On Thursday 23 May 2013 18:04:02 Zwiebelcode wrote: > > Am 23.05.2013 14:28, schrieb Matthew Toseland: > > > > > However, I have my doubts, as you are effectively creating a global, > public, biometric ID database. You will need to store the biometric ID's > to prevent duplicates. Also, how do you ensure trust in the assurers? > You should look into existing systems that use a similar model, notably > CACert: > > http://www.cacert.org/ > yes, the fact of participation will be public because of the biometric > ID database. On a higher level the used identity can be anonymized. > Every person has an unique identity per context. (one identity for > shopping, one for forums, one for another service,..) but the identity > can not be traced back to the biometry data. > > Cacert is a nice project, but it uses governmental names. > > On cacert, an user can go to an assurer whoever he likes. So if an bad > guy finds 20 bad assurer, he can cheat. on open-ident the user has to go > to specific assures, which are randomly choosen from the server. (which > can be dezentralized) > > How can we trust assurers? We cant. But we could say, that most of them > are ok. So, in the beginning of the system, there could be a meeting > with all assures who assure each other. These persons are different > persons and are public. It may be easy to find 10 bad assures. but it > takes too long time to get 10 bad assurers, if the server assigns them > randomly to you. > > The system would be more complicated and time consuming than cacert, but > much more secure and no need to trust anyone. anyway i will have a > closer look to cacert, to make sure, oppinion to them is not wrong or > too easy. > > For me, personally, it does not matter if only 100 users in the world > will use this. I will use it, even when it is only used by 10 persons. > > For now, it will not too relevant for freenet, as it is still a far way. > But i just wanted to tell about it...
What prevents the bad guy from adding 1000 evil assurers? How do you know they even exist as independant identities?
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Devl mailing list [email protected] https://emu.freenetproject.org/cgi-bin/mailman/listinfo/devl
