Post · A small Bonfire corner on the internet

Post

Soon Reddit users need to prove that they are human using ID verification. Your site is already garbage and I am not giving you any ID.

https://www.reddit.com/user/spez/comments/1s3ezrc/humans_welcome_bots_must_wear_name_tags/

Mastdon and Fedi seems to doing fine without any ID.

When confirming that there is a human behind an account, we prefer third-party tools that keep a distance between verification and Reddit itself. Any system we use will not expose your real-world identity to Reddit nor your Reddit username or activity to any third party. There are a handful of ways to do this, and I’m sure there will be more. Each have their tradeoffs:

* Passkeys (which are well supported by Apple, Google, YubiKey, and various password managers) - These are lightweight, require a human to do something, and don’t require your ID. The tradeoff is that there is no proof of individuality or anything other than “a human probably did something.” Nevertheless, it’s a great starting point.

* Third-party biometric services - For example, World ID (yes, the Orb company, though they have non-Orb solutions as well). This technology unlocks proof-of-individual without requiring your name, government ID, or a centralized database. I think the internet needs verification solutions like this, where your account information, usage data, and identity never mix.

* Third-party government ID services - In some countries, such as the UK and Australia, governments require us to use these. These are the least secure, least private, and least preferred. When we are forced to do this, we design the integrations so that we never actually see your ID information, so your Reddit data cannot be tied to you. — When confirming that there is a human behind an account, we prefer third-party tools that keep a distance between verification and Reddit itself. Any system we use will not expose your real-world identity to Reddit nor your Reddit username or activity to any third party. There are a handful of ways to do this, and I’m sure there will be more. Each have their tradeoffs: * Passkeys (which are well supported by Apple, Google, YubiKey, and various password managers) - These are lightweight, require a human to do something, and don’t require your ID. The tradeoff is that there is no proof of individuality or anything other than “a human probably did something.” Nevertheless, it’s a great starting point. * Third-party biometric services - For example, World ID (yes, the Orb company, though they have non-Orb solutions as well). This technology unlocks proof-of-individual without requiring your name, government ID, or a centralized database. I think the internet needs verification solutions like this, where your account information, usage data, and identity never mix. * Third-party government ID services - In some countries, such as the UK and Australia, governments require us to use these. These are the least secure, least private, and least preferred. When we are forced to do this, we design the integrations so that we never actually see your ID information, so your Reddit data cannot be tied to you.

Federation Bot

@Federation_Bot replied · 3 weeks ago

@nixCraft Omg big F. Was thanks to reddit that i get to know fediverse.

Federation Bot

@Federation_Bot replied · 3 weeks ago

@nixCraft
Lots of unethical companies get the OK in their list, what a joke

nixCraft 🐧

@nixCraft@mastodon.social replied · 3 weeks ago

hear me out: i starting to feel like all this OS, social media age/ID & KYC verification push because people are speaking out against world governments & the wealthy brats

They want to create fear. if you talk against them they can send the police or their supporters to your home because they know exactly who you are. This has nothing to do with kids. If it did, many AI apps would have been shut down a long time ago when they started 'undressing' women and deepfakes. Yet those apps are online

nixCraft 🐧

@nixCraft@mastodon.social replied · 3 weeks ago

there is some truth to the issues with bots or AI based spam, but then again, companies are firing competent software devs/IT staff & still expecting everything to work perfectly

the solution to these AI bots is regulation. they've 3/4 companies that all these bottom feeders use for spamming via API. It isn't that hard to fix the problem but governments are too busy with throwing dirt at each other these days & for profit social media want to tag everyone with ID so they can market you better

Federation Bot

@Federation_Bot replied · 3 weeks ago

@nixCraft Fraud is rampant, there is the KYC camp which are typically businesses that have some reason to need to verify you are not exfiltrating their systems, and then there is the tinfoil hat security crowd (mostly us) that sees boogiemen everywhere (and are often right, often wrong.

These two are seemingly at odds, but in reality what it suggests is that there are distinct identity domains that we need to solve for - public and private, and we haven't.

We need zkp public identity yesterday

A small Bonfire corner on the internet

This is a small personal instance of Bonfire in the Fediverse.

A small Bonfire corner on the internet: About · Code of conduct · Privacy ·

Bonfire social · 1.0.1 no JS en

Automatic federation enabled