Need volunteers to test app - Reputation / Proof-of-Human without KYC

TLDR: I’ve built a Reputation tracking tool that any developer, web2/web3, can use to track user reputation in their app, platform, or community. I need ~50 volunteers to stress-test it, so I get insight into cycles consumption and vulnerabilities to exploitation.

Hello everyone, I’m the founder of Solutio (https://solutio.one/) and in my free time I built a reputaiton tracking tool that I want to use for Solutio to handle token distribution to users that actually help grow the platform. But I need to test it, see how it performs, and help trying to break it. I need volunteers to login, try voting, try cheating, and let me know of your experiences.

Who is it for?

The tool works by users and platforms voting on each-other, and can be used in many ways

• make sure giveaways go to real users
• track buyer/seller reputaitons on ebay/shopify-like platforms
• build web3 social media in which users gain Reputation in the topics they are posting in. Imagine an app where a developer has more influence in topics about programming languages he regularly posts in, while an environmentalist might have more influence in topics related to his expertiese. Can even be used for web3 blogging platforms.

How does it work?

• Users vote on each-other
• Votes carry reputation
• Votes from users with higher reputaiton, carry more weight
• Anyone can create reputaiton #tags, and user reputation is exclusive to that tag.
• There’s a minimum reputation users must reach for their votes to start “counting” (keeps bots and fake accounts at bay)
  • Which makes it extremely resistant to bots
• If a user’s reputation changes, his future votes AND is past votes update to reflect the change.
  • This means, if a bad actor upvotes fake-accounts or bots, and is caught, as users downvote his account, the votes he made also start losing power.
• Votes decay over time
• Each reputation #tag can create its own rules for vote decay over time, minimum thresholds for being trusted, and minimum number of users to end reputation bootstrapping phase
  • During bootstrapping, everyone’s votes count, after bootstrapping is over, only the votes from trusted users count)
• Backend is built using Juno, which means I can set the database to “private” after the tests, at which point not even I will have access to private user information.
  • I could even allow users to create #tags in which users can’t see which account cast which vote (accounts are already annonymous unless the user reveals who he is, but this could be an additional level of annonymity).
  • I can allow users to create “personas” for each community, so users can keep work and private life reputaitons apart. Gain reputation at #onlyfans without leaking over to your #icp reputation.

What makes it different?

• it is completely annonymous, real proof of human without KYC
• any app can use it like they wish, under their own rules. embed it into your app in any way that makes sense to you. Maybe you vote on users each time they buy, maybe users vote on each-other automatically after successful transactions, or maybe it is just a ‘like’ button that carries a vote in the #tag a topic is about. Use it however you like.
• completely free, and completely open source (though once cycle costs get too high, I might offer big accounts a way to pay for their cycles). This is NOT a for-profit app. I built it to benefit the ICP community.

How can you help?

I built it, and now I need a group of people to help stress test it, and try to exploit it. I want answers (and question) about:

• how much cycles does it use? I highly opimized the code, but the fact that old votes weight changes according to the user’s current reputation means a lot of recalculations over time. I used a clever approach with a mix of caching, partial updates, and ‘calculations as users are queried’ but I’m still curious to see how intensive it can get.
• How easy is it to exploit? Users usually find a way, but I am hoping that this ‘community based’ reputaiton system makes it hard for bad actors to gain reputation without ever being caught. Whenever a bot is found, users can see who upvoted him, and follow the trail to downvote the accounts that are creating the mess.
• What kind of features would app developers want for this? And is anyone interested in integrating? This is a Juno satelite with Candid endpoints, meaning anyone will be able to use this in their app.

So if you’re interested, please let me know. No technical knowledge required, it is a very easy web-interface that anyone can use.

How cool would it be if ICP is the first app to crack proof-of-human without KYC, completely annonymous, and bot resistant?

image1200×682 77.7 KB

If you want to help, the test is live:

Sounds interesting. When I was more active on TAGGR I remember there being a lot of bot and/or sybil accounts (they were called farmers, as they were upvoting themselves to farm the TAGGR rewards distribution).

How do you tackle this sort of scenario? What’s to stop a user giving themself a high reputation via other accounts, and creating their own inner circle of accounts that bootstrap themselves with high reputation? How would genuine users spot fake accounts of this sort, and how would they outvote accounts that already have high reputation?

Great question! That’s exactly what I’m trying to prevent with my approach.

There’s a minimum reputation users must reach for their votes to start “counting” (keeps bots and fake accounts at bay)

• If a user’s reputation changes, his future votes AND is past votes update to reflect the change.
• This means, if a bad actor upvotes fake-accounts or bots, and is caught, as users downvote his account, the votes he made also start losing power.

So in practice: bots can participate and vote, but since their reputaiton is 0, any votes they cast will not be included in the calculaitons. So they can vote 1000 times, and it will have the same result: 0 reputaiton gained.

Users must reach a minimum reputaiton threshhold for their votes to start being included in calculations, and they can only gain reputation by being voted by other users with good reputation standing.

“But what happens if a user pretends to be honest, and starts upvoting bots after he has gained enough reputation?”

1. If you see a bot, you can check his profile, and see everyone who voted on him. You can then downvote those accounts.
2. If a user loses reputation, all past+future votes he cast also lose power. So by downvoting a single bad actor, you can take down a whole net of bots he has spawned.
3. And each community can set their own threshold, which decides how much reputation a user must reach for their votes to start counting.

image988×879 73.9 KB

So in practice it works like this:

• you create a new reputaiton #tag, and set the threshold to 100 users
• until that community reaches 100 users, everyone’s votes count.
• once the 100 users are reached, the #tag automatically restricts itself, and from there on, only the votes from reputable users count.
• new users need to be upvoted by existing users to reach trusted level.

A bit like Karma in reddit communities, except you can’t farm karma in the #memes tag and use that to post in the #ICP tag. Each community has its own reputation.

Does that answer your question? And more important: do you think it will work in practice? It will depend a lot on how vigilant the community is. I hope that “moderators” take on that role, and by reporting bad actors, get upvoted themselves, giving them more power to downvote bad actors and spamers.

Hey there!

I don’t want to discourage you - please, continue to develop wonderful stuff and don’t let anyone doubt your ideas.

But just as a piece of advice.
The most important reputation metric is money. Everything else is getting abused and re-sold to scammers easily on any platform (we recently started to encounter p2p merchants on Binance and Bybit selling their high-reputation accounts to scammers, who then use those accounts to money-launder via unsuspecting traders). So, it is better to focus on on-chain activity, staking and stuff like that. Something that implies you posess some value in your pockets.

The UI looks great, though!

I think almost anything that can be devised can also be gamed if the incentives are there, but that’s not to say that it’s not valuable to make gaming the system harder. I agree that what you’ve built looks great, and aims to solve a very prolific and important problem.

Perhaps things you could consider adding to it are how much stake is backing the reputation of each user (or take stake into account when establishing reputation), and also integrating with DecideAI for facial recognition would also be cool (another signal that could contribute to reputation).

Perhaps what you’re building could eventually become a one stop shop for a host of different measures and deterrents, and provide a comprehensive dashboard for all of this sort of stuff. Keep up the good work!

I also think the sooner you can try and put this to work somewhere, and gain some real feedback from real users, the better. @aligatorr89, could you imagine TAGGR ever making use of something like this?

Can only think of using DecideAI. For other domain actions - comments and VP have to be considered - definetelly not voting on “who is human”.

Can only think of using dAI for recognition. For other domain actions - comments and VP have to be considered - definetelly not voting on “who is human”.

As any great tool, I’m building this because I need it. I will launch a token for my app Solutio, and I need a way to decide transparently and fairly which users will get how much in allocaiton.

My goal as an app creator is to reward users who use, engage, and help grow the platform. Not users who have staked the most. I believe that is a mistake many app developers make: they lose sight of who is actually contributing, and who deserves to be rewarded.

It is about who contributes the most, not about who has the most $ or goes through facial recognition or a KYC process.

My app Solutio will automatically vote on users each time they:

• create a topic
• pledge tokens to a topic
• invite users to the platform
• create ideas
• follow ideas and topics
• comment on topics and ideas

And then I’ll distrubute tokens at regular intervals to the top engaged users.

That’s what I built the Reputaiton tracking app for. Because I couldn’t find a tool that does anything like that.

It is not about “voting on who is human”, it is about “voting on who contributes to the ecosystem”.

Face recognition and staking can be additional measures that can be embeded into the system. So for example: if an app values staking, or facial recognition, you can set it up so that each time someone does it, the app automatically votes on the user. DecideAI could automatically vote through my reputation API on every user that goes through the process. That’d be amazing. DecideAI could create a reputation tag #DecideAI and upvote any user that goes through the process.

That’s the beauty of this reputation API: any app can use it in whatever manner they think is best.

But I think it’ll probably be easier to just show you. Join the stress test, and let me know what works and what not.

And don’t worry: this took me ~2 months to build. If it’s useless I wont mind discarding it. But since I need this for my app, I thought I’d make it available to everybody else as well.

From what I understand, Taggr, already has something similar to what I’m building, except you’re actually rewarding users with tokens, not just ‘reputation’. So you wouldn’t need it for that part.

But it would be interesting to see a social media platform where user reputation gained in #ICP doesn’t carry over to other topics like Education or #sports. The point is: you could dynamically create a reputation for each #tag on your platform, and treat users differently depending on what is being talked about.

So for example: in a topic about Education, but people with good standing in that tag on top, but in a topic about #coding, prioritize the topics from people who have proven themselves in that area.

This would solve all your botting issues, since users would first have to gain reputation in a #topic. They would still be able to ‘like’ (vote) threads in other areas, but it wouldn’t carry monetary value in rewards until they’ve proven themselves.

I haven’t been on taggr lately so this might be out of date, but I hope it helps better understand how it is intended to be used.

• Yes, engagement with comments, reactions and VP is a metric.
• Indeed some tags cost more to use than other - based on how many people follow the tag.
• Botting issues were due to bad incentives, they are gone now.

I think you are solving very difficult problem, are you trying to offer it as a service ?

Yes, if by service you mean a sattelite every app can integrate with, to offer cross-app reputations.

For Ex: Good #ICP content on Nuance, could carry-over to Taggr, and vice-versa.

How much each app accepts from each-other, rules, decay, etc would be up to each app and how they set up their reputations.