MoldBoy on Nostr: Public/Private keys should require proof of work to generate and they should require ...
Public/Private keys should require proof of work to generate and they should require a time stamp and some other data in the proof. This way some sort of minimal verification on public key authenticity could take place.
1. Public keys with similar or close time stamps participating in a poll could be dropped.
2. Public keys participating in a poll not older then N days or created after the poll could be dropped.
3. Much more…
Having no metadata linked ti key generation opens up too many opportunities for bots/spam.
If you want to update the metadata associated with your public key you must regenerate the proof.
How to stop fake time stamps? There should be some register event take place at the relay each time proof is generated for credentials. Relay can enforce Register event for time in the past or time in the future (flying DeLorean).
Dunno 🤷
1. Public keys with similar or close time stamps participating in a poll could be dropped.
2. Public keys participating in a poll not older then N days or created after the poll could be dropped.
3. Much more…
Having no metadata linked ti key generation opens up too many opportunities for bots/spam.
If you want to update the metadata associated with your public key you must regenerate the proof.
How to stop fake time stamps? There should be some register event take place at the relay each time proof is generated for credentials. Relay can enforce Register event for time in the past or time in the future (flying DeLorean).
Dunno 🤷