Zeronet: Proof of work based ID providers

I just generated a 1ZeroiDJnkHkugPNd8UzSwceH8HfsnYtC address in 3 hours, so maybe we should make it harder like "1ZeroiD[0-9]" should take ~2-3days on my machine

Hm... The idea itself look interesting, but ~2-3 days... Not sure if that is acceptable for users who join the network.

It's not acceptable for new users, but they would able to use already existing id providers. So if you do that 2-3 days of calculation you are also able to issue new certificates for users you trust.

Okay, looks reasonable.

Will cert pattern "cert_pattern": "^1" be allowed in this implementation? (while list all cert providers).

Sure, but if you don't want to have any control over the content submitted to your site, then I recommend self-signed certificate.

I like this solution because it doesn't require a blockchain.

Heaven forbid, AVOID THE PROOF-OF-WORK algorithm!!!!!!
Isn't the Bitcoin already contributing enough to the global warming?
Details are described at
http://fouryears.eu/2017/07/09/the-blockchain-consensus-problem/
(archival copy)

1. Do you have a saver Proof-Of... wich is as secure as ...work?
2. BTC's Protokoll didnt need souch a heavy load - it only says the more miner they are they more they have to calc!
3. teoretikal If we replace all banks and stok markets wit BTC,ETC and 1-2 other blokchainsolutions we could save mouch more!
4. This is a dev discusion ethical discusions are needet but i think this is the wrong place :(

Do you have a saver Proof-Of... wich is as secure as ...work?

I believe that if I, or You, @6543, modified the idea that I have described at
https://www.softf1.com/cgi-bin/tree1/technology/flaws/silktorrent.bash/wiki?name=Experiment:+mmmv_symsig_t1
_(archival copy)_
then that might work.

i think it should be varied and we can gauge trust on said cert pattern
say a looser pattern means less trust and more limits like less storage space, higher post cooldown vote means more etc and gets looser for harder patterns and that could account for not everyone having a good setup to generate it
"cert_pattern": "^10id" would be lowest
"cert_pattern": "^1Zero" would be mild
"cert_pattern": "^1Zeroid" would be higher trust

For the sake of contemplation, suppose we have a
MAGICAL BLACK BOX _(does not exist in reality)_
that is
RELIABLY ALWAYS ACCESSIBLE TO EVERYBODY _(an oxymoron in practice)_
and
NOT A CENTRAL POINT OF FAILURE _(another oxymoron)_
and that it
ALWAYS WORKS PERFECTLY and RELIABLY _(yet another oxymoron)_
and let's suppose that this magical black box gives ticket pairs, one
ticket to the server, telling that user U_n can perform
a single action A_x, and another ticket to the user, telling that
You, the user U_n, are allowed to perform action A_n only once per ticket
at server S_n, then what would be the answers to the following questions:

Q_1: Who gets to modify/post to a forum that is about 
    some supermafia/government/regime that loves to 
    apply censorship (id est Russia, China, Saudi Arabia, etc.)?

Q_2: How to stop a well paid, persistent, 
    supermafia/government paid human troll 
    from flooding the forum without limiting the posting rate of 
    non-trolls, who's accounts, aliases, are as old or older than
    that of the troll and that have the same posting frequency 
    pattern as the troll has?

Q_3: What to do, if the keys of a valid user get "confiscated"
    and the supermafia/authorities start to post as that user?

Q_4: In game theory the wins and losses are calculated 
    in respect of a specific player. If we're talking about 
    trust and mistrust, different trust levels, then who are the players?
    (A ZeroNet forum would be an interesting test case.)

Basically, I believe that more clarity might be brought to
the contemplation, if the James Bond style requirements (social requirements)
were laid out first and the set of technical requirements
were assembled after the social requirements are fixed.

Thank You for reading my comment.

Added as experimental feature to Rev3703: https://github.com/HelloZeroNet/ZeroNet/commit/6bc1ac1156551e35b072575340fe24a50854f6ba

Eg.: "cert_signers_pattern": "1Zero" to accept all signer starting with 1Zero (regexp supported)

To make a PowID compatible site:

• Cloned ZeroChat
• Changed the title to "ZeroChat with PoWID" using the sidebar
• Edited data/users/content.json: removed "cert_signers": ..., added "cert_signers_pattern": "1Zero"
• Changed this.cmd("certSelect", {accepted_domains: ["zeroid.bit"]}) to this.cmd("certSelect", {accepted_pattern: "1Zero"}) in the source code (index.html) to accept PowID as valid option on cert selection.
• Signed data/users/content.json and content.json using sidebar

To generate a PowID provider:

• vanitygen 1Zero (should take minutes using CPU and seconds using GPU)
• Get my auth_address by entering to site's JS console (F12) zeroframe.cmd("siteInfo", [], (res) => console.log(res.auth_address))
• Issue a certificate for that auth_address: zeronet.py cryptSign 1Fmvt3rAZnVsNz1o2uLnDd5W4fWor5tdpD#web/nofish 5KX... where 1Fmvt.. is the auth_address given by the previous command and 5KX... is the private key generated by vanitygen
• To add certificate to client enter to JS console: zeroframe.cmd("certAdd", ["1ZeroyQs73YThofLjs8zYHevtA3mRiXaY", "web", "nofish", "HATgIoBr7CNmg56BIMVECW1B7pO6W9jUYTcckyIQJwcWU0uGf3bnHan6EelMkGR+8XZIB092wWFJtFpPjMGv1MQ="])
• Done!

@HelloZeroNet @shortcutme

All ID providers must use 1Zero?

its defined by the site. "1ZeroiD[0-9]" recommended (few days on average GPU) and probably will be enabled on ZeroTalk/ZeroMe hubs.

recommended (few days on average GPU) and probably will be enabled on ZeroTalk/ZeroMe hubs

You is against mobile phones
ZeroNet will do sh*t till realize that Web of Trust is need

@HelloZeroNet I think that a few days are too much for the normal user. And something like https://github.com/HelloZeroNet/ZeroNet/issues/1258#issuecomment-380050512 should be implemented.

When it will be possible to import PowID providers from GUI?

Also, you said "Get my auth_address by entering to site's JS console". The auth_address will be diffreant for each site. Does this mean that I would need to do this and generate certificate for every site I want to use manually? Will this be automated?

I think based on PoW it's not possible to create a solution that provides fairly good solution against spam attacks and it's also makes easy to users to create their own certificate, so:
this feature is not for the users, but for someone who want to be able to run a site that issue certificates for the users.