|
|
|
|
|
|
by squidproquo
1706 days ago
|
|
|
I think the overarching idea here makes sense, but the devil is in the details. 1) It's going to be difficult to ensure that the 'Orb' device can't be hacked and allow bad actors to send a bunch of random codes to signup for a Worldcoin. 2) If there are bogus signups how do you deal with reconciliation when there are ID collisions? 3) It's going to take many years for this to get a critical traction and to deploy coins to individuals. 4) The value of this coin will be extremely small when it's divided amongst the world's population. Assuming it's spent shortly after it is received, this money will just flow back to the owner's of capital anyways. |
|
|
> Spoofing attacks involve presenting the Orb with modified, fake, or non-human irises. For example, an attacker might show the Orb a photo of an iris or an animal iris, hoping to generate a unique IrisHash. To defend against attacks like this, we’ve equipped the Orb with a suite of multi-spectral sensors and custom fraud-detection algorithms. This advanced anti-spoofing system complements the iris imaging system, and operates locally on each device.
> The Orb is also resilient to various forms of tampering, including attempts to modify its software, extract its cryptographic secrets, or disable its anti-spoofing system. This resilience is critical, since any of these intrusions might allow a hacker to generate fraudulent IrisHashes. The Orb’s embedded systems reliably detect advanced attacks of this kind, and prevent corresponding fraud.
> To further increase the difficulty of an attack, Orbs will be remotely monitored and compared to other Orbs. Such monitoring is based on non-biometric metadata from the Orb, including battery level, temperature, and network strength. Anomalies will be flagged and lead to Orbs being deactivated. This anomaly detection happens in a controlled environment in the cloud and therefore comes with higher security guarantees than device-level spoof and tamper detection.