This page outlines a multi-layered approach to preventing bots and bad actors from infiltrating a federated network of voluntary associations, where each group can be formed and operated via a mobile app connected to a homelab server. Each layer contributes to defense-in-depth, where no single point of failure allows bots to compromise the network. The system is designed to be inclusive, privacy-aware, and modular.
# Description of Layers - Onboarding Layer: Invite-based or approval-based joining processes that prevent anonymous or mass registration. - Behavioral Layer: Light client-side detection of human vs. bot patterns (tap delays, scroll events, etc). - Backend Layer: Rate limiting, IP filtering, device fingerprinting, and flagging anomalous activity patterns. - Social Trust Layer: Peer-to-peer vouching, progressive trust, and web-of-trust scoring. - Action Cost Layer: Requires the user to perform a meaningful or creative action to proceed, like pledging a task. - Proof of Personhood Layer: Optional integration with decentralized or biometric proof systems like BrightID or World ID. - Delegation Layer: Legal or collective authority is only granted to trusted and validated humans who act as delegates.
# Diagram
digraph LayeredDefence { rankdir=LR; node [shape=box style=rounded fontsize=11]; subgraph cluster0 { label="Client-Side" tooltip="User-side defences in the mobile app"; Onboarding [label="Onboarding Layer" tooltip="Invite-only or approved sign-up"]; Behavioral [label="Behavioral Layer" tooltip="Tap/scroll analysis, human time lags"]; ActionCost [label="Action Cost Layer" tooltip="Pledge or complete a simple task"]; } subgraph cluster1 { label="Server-Side" tooltip="Backend and federated homelab controls"; Backend [label="Backend Layer" tooltip="Rate limits, IP bans, device fingerprinting"]; SocialTrust [label="Social Trust Layer" tooltip="Peer vouching, web-of-trust"]; } subgraph cluster2 { label="Optional Identity" tooltip="Higher-assurance identity checks"; ProofOfPerson [label="Proof of Personhood Layer" tooltip="BrightID, World ID, etc."]; } subgraph cluster3 { label="Legal Delegation" tooltip="Legal and collective authority layer"; Delegation [label="Delegation Layer" tooltip="Chair or elected rep speaks for group"]; } Onboarding -> Behavioral; Behavioral -> ActionCost; ActionCost -> Backend; Backend -> SocialTrust; SocialTrust -> Delegation; ProofOfPerson -> Delegation; }
# Notes This model assumes different groups may adopt stricter or more relaxed defense layers, depending on their risk tolerance and desired openness. The system encourages **local autonomy with federated safeguards**. - Social Trust Layer enables clusters of verified members to trust new joiners more quickly. - Proof of Personhood Layer is optional but available for high-risk or high-power groups. - Delegation Layer ensures legal and governance power only flows through trusted humans.
# Sources
- brightid.org 
- worldcoin.org
- hcaptcha.com