There is a bot problem but ID checks are invasive, and you can stop the bots with things like Hcaptcha Passive and Turnstile which use POW to waste the CPU cycles of bots and look for signs of things like Selenium and Puppeteer controlling the browser.
Passkeys and hardware attestation are also good as they require a fingerprint or face and bare metal hardware instead of a VM, but Spez also wants to introduce things like the Worldcoin Orb and IDs as well which are too invasive IMO.
Passkeys. This won’t work over a medium term, period. It’s tantamount to saying that SSH keys prove someone is human. If there’s enough interest, they’ll just make a software passkey solution that can work. Passkey being “human interactive” is purely a client-side construct.
Biometric services. Strictly speaking, not an ID but it’s not hard to imagine leveraging capturing biometrics to an ID like scenario.
Government IDs. Well that’s self explanatory.
They do state distancing themselves from the ID by trusting a third party service, but 3rd party ID service is still a thing.
Of course, this seems to be only after someone accuses you of being a bot and Reddit bothering to pay attention. Which may be almost no one.
Precisely. Any of the listed options is better than a captcha. None of the options are perfect, obviously, we’re using yesterday’s tech to solve a tomorrow’s problem, but it’s something, and it doesn’t immediately mean “privacy online is dead”.
Like, you verify the account and then give it away to a bot? My assumption is that the “proof of human” would be a unique identifier, meaning that once you’ve attached it to an account, you can’t use it to verify another.
There is a bot problem but ID checks are invasive, and you can stop the bots with things like Hcaptcha Passive and Turnstile which use POW to waste the CPU cycles of bots and look for signs of things like Selenium and Puppeteer controlling the browser.
This is not ID checks.
Passkeys and hardware attestation are also good as they require a fingerprint or face and bare metal hardware instead of a VM, but Spez also wants to introduce things like the Worldcoin Orb and IDs as well which are too invasive IMO.
FFS, do you guys just not understand a thing you’re reading, or flat out refuse to read anything on Reddit?
Who says anything about ID checks or HCaptchas?
Well, it looks like they state three options:
Passkeys. This won’t work over a medium term, period. It’s tantamount to saying that SSH keys prove someone is human. If there’s enough interest, they’ll just make a software passkey solution that can work. Passkey being “human interactive” is purely a client-side construct.
Biometric services. Strictly speaking, not an ID but it’s not hard to imagine leveraging capturing biometrics to an ID like scenario.
Government IDs. Well that’s self explanatory.
They do state distancing themselves from the ID by trusting a third party service, but 3rd party ID service is still a thing.
Of course, this seems to be only after someone accuses you of being a bot and Reddit bothering to pay attention. Which may be almost no one.
Precisely. Any of the listed options is better than a captcha. None of the options are perfect, obviously, we’re using yesterday’s tech to solve a tomorrow’s problem, but it’s something, and it doesn’t immediately mean “privacy online is dead”.
I’d rather put up with a captcha than do any on those other things, especially if it was temporary. Or maybe they could do something like Anubis
Why would it be temporary?
One you prove your not a bot. Hopefully it work that way, but I suppose it may not
Not sure I understand what you mean.
Like, you verify the account and then give it away to a bot? My assumption is that the “proof of human” would be a unique identifier, meaning that once you’ve attached it to an account, you can’t use it to verify another.