Highest Rated Comments


CrimZin505 karma

Hi, this is a great idea. One question I have is what safeguards do you have in place (or are anticipating to have in place) that protect spammers and botnets from "gaming the system?"

If this becomes a relevant piece of the American political landscape then safeguarding the reliability of the data should be top priority.

CrimZin227 karma

Thanks for posting this. I was wondering how it has changed your day to day life. For example, where do you work? Do you need to tell them that you have this issue? And what are they instructed to do if something were to happen. How would your body react?

CrimZin167 karma

That's a great way to start but whether or not they are identity management platforms is irrelevant to spamming or botnets which can just make armies of those accounts.

Be wary of comparing publicly available data on the Internet to calling an office though. One tech savvy person can unleash a storm of fake Web queries faster than someone can call an office repeatedly.

I would be much more interested in seeing a system where it's linked to a drivers license number, voters registration card, or SSN. One other suggestion is you could have votes called in (think American Idol) as opposed to a web query. That's also much harder to fake.

edit: think

CrimZin15 karma

I just don't see how it's any different than logging in with Facebook, but I don't have as good of an understanding of how "Log in with Facebook" information is stored. But if "they" can break into the database and get an encrypted copy of an SSN, then they can break in and get and get your Facebook account ID. That's worse for me because depending on who "they" are, they may not even have the access to associate you with a soc.

I just don't see how it's different other than you can make thousands of Facebook IDs more easily.

edit: clarification

CrimZin14 karma

Only a salted cryptographic hash would be stored in the database. I'm much less comfortable with my social media account being linked to a voting record than an encrypted version of a unique ID with an anonymous username.