Data hub
Personal data stored on user's own machine, accessed by API
To keep data safe and secure, it is only stored on the user's machine. When a third party service wants some information, it requests it from the user's machine where it can be traced and attested.
+[project]
Right, but how would such API be designed. For example, Solid by Tim Berners' Lee et. al. are trying to achieve something like that. Alternative P2P approaches, like GunJS are trying to realize something of a browser LocalStorage-based decentralized database, where, however, privacy can be achieved through encryption provided within the stack. Another approach is the OAuth2.0, that already realizes the universal permissioning on all kind of APIs within a machine or a network, by providing a way to generate permission tokens. It solves the complicated matters of a multitude of resources that any internet user may have.
So, being that people already use this idea, how would this idea contribute to the solution of the privacy problem? How would this "Data hub" actually function?
I'm thinking of some thing very simple.
We register a data handler in browser/mobile phone for datahub:/ url links
The URL must contain what's requested
datahub:firstname,lastname,email,dob,http://returnaddress
Then the return address gets pinged with the data from the datahub.
If we want it to be part of backend processing, such as a corporations backend processing or whenever they happen to require the data, they will need to be a server side component. Or an intermediary.
The intermediary would have a connection over VPN or zerotier, a link to the user's device where the data can be requested.
The intermediary can be authenticated via OAuth.