Alice and Bob in Wonderland - Identity and authority without servers (2024) (opens in new tab)

<p>In a client-server world, identity and authority are anchored in a server that logs people in and enforces permissions. When you take the server away, though, it might seem like there’s no solid foundation for authentication or authorization. Is there a principled way to establish trust in a distributed application?</p>