I had a friend get her account hacked, and it’s mystifying why Facebook won’t leverage the friend graph to restore access. If Facebook was like: go collect these restoration tokens from these people and we’ll give you your account back, that would be awesome.
That's a good idea too. When I lost my FB account due to hacking I had my mom and my sister reach out on my behalf. But the hackers were posting some bad stuff apparently and the account was terminated pretty quickly. If I could have used the biometrics/hardware combo I detail in the paper to self-suspend and then reverify the account, it would have limited the damage to my rep and the platform's rep.
Additionally social graphs could prompt for AI black hats to target groups of friends at the same time as opposed to randomness. And in that scenario what happens when the attacker modifies the friends list while you sleep? Appreciate your comment.
We are fast approaching a point of no return when it comes to combating hackers using current cybersecurity models. The critical mass and the sheer volume of attacks have started to consume platforms and fintech alike. They cannot keep up. Hackers are winning the war.
The posts on Reddit that compound minute to minute scream distrust of all institutions and their solutions to the problem. Their Or-gate is broken, hanging by a squeaky hinge, begging for an And-Gate solution.
After I was hacked some months back, I was made to feel as a ghost in my own machine. What I built was taken from me and the thieves were given all the rights that should have been mine. And I soon knew I was not alone.
That begged the question do the platforms care? And if not, how can we make them care? Today the headlines scream about META suddenly requiring ID and selfie videos. Storing data. Using third parties. Burning billions to find a solution.
I’ve been working on a better way for months now.
A protocol that is mathematically and cryptographically compelling and uses various n biological and hardware factors — but stores none of it — while providing a third party attestation that will help institutions protect people and recover what’s been stolen from them.
With their recent change of recovery protocols META and other platforms are on the right track, my way is simpler, more cost effective, and though it’s a bold claim — irrefutable. I am me, and it’s time the individual is given the right to prove it without frustration. But I’ll leave it to the learned people at Hacker News to prove me wrong.