Crypto idea. Pls tell me why it's retarded.
I set up a company (or the government does) and generate a bunch of long hashes for each person. The has will consist of two components, H1 and H2, each random long strings.
Each person can come to me, show their ID and take out exactly one hash (made of 2 parts). There would be a large large basket full of printed hashes so I would not know which hash you took only that you took one and won't take any more (because you've registered with your full name.
Now with your hash, you can use it to register on websites. The website tells you its unique ID, called WID. Now using your H1, H2, and WID you generate a code Q and send it to the website. The website sends a query to my server with H1, WID and Q and verifies that indeed Q corresponds to a real person by finding H2 corresponding to H1 and applying the same crypto function the client did.
Now you have registered on a website anonymously and yet the website can be sure that you are a unique person that hasn't registered there before.
What's wrong with this?
I set up a company (or the government does) and generate a bunch of long hashes for each person. The has will consist of two components, H1 and H2, each random long strings.
Each person can come to me, show their ID and take out exactly one hash (made of 2 parts). There would be a large large basket full of printed hashes so I would not know which hash you took only that you took one and won't take any more (because you've registered with your full name.
Now with your hash, you can use it to register on websites. The website tells you its unique ID, called WID. Now using your H1, H2, and WID you generate a code Q and send it to the website. The website sends a query to my server with H1, WID and Q and verifies that indeed Q corresponds to a real person by finding H2 corresponding to H1 and applying the same crypto function the client did.
Now you have registered on a website anonymously and yet the website can be sure that you are a unique person that hasn't registered there before.
What's wrong with this?
