世界币和全球数字身份系统的危险

Worldcoin, the ambitious brainchild of Open AI CEO Sam Altman and two of his partners, has been marred by controversies since it debuted in late July last year.

Worldcoin, a brainchild of OpenAI CEO Sam Altman and two of his partners, has been collecting biometric data since its debut in late July last year in an effort to establish a global digital ID system.

The project has drawn mixed reactions, with some praising its approach to decentralized identity and others expressing concerns about its data collection practices.

Despite the controversies, the project has managed to expand rapidly, with 119 ‘orbs’ – a spherical device that scans a user’s iris—across 18 countries within the first few months and now plans to increase that number to 1500 globally. Meanwhile, the World App has raked in over 10 million users.

To better understand the implications of Worldcoin’s biometric data collection efforts and gain insights into the broader challenges involved in creating secure and efficient identity verification systems, crypto.news reached out to Sebastian Rodriguez, chief product officer at decentralized identity platform Privado ID, for his perspectives on the matter.

Here’s what Rodriguez had to say on the subject:

What are your thoughts on Worldcoin’s biometric data collection efforts?

Worldcoin has recently announced that they will delete all the biometric data and distribute it in a MPC network. This removes one of the major concerns about data concentration from the technical point of view.

Worldcoin also uses nullification to protect the user against cross-application tracking, so technically speaking, we consider the new Worldcoin approach technically secure.

Do you see any shortcomings with the project’s current approach to security?

Security is more complex than its technical component – it’s a property of the entire solution (technology, people, processes and power structures). In our opinion, Worldcoin is using many of the right cryptographic primitives to achieve privacy and security, but they are not following the principles of decentralization and transparency that most Web3 projects embrace.

They have made efforts to open source most of their technologies (including hardware to a certain degree), but the governance of the project, its long-term goals and tokenomics are still a source of concern.

Basically, their model only works if they become a monopoly for proof of uniqueness – this is a type of credential (when it’s based on non-standard biometric templates) that can only be provided by a single provider. It’s not based on national ID documents (that would allow for multiple providers of Identity Verification) but on a non-standardized biometric hash database controlled by a single private organization.

Worldcoin claims that Secure Multi-Party Computation will enhance data privacy and security by distributing biometric data across multiple parties. Do you believe this approach can effectively address the ethical concerns?

No. Technical security should never stop the ethical debate around the implications of a unique identifier that can’t be changed for my entire life. This is an identifier that I can’t deny to have; I can be forced to present, and I can’t change. The implications are deep and, in some cases, dangerous.

Despite the controversies, Worldcoin has garnered considerable attention. What do

Every tokenized project is susceptible to speculation, and Worldcoin is no different. They are also linked to Sam Altman and OpenAI, which has a “winner” aura that, in my opinion, has attracted controversy and investor interest at the same time.

There is a sentiment that OpenAI is investing in a problem they are helping to create (synthetic identities) that is both ethically reprehensible and economically attractive.

Can identity verification systems be enhanced in security and efficiency while minimizing reliance on biometric data?

Biometrics is at the core of all identity systems, even National ID and Passports. It’s not about the technology, but about who is the source of trust and how centralized it is.

We believe that governments should play that role, and with projects like EUDI [the European Unitons’s digital identity solution] it’s going to become more available for many citizens. Some alternatives are based on networks of trust (social graphs, p2p vouching, etc.), but none of these has seen mass adoption so far.

From your experience at Privado ID, what are the key considerations for creating identity solutions that align with international data protection standards?

我们倡导互操作性的开放生态系统。将所有内容集中在一个身份提供商中总是很诱人（更快、更容易、更简单），但我们需要允许竞争和本地身份提供商建立一个健康的开放生态系统，避免权力集中，提供选择和替代方案，并且还可以适应当地法规。

举个例子 - 将年龄验证添加到我们的 Google 或 Apple 帐户并通过我们的手机或电子邮件帐户完成验证是非常诱人的。但这将为这些公司提供庞大的数据库，记录我们使用这些凭证的每个地方。它也可能不会完全符合有关该主题的每一项当地法规。拥有可互操作的年龄验证提供商生态系统

以上是世界币和全球数字身份系统的危险的详细内容。更多信息请关注PHP中文网其他相关文章！