designing a workflow preventing from faking users

designing a workflow preventing from faking users

Suppose we have a web-service with this workflow :

  • the users logs in, and this create public/private keys. These are stored in the browser

  • the user clicks on some button, and this sends a transaction on the bitcoin network

however, I want to prevent the admin from creating a pair of key and invent users and act on behalf of them. We suppose in the following that user emails comes from a mailing list, there are trusted, i.e. they corresponds to some real non faked users and they have not already pair of keys.

-> So, I have to bind the transaction with the email. I can add a hash in the user transaction corresponding to the user email signed by his private key.

-> but still the administrator can do that with some random pair of keys.

-> so we could for example send a transaction to NameCoin and then bind an email bound to a public keys. At least, this will ensure that one and only one pair of keys usage happens on behalf of a user. If an other similar transaction happens, that we can choose to discard this user.

Since this is not satisfactory, is there a way to ensure that emails are effectively sent by the administrator. I may think that for gmail or microsoft or whatever know mail providers, there is some encryption signing that ensures that the email passed through their servers. Even in that case, how to get this information and more generally how to build a universal solution ?

http://ift.tt/2j9jzFC

Comments

Post a Comment

Popular posts from this blog

Antminer D3 Blissz Modified Firmware For Improved Performance

Image
Antminer D3 Blissz Modified Firmware For Improved Performance It is not a secret that the default firmware and even settings for many of the ASIC miners that come out from the manufacturers are hardly with the best/optimal settings and often they are also limited in what you can tweak yourself. So some more advanced users take the matter in their hands in order to further optimize for performance and or stability and reliability and even add extra features that help owners of the devices to get better profit or higher profit for example. One such case is the Antminer D3 Blissz Modified Firmware for the X11 ASICs being produces by Bitmain that you might want to give a try if you have even at least one of these ASIC miners. The custom firmware promises up to 20% lower power usage and some extra features such as ASIC voltage settings per chain as well as the ability to overclock or underclock per chain as well as more control on fan operational speeds. There are some usability improveme...
Read more

ETH To The Moon / Bank of England Cryptocurrency? / BTC Dominance / More (The Crypt0 Minute)

Image
ETH To The Moon / Bank of England Cryptocurrency? / BTC Dominance / More (The Crypt0 Minute) ►Please LIKE This Post On Steemit: http://ift.tt/2qkh4Yb Piano Instrumental By Omar Bham (Crypt0) 👍 Thank You Very Much For Watching This Video! Don't forget to smash those LIKE & SUBSCRIBE buttons :D 🎩►Become a Crypt0's News Patron: http://ift.tt/2vDXHXD ⛄►Check Out Our New Crypt0's News Amazon Storefront For Recommendations: http://ift.tt/2Br4nPB 🙇HELPFUL LINKS ►ICOs Raise One Billion Dollars In A Month: http://ift.tt/2A91Qow ►Huobi Is Now Headed To Japan: http://ift.tt/2Cbqk27 ►Verge Transaction IP Addresses: http://xvg.keff.org/ ►ScienceGuy's ETH Price Target: http://ift.tt/2CuwgGW ►Long Blockchain Corp: http://ift.tt/2BTmAFw ►Why 2018 Will Be The Year Of The Blockchain: http://ift.tt/2A2Krha ►Ethereum's Scalability Subsidy Program: http://ift.tt/2qgDNnS 🌌►Grab A Crypt0 T-Shirt: http://ift.tt/2khihd5 🚩🚩🚩A MUST HAVE ►Ledger Nano S (Top Multi-Asset Hardware Wal...
Read more