Upala anti-sybil integration #7888
Comments
|
Moving the specs above here... There are two options that Upala can be integrated with Gitcoin. These options can be used as alternatives or as stages - one after another. Both options follow the same strategy which is explained below. The integrations are explained further. And some future thoughts are included even furtherer. Bribe bots to leaveAs proposed earlier in this tweet the strategy is as follows:
*Explode = run away with the score (money), delete Upala ID, delete Gitcoin ID. SetSetting the score for the first time is just guessing. But it makes sense to start with low scores for verification methods. It is fairly simple to increase the scores at any time. But If the scores are too high we'll see too many explosions from the start (and will not be able to do anything until attack window expires - presumably 1 hour). WaitAt this stage users are gonna explode, take their explosion rewards (which are equal to their scores) and delete both their Upala and Gitcoin accounts. This is the time to analyze stats. If a verification method is too easy to exploit, we'll see a lot of users verifying themselves and creating new gitcoin accounts just for the sake of explosion reward. That would mean that we have to lower that verification method score. And we can increase the score for stronger verification methods. RepeatHere are proposed global parameters to quickly asses and reset the score: Period. Time-frame during which the explosions analytics is gathered. We could tie this period to Matching Rounds or make it as short as 1 hour. The only constraint here is Upala's front-run prevention, which requires a 1 hour pause (bot attack window) before new scores take action. Explosion rate. Metrics for each verification method. Could be measured as ( total explosions reward payed ) / ( number of people verified ) Threshold. Desired explosion rate for every verification method. Step. A step or a factor by which scores are increased or decreased for the next period when crossing the threshold. BenefitsRefine your audience. As some users will decide to get the money rather than participate in Gitcoin there will be a number of bots leaving the platform. But the remaining ones are your super-users. They value their IDs higher than their scores. It is safe to give them more privileges. Metrics. Treat a new verification method as an investment and measure its "ROI". Compare explosion rate and activity of users withing the category. Fairer trust bonus. Tweak trust bonuses according to the price-of-forgery of a verification method. 1. Assess existing verification methodsIt's the first option of Gitcoin and Upala integration. Here we use current active verification methods to set Upala user score. After some Set-Wait-Repeat stats is gathered, we establish a fixed ratio between Upala score and trust bonus. Then reset all trust bonuses accordingly. Thus the trust bonus will reflect the trustworthiness of a verification method (as the score provided by the method represents its forgery price).
Boosted bonusWhen first introduced, Upala may provide additional scores to all other methods. This would create an additional incentive to use all verification methods and to use Upala (in order to start gathering stats early). 2. Add other verification methods through UpalaAnother way to integrate Upala is to have an Upala group with it's own verification methods. This could be used as an alternative to the above integration or as an extension of it. Any number of verification methods could be added here (those could be provided via Multipassport interface). *Existing users - the ones that existed before implementing Upala. 3. Use other Upala score providers (from future)Gitcoin may approve other Upala groups (not owned by Gitcoin) as its score providers. If a user manages to increase their score outside Gitcoin, their trust bonuses could be increased accordingly. Gitcoin as a score providerUpala score provided by Gitcoin group will be instantly available to other DApps if they chose to trust Gitcoin (why wouldn't they?). Gitcoin may charge DApps for this. Pretty cool!
...or Gitcoin may decide not to provide scores into the outside world. Tech details (for option 1)
Smart-contract draft here. Off-chain front-end, back-end - https://github.com/trustlines-protocol/merkle-drop More info:
Join us:
|
|
Working on this made me think of using Merkle drop on a protocol level. That would allow better anonymity, instant score assignment and updates. In terms of gas it is much cheaper for group managers, but more expensive for users. ...which is kinda pivotal and needs a stress-test. Would be very happy to hear your thoughts on that. Probably Merkle drop is not even the best solution. What do you think would be better? Is it a good idea at all to ditch the old scoring mechanism at all? Please check out the doc. https://www.notion.so/UIP-15-Protocol-level-Merkle-drop-305af5fbb2f34a24a93a5bf35e7ff28a |
|
@porobov are you still interested in doing this integration? i dont see any open PRs so i think it must not have happened |
|
@owocki OMG sorry for the long reply. The notification went into spam on Gmail... I am certainly interested in integration. But I'm still building the protocol. |
|
maybe when the API is done we can revisit?
…On Mon, Mar 22, 2021 at 2:51 AM Petr Porobov ***@***.***> wrote:
@owocki <https://github.com/owocki> OMG sorry for the long reply. The
notification went into spam on Gmail...
I am certainly interested in integration. But I'm still building the
protocol.
A lot of work ahead (roadmap
<https://www.notion.so/Roadmap-848e6b9a047b4b6da610f1d5ad3f6edd>), and
I'm trying hard to strip unnecessary things off.
Also having the first Upala community call
<https://medium.com/six-degrees-of-separation/your-help-needed-db9464bc3030>
this week (Wednesday, March 24th, 12:00 PM ET). Trying to build community
and team...
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#7888 (comment)>, or
unsubscribe
<https://github.com/notifications/unsubscribe-auth/AAD5PCOGBON6RIIENR5QBDTTE4AHLANCNFSM4TXW644A>
.
_________________________________________
gitcoin is live and has generated over $11.1mm for Open Source Software - see
our results <https://gitcoin.co/results>
|
|
Sure! Will let you know!
пн, 22 мар. 2021 г. в 20:45, Kevin Owocki ***@***.***>:
… maybe when the API is done we can revisit?
On Mon, Mar 22, 2021 at 2:51 AM Petr Porobov ***@***.***>
wrote:
> @owocki <https://github.com/owocki> OMG sorry for the long reply. The
> notification went into spam on Gmail...
>
> I am certainly interested in integration. But I'm still building the
> protocol.
> A lot of work ahead (roadmap
> <https://www.notion.so/Roadmap-848e6b9a047b4b6da610f1d5ad3f6edd>), and
> I'm trying hard to strip unnecessary things off.
> Also having the first Upala community call
> <
https://medium.com/six-degrees-of-separation/your-help-needed-db9464bc3030
>
> this week (Wednesday, March 24th, 12:00 PM ET). Trying to build community
> and team...
>
> —
> You are receiving this because you were mentioned.
> Reply to this email directly, view it on GitHub
> <#7888 (comment)>,
or
> unsubscribe
> <
https://github.com/notifications/unsubscribe-auth/AAD5PCOGBON6RIIENR5QBDTTE4AHLANCNFSM4TXW644A
>
> .
>
--
@owocki <http://www.twitter.com/owocki>
_________________________________________
gitcoin is live and has generated over $11.1mm for Open Source Software -
see
our results <https://gitcoin.co/results>
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#7888 (comment)>, or
unsubscribe
<https://github.com/notifications/unsubscribe-auth/ACLCCUAAZBEEG75OX27RCHDTE5XZTANCNFSM4TXW644A>
.
--
Peter Porobov
Upala Digital Identity <https://upala-docs.readthedocs.io/en/latest/>
+7(909)713-3514
GMT+4
|
specced at upala-digital-identity/upala#3
The text was updated successfully, but these errors were encountered: