[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Page MenuHomePhabricator
Create Task
Maniphest T250314

Investigate Privacy Pass for Wikimedia Sites
Open, LowPublic
Actions

Description

https://privacypass.github.io/

Privacy Pass interacts with supporting websites to introduce an anonymous user-authentication mechanism. In particular, Privacy Pass is suitable for cases where a user is required to complete some proof-of-work (e.g. solving an internet challenge) to authenticate to a service. In short, the extension receives blindly signed ‘passes’ for each authentication and these passes can be used to bypass future challenge solutions using an anonymous redemption procedure. For example, Privacy Pass is supported by Cloudflare to enable users to redeem passes instead of having to solve CAPTCHAs to visit Cloudflare-protected websites.
The blind signing procedure ensures that passes that are redeemed in the future are not feasibly linkable to those that are signed. We use a privacy-preserving cryptographic protocol based on ‘Verifiable, Oblivious Pseudorandom Functions’ (VOPRFs) built from elliptic curves to enforce unlinkability. The protocol is exceptionally fast and guarantees privacy for the user. As such, Privacy Pass is safe to use for those with strict anonymity restrictions.

Would this be benficial for us?

I note, it could be more useful in conjunction with T250227: Investigate and evaluate hCaptcha to replace Wikimedia's Fancy Captcha

Related Objects

Event Timeline

Reedy created this task.Apr 15 2020, 7:45 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptApr 15 2020, 7:45 PM
DannyS712 subscribed.Apr 15 2020, 7:46 PM
Peachey88 subscribed.Apr 16 2020, 9:46 AM
Reedy mentioned this in T250227: Investigate and evaluate hCaptcha to replace Wikimedia's Fancy Captcha.Apr 16 2020, 1:31 PM
Platonides subscribed.Apr 16 2020, 9:44 PM

If a third party would be presenting our challenges, it could help making them not be able to link the requestors of captchas (for which they would have IP addresses, run js, etc.) and the actual wikipedia (since the token will be redeemed at a later date).

I would find it more useful for e.g. voting, where you would issue limited tokens (one per account), and have a different party tally them, both of them unable (even if colluding) to link the authenticated user to the vote they issued.

Platonides added a comment.Apr 16 2020, 9:53 PM

https://github.com/WICG/trust-token-api seems to be another project doing basically the same thing.

Reedy added a comment.Apr 16 2020, 9:59 PM

This might be something to stall and look at later when things are more "standardised"

SOlyoh21 closed this task as Resolved.Apr 22 2020, 1:54 PM
SOlyoh21 subscribed.
Reedy reopened this task as Open.Apr 22 2020, 1:58 PM
JFishback_WMF triaged this task as Low priority.Apr 27 2020, 3:03 PM
JFishback_WMF moved this task from Incoming to Backlog on the Privacy Engineering board.
Reedy moved this task from Incoming to Back Orders on the Security-Team board.Apr 27 2020, 3:06 PM
Tgr mentioned this in T281397: Test trust tokens as a captcha alternative for Wikimedia.Apr 28 2021, 8:29 PM
Tgr subscribed.

See also T281397: Test trust tokens as a captcha alternative for Wikimedia.

JFishback_WMF removed a project: Security-Team.Nov 3 2021, 7:03 PM
sbassett added subscribers: Maryana, sbassett.EditedJul 20 2022, 10:32 PM

A couple of updates:

  1. Via @Maryana, at the recent WWDC, Apple presented a new Privacy Pass-like technology they are calling Private Access Tokens (not to be confused with Personal Access Tokens). And there's a related blog post about Fastly's implementation.
  2. There appears to be yet another new captcha system, referenced on the Fix Wikimedia Captchas task: T241921#8092659. This seems promising though new and not likely battle-tested. I'm also not seeing where it supports Privacy Pass or similar functionality, as hCaptcha does.
kostajh subscribed.May 16 2023, 7:23 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits