and SHA-512/256 which are similarly truncated versions of SHA-512 with different initial constants which also sidestep the length extension attack issue.
Anyway this is to say that because they truncated the hash in did:plc identifiers (to a level which feels unwise to me too!) they’re immune to length extension attcks.
-
Embed this notice
Perina (perina@fosstodon.org)'s status on Sunday, 24-Nov-2024 01:10:16 JST
Perina
@cwebber how mobile friendly is this article realy?
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Sunday, 24-Nov-2024 01:10:16 JST
Christine Lemmer-Webber
@perina I proofread it on my phone?
-
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Sunday, 24-Nov-2024 01:14:59 JST
Christine Lemmer-Webber
@aaravchen fixed, thx!
-
Embed this notice
Aaravchen :linux: :suspicious: (aaravchen@fosstodon.org)'s status on Sunday, 24-Nov-2024 01:15:00 JST 
Aaravchen :linux: :suspicious:
@cwebber FYI your mastodon account link from your blog website is still to the octodon instance.
-
Embed this notice
Weatherwax (weatherwax@infosec.exchange)'s status on Sunday, 24-Nov-2024 22:58:01 JST
Weatherwax
@cwebber
Great technical analysis that perfectly captures how architecture embodies values. You're right - Mastodon attracts digital idealists willing to sacrifice convenience for independence, while Bluesky draws tech pragmatists seeking ethical alternatives that still work smoothly.
But I think there's a missing piece in this freedom debate. The civil rights movement showed that real transformation often comes through collective commitment - not just independence from authority (Mastodon) or convenient individual choice (Bluesky).
We don't yet have protocols designed for communities seeking freedom through shared purpose rather than from or to something. The technical architecture for that kind of collective action would look very different from both current approaches (not sure what it is).
Thanks for the detailed analysis but I am still waiting for the protocols or ways to use the fact that computers see us as large groups, but, currently, only to aggregate us to sell us stuff. In reality, the computers could give great insight into the power of common identity between groups. No one’s using that. -
Embed this notice
Christine Lemmer-Webber (cwebber@social.coop)'s status on Sunday, 24-Nov-2024 22:58:01 JST
Christine Lemmer-Webber
@Weatherwax I actually strongly agree with that; our focus in Spritely is on "secure collaboration" and intentional cooperation for individuals and communities
-
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Monday, 25-Nov-2024 05:21:20 JST
Evan Prodromou
@cwebber @bnewbold I do think if someone at a commercial startup asks the director to write a 24-page report including extensive technical research, they should help offset that work.
But Christine assured me that it's not the case; the level of effort was not requested and is entirely up to her. She's a grown woman, a professional, and knows how to allocate her own time.
Rocketman repeated this. -
Embed this notice
Evan Prodromou (evan@cosocial.ca)'s status on Monday, 25-Nov-2024 05:25:41 JST
Evan Prodromou
@cwebber @bnewbold I will leave it up to Brian to decide what Bluesky wants to do to support Christine's work.
For the rest of us who appreciate this and other research she does, I highly recommend making a contribution to the Spritely Institute.
-
Embed this notice
bryan newbold (bnewbold@social.coop)'s status on Monday, 25-Nov-2024 15:12:17 JST 
bryan newbold
@cwebber I've read the whole blog post now, and it is solid! sheds light, good framing, gets to the good stuff.
thank you / congrats!
planning to reply in longer form soon
-
Embed this notice
?? Humpleupagus ?? (humpleupagus@eveningzoo.club)'s status on Tuesday, 26-Nov-2024 11:02:06 JST 
?? Humpleupagus ??
Christine... Who's the dude in your pfp?
All GNU social JP content and data are available under the