Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://noc.social/users/light/statuses/116080964193870092">Light (light@noc.social)'s status on Tuesday, 17-Feb-2026 03:02:49 JST</a><a href="https://noc.social/@light" title="light@noc.social"><img src="https://gnusocial.jp/avatar/258200-48-20250114042321.webp" width="48" height="48" alt="Light" style="position: absolute; left: 0; top: 0;">Light</a><div><a href="https://snac.lx.oliva.nom.br/lxo/p/1771191943.430890" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://snac.lx.oliva.nom.br/lxo">@lxo</a><br>&gt;software running under someone else's control doesn't and can't generally give you any security whatsoever from abuses by that who controls it<br>But what do you mean by "control"? Who "controls" proprietary (or any) software when it runs locally?<br>SaaSS is clearly controlled by the service provider, unless techniques (with varying effectiveness) such as secure enclaves, <a href="https://system-transparency.org/" rel="nofollow noreferrer">https://system-transparency.org/</a> (which, granted, is helped by source availability), e2e signing and encryption, etc are used.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/6155726#notice-12136169">In conversation</a><time datetime="2026-02-17T03:02:49+09:00" title="Tuesday, 17-Feb-2026 03:02:49 JST">about 2 months ago</time> <span>from <span><a href="https://noc.social/@light/116080964193870092" rel="external" title="Sent from noc.social via ActivityPub">noc.social</a></span></span><a href="https://noc.social/@light/116080964193870092">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://www.system-transparency.org/">https://www.system-transparency.org/</a></h5><div> from <span>The System Transparency Project</span></div></header><div>The System Transparency Project website</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Light (light@noc.social)'s status on Tuesday, 17-Feb-2026 03:02:49 JSTLight
in reply to
- Alexandre Oliva
@lxo
>software running under someone else's control doesn't and can't generally give you any security whatsoever from abuses by that who controls it
But what do you mean by "control"? Who "controls" proprietary (or any) software when it runs locally?
SaaSS is clearly controlled by the service provider, unless techniques (with varying effectiveness) such as secure enclaves, https://system-transparency.org/ (which, granted, is helped by source availability), e2e signing and encryption, etc are used.
In conversationabout 2 months ago from noc.socialpermalink
Attachments
1. No result found on File_thumbnail lookup.
  https://www.system-transparency.org/
  from The System Transparency Project
  The System Transparency Project website

Public

Embed Notice

HTML Code

Corresponding Notice