|
Their "how it works" page has a whole section dedicated to your first question: > Spoofing attacks involve presenting the Orb with modified, fake, or non-human irises. For example, an attacker might show the Orb a photo of an iris or an animal iris, hoping to generate a unique IrisHash. To defend against attacks like this, we’ve equipped the Orb with a suite of multi-spectral sensors and custom fraud-detection algorithms. This advanced anti-spoofing system complements the iris imaging system, and operates locally on each device. > The Orb is also resilient to various forms of tampering, including attempts to modify its software, extract its cryptographic secrets, or disable its anti-spoofing system. This resilience is critical, since any of these intrusions might allow a hacker to generate fraudulent IrisHashes. The Orb’s embedded systems reliably detect advanced attacks of this kind, and prevent corresponding fraud. > To further increase the difficulty of an attack, Orbs will be remotely monitored and compared to other Orbs. Such monitoring is based on non-biometric metadata from the Orb, including battery level, temperature, and network strength. Anomalies will be flagged and lead to Orbs being deactivated. This anomaly detection happens in a controlled environment in the cloud and therefore comes with higher security guarantees than device-level spoof and tamper detection. |
Doubt. In the end this is a device collecting signals, signing them cryptographically, and sending them to the cloud. If there's an economic incentive someone will find a way to get it to sign fake signals.
There's also the centralization issue, where the manufacturer of these orbs essentially has total control over producing the currency.