Yes, but I think we are quite far from any kind of attacks. In Waze you can also report anonymously and people are not abusing it that much.
I prefer not to overengineer and rather release sooner. We'll deal with sibyl attacks when they come.
Login to reply
Replies (3)
Agreed, best to get the idea out there.
Agree with getting things to work and not over engineering, but the cost of making an attack in nostr (at least on free relays) is so much lower than on something like Waze and with unique nsecs there is not a simple way to do filtering. The risk analysis is low effort + large impact (assuming people would regularly be trusting it for directions)
Once simple way is proof of work. There's a NIP for that. You can have the client mine the event for like, 1 second, 5 seconds, whatever. If it runs in the background people won't even notice, but it'll slow down spam.
However this doesn't solve the problem of people throwing up random non-existent reports. But what if you just used consensus instead? This only applies once there's a serious network effect, but you could only show items that X number of people have reported/agreed exist. That's probably what waze does anyway.