You are viewing a single comment's thread from:

RE: AskSteemit: What change would you like to see happen on Steem on the technical level?

in #steem6 years ago

There are so many. Smart contracts, quantum safe identity, ephemeral active wallets... but you asked for one, so.... more granular authorisation capabilities at consensus layer.

Today, with my private posting key you can:

  • vote
  • post
  • follow and unfollow (custom JSON in general)
  • set beneficiaries and other comment options
  • claim rewards

Bare consensus rules should allow me to let you vote, but not post. They should allow me to let you post, but not vote or unfollow my followers. I understand there are technical trade-offs here but there are some that I think are worth it.

There is the WISE project which is working on a really neat privatised implementation of granular permissions, but it requires either running a "server" with your key to listen for requests, which are accepted or refused according to rules you specify, or trusting someone to run one for you. This is sub-optimal for ordinary users as it requires either trust or tech-savviness. In general I think we should work to make consensus as feature-complete as possible, and minimise the need for centralised trust.

6 years ago in #steem by
$0.41
  • Past Payouts $0.41
  • - Author $0.31
  • - Curators $0.10
3 votes
Reply 3
Sort:  
  • Trending
    • [-]
     6 years ago  

    Can you please explain this?
    Bare consensus rules should allow me to let you vote, but not post. They should allow me to let you post, but not vote or unfollow my followers.🤔

    Posted using Partiko Android

    $0.04
    • Past Payouts $0.04
    • - Author $0.03
    • - Curators $0.01
    1 vote
    Reply
    [-]
     6 years ago  

    I will give it a shot. Right now there are three types of permissions recognised by the blockchain:

    • active: allows things like moving money, voting for witnesses, powering up, powering down, and updating your account parameters.
    • posting: allows things like posting, voting on posts and comments, following, editing, etc.
    • owner: allows changing your other keys. If someone else gets your owner key it is very bad news.

    Posting authority, for example, is what you give to apps like Partiko so that they can do things you asked them to do. However, the way things work right now, there is no way to give an app the power to vote without also giving the power to post as well, or vice versa.

    When one popular community was hacked earlier this year, the posting authorities held for those users meant that the hackers were able to make upvotes from all the users' accounts. If we could give apps the right to post for us without giving them the right to vote, we could dampen the impact of another such incident.

    Other new, exciting possibilities would open up as well; a new "market" authority for example, with the ability to make bids on the internal market but not to move funds, could power a mobile trading app.

    $0.03
    • Past Payouts $0.03
    • - Author $0.02
    • - Curators $0.01
    2 votes
    Reply
    [-]
     6 years ago  

    Much appreciated! Yes , I was not aware of the reason why that incident happened and you come up with a good idea. 🙌

    Posted using Partiko Android

    $0.00
      Reply