Anonymous Authenticated Identity (AAID)
The technology behind Defora is AAID, Authenticated Anonymous Identity. It enables authentication and authorization of a unique user without requiring conventional identification, enabling a more secure and private experience for users.
The technology behind Defora was approached with a twofold aim: to create a better system of identification that did not require users to create an id and password which would be stored on the platform’s database, and to prevent a recorded, traceable digital footprint that could lead to bad practices and constrain individuals. Preventing a traceable digital footprint was important to ensure honest participation by users on Defora, and we use our patented AAID (Authenticated Anonymous Identity) technology to enable this.
Currently, for ease of use, onboarding on Defora is carried out by using mobile phone numbers to confirm whether you are a unique user. Once the Defora server verifies that the mobile phone number does not exist in its database, it generates a unique system generated permit that replaces the conventional identification and authentication approach which requires you to create an id and password which is then stored on the platform and in your device.
The unique system generated permit essentially operates as two halves of a puzzle, wherein the edges of the permit must align for successful user authorization, regardless of the actual script of the permit. One half of the permit is stored on the Defora server while the other is stored on your device. Both halves constantly change their scripts to add another layer of privacy and security, and even when the edges align to successfully authorize you to use Defora, the permit half stored on the Defora server is unaware of your real identity, authenticating the permit half stored on your device instead of you. When you are prompted to create a password, it is to access the permit half stored on your device which would then align with the permit half stored on Defora’s server, authenticating and authorizing you to access the platform. As a result, you will be prompted to always enter this password when you open the app even on the same device.
This technology offers us the ability to authenticate a unique account without having to store your id and password on our platform to create a database of user information that can be accessed by Defora. It also ensures improved privacy as this unique system generated permit serves as your identity on the platform, securing your information even in the unlikely event that our servers are compromised.
AAID and accessing Defora
What does that mean for my privacy on Defora?
Defora’s server generates a unique system generated permit via AAID that replaces the conventional identification and authentication approach which requires you to create an id and password which is then stored on the platform and in your device.
As you use Defora, Defora’s servers will generate a unique one-time system generated permit (UOSGP) for each activity, distinct and unlinked to the unique system generated permit which is used to authenticate yourself to access Defora. To ensure that your usage across activities and groups are private i.e., to ensure that your digital footprint is not traceable, while simultaneously allowing you to access your own feed and archived history logs, Defora uses homomorphic encryption to encrypt the unique one-time system generated permits.
Yes, we hold the patent to AAID, the technology used in Defora. The patent was registered and approved by the Korea Intellectual Property Rights Information Service (KIPRIS).
Yes. We are strongly committed to data security and privacy, and both our commitment and our AAID technology helps us stay on principle. We are currently in the process of acquiring the necessary certifications and establishing necessary infrastructure to comply with data related legislations.
Homomorphic encryption is a type of encryption that allows us to compute onto data that is already encrypted. This is crucial for AAID as the technology allows us to do two important and unique processes: 1) it allows us to check the eligibility of a user and authenticate them without accessing their private data i.e., you can use Defora without us having to access your private data each time, 2) it allows us to encrypt on the unique one-time system generated permit that each of your activities generates without us knowing the content of your activity – so your activity on the platform is secure even from us at Defora. If you’re interested to learn more, head on over to our Resources page to read our Security paper, or reach out to us directly!
You use Defora to primarily make decisions and make consensus, and participate in the process because you are part of a community or team, or because you care about the issue. We believe people will not troll or bully others especially when they are trying to get their point across and rely on other member’s support for their opinion to be supported. However, to prevent any possibility of trolls from capturing your attention and the conversation, we have a ‘mute’ option that hides all content written by the same member in an activity. There is also the voice feature which limits the number of times a member can contribute. We take online bullying seriously and you can also reach out to us and report any instances of abuse and we will take appropriate action as necessary.
©2020 All Rights Reserved. Apple and the Apple logo are trademarks of Apple Inc., registered in the U.S. and other countries. Google Play and the Google Play logo are trademarks of Google LLC.