[Cryptography] athletic event verification?

realcr realcr at gmail.com
Mon May 22 13:24:07 EDT 2017 

In my opinion, if I own the measuring device, with enough effort I should
be able to cheat the sensors and make it sign over fake achievements.
My suggestion is to go for some kind of trusted social network, with
witnesses that see you achieve your athletic achievement and sign over it.
If enough friends of your friends have witnessed someone's athletic
achievement, maybe you can believe it too.

I have heard a similar question asked from a different angle: Can we create
a mobile app where you take a picture of a car that parks in a non parking
area, and it will give him a fine automatically?
How can we make sure no one can cheat the app?

real.

On Sun, May 21, 2017 at 4:44 PM, Henry Baker <hbaker1 at pipeline.com> wrote:

> [I'm asking this question for academic interest only; I have no financial
> interest in fitbit or equivalent, or strava.com or equivalent.]
>
> Suppose that one would like to "register" some achievement on a
> leaderboard -- e.g., something like Strava.com.
>
> Are there any crypto techniques that might be useful to make it harder to
> put up fake achievements?
>
> Presumably, there are a minimum number of achievement fields that might be
> important:
> name, address?, some-sort-of-id?, date of achievement, location of
> achievement, distance of achievement, time of achievement, etc.
>
> Would it be possible to include certain hidden information -- e.g.,
> address or SS# -- that would participate in the signature, but not be
> readily accessible to someone listing the leaderboard or even
> cryptographically verifying the claim?
>
> One might want to log *witnesses*: witness1 signature, witness2 signature,
> etc.
>
> As to date info, there are the usual *notary* issues, which might involve
> spending a microbitcoin to nail down the event time to a small portion of
> the bitcoin blockchain.
>
> I would assume that the person claiming the achievement might have to
> cryptographically sign the achievement with his/her own PKI info; ditto for
> any "witnesses".
>
> Perhaps one might want to include some sort of *signed photo* or *signed
> video* of the achievement.
>
> Any other ideas of what evidence might be gathered and signed in order to
> "prove" the achievement?
>
> Could any *equipment* be used as a witness?  E.g., could a mechanical
> *treadmill* or stationary *bike* (or other gym equipment) electronically
> sign an achievement?
>
> Blood or DNA tests "signed" by the testing equipment??  :-)
>
> _______________________________________________
> The cryptography mailing list
> cryptography at metzdowd.com
> http://www.metzdowd.com/mailman/listinfo/cryptography
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20170522/ca23d63d/attachment.html>

More information about the cryptography mailing list