Dunno the space, so maybe I'm horribly wrong, but — it seems to me that a highly effective ID verification system that's highly resistant to fraud and theft (proactively & reactively) would be a great product for a solid technical founder, & all the pieces are prob already extanthttps://twitter.com/webdevMason/status/988780020070989824 …
-
-
Replying to @webdevMason
This and your credit reporting tweet are pretty relevant to me (technical founder of both http://cognitohq.com and http://bloom.co ). Will share a few thoughts in followup tweets
1 reply 0 retweets 1 like -
Replying to @backus @webdevMason
For fraud, people tend to use http://siftscience.com and in-house data science/ML for automatic detection. Prevention falls more to 2FA, detecting unrecognized devices, etc. If you want to get extreme, you link user's phones and then also monitor to see if their phone is ported.
1 reply 0 retweets 1 like -
Replying to @backus @webdevMason
Linking in external devices is also a part of identity. Part of Cognito's goal is to center identity around phone number and not SSN when possible since you can verify someone is in control of their phone. SSN is often still required though due to KYC.
1 reply 0 retweets 1 like -
Replying to @backus @webdevMason
John Backus Retweeted John Backus
Outside of KYC, we'd be better off if everyone could authenticate and prove who they are with private keys. It just comes down to network effects and usability which are held back by each other. Motivation behind this tweet:https://twitter.com/backus/status/987063369730408448 …
John Backus added,
2 replies 0 retweets 1 like -
Replying to @backus
Could you talk a bit about why there's a usability vs. network effects tradeoff? (This is super interesting!)
1 reply 0 retweets 1 like
No one does login w/ private key (vs password) because there aren't easy tools shipped w/ browsers. A startup would have to sell a weird unproven alternative to passwords and for what gain? Big co would rather build a moat and data treasure trove via login with FB/Google/FaceId
-
-
Replying to @backus @webdevMason
Glad it is interesting! Happy to answer other questions on this stuff. The legal identity stuff is more just info about the industry I've learned over time. The stuff about why we don't use private keys is much more personal opinion
0 replies 0 retweets 0 likesThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
Passwords → Signatures
Login with FB → Global login via managed keychain
Verified by Twitter → Verified by public key