Mac Budkowski แต pfp
Mac Budkowski แต
@macbudkowski
What do you think about Worldcoin?
20 replies
1 recast
7 reactions
๐’‚ญ_๐’‚ญ pfp
๐’‚ญ_๐’‚ญ
@m-j-r.eth
I think that sybil resistance is much deeper in groups, biometrics are not as effective (they're seizable & MITM). network-of-trust sybil resistance like gitcoin passport is wicked composable and can apply to permissionless extensions of the original network. I would never trust any dapp that mandates one ID provider.
1 reply
0 recast
0 reaction
Mac Budkowski แต pfp
Mac Budkowski แต
@macbudkowski
Could you tell how theyre seizable and what is MITM?
1 reply
0 recast
0 reaction
๐’‚ญ_๐’‚ญ pfp
๐’‚ญ_๐’‚ญ
@m-j-r.eth
MITM - man-in-the-middle attackable I can only speculate from a distance, but it seems like orb operators have an implicit trusted oracle assumption (can they be slashed for black market resale?) additionally, is there sufficient tamper evidence if an orb is presented with an iris artificially rendered from e.g. insta?
2 replies
0 recast
1 reaction
max pfp
max
@maxp.eth
There are many security mechanisms built into the Orb, simply showing a photo (even very high res) of an iris will be rejected.
1 reply
0 recast
0 reaction
๐’‚ญ_๐’‚ญ pfp
๐’‚ญ_๐’‚ญ
@m-j-r.eth
yeah, I figured there was at least enough security to detect 2d images, however this seems to be tamper-proof security & I'm wary of it being unbreakable. lot of respect for the worldcoin team, but its too much counterparty risk for me relative to proof-of-response e.g. BrightID or permissioned social networks.
2 replies
0 recast
1 reaction
Mac Budkowski แต pfp
Mac Budkowski แต
@macbudkowski
After your cast I'm the most worried about these MitM attacks. Imagine scammers pretending to be Worldcoin employees to steal your digital identity (and your airdrop off)
1 reply
0 recast
0 reaction
๐’‚ญ_๐’‚ญ pfp
๐’‚ญ_๐’‚ญ
@m-j-r.eth
if there's tamper-evidence e.g. a canary that describes certain DIDs undergoing repeated attack, that would be an interesting mitigation. the other thing I wonder about (going back to friends are deeply accountable in a small group principle) is whether worldcoin can establish zk-attestations of close-proximity DIDs
1 reply
0 recast
0 reaction
๐’‚ญ_๐’‚ญ pfp
๐’‚ญ_๐’‚ญ
@m-j-r.eth
looks like semaphore uses external nullifiers, could be applicable to both of these: https://github.com/worldcoin/idkit-js/blob/main/idkit/src/lib/hashing.ts#L94 https://docs.worldcoin.org/advanced/protocol-internals#external-nullifier
0 reply
0 recast
0 reaction