Please review and answer the following 2 questions on the images in this discuss post.
Do the images accurately reflect system behavior of showing profile information?
Do you have any suggestions to mitigate impersonation?
- To verify another user that has added you as a contact or set to display their ENS name in chat, you need to go to Profile view. Only in Profile view you will see their pseudoanonymous random name (a.k.a unique identifier) that you can use to verify they are who they say they are. At the same time we want to avoid having an overload of information inside a chat.
To help people understand what information they expose when participating in a chat or adding people as a contact, it’s important to have an accurate picture of this. Such that we can communicate it at various points in the UI, create transparency, awareness, and help people make informed decisions.
In detailing UI designs it seemed an overal picture of this profile information structure was missing. The images below provide this picture. They are intended to show in what cases a random name, chosen avatar, potential ENS name is exposed given our current implementation.
Onces accurate it can be used to:
- Make sure Status UI reflects actual system behavior.
- Explain people how Status helps you manage your online identity.
- Assess impact on the UI whenever we want to introduce changes to this structure, for example adding ENS name as a chat name.
The current profile settings allow to create 3 different states. While new designs for Profile are in progress, these states remain the same.
|Image 1||New profile - Random name and random avatar|
|Image 2||Profile with a name specified|
|Image 3||Profile with a name and picture (avatar) specified|
|Image 4||Profile with a name, picture, and ENS name specified|
Image 1 - New profile
- For both contacts and non-contacts random name and avatar are exposed in profile view and chat.
Image 2 - Profile with name specified
- For both contact and non-contacts random avatar is exposed in profile view and chat.
- For non-contacts random name is exposed in profile view and chat.
- For contacts specified name AND random name is exposed in profile view.
- For contacts only specified name is exposed in chat.
Image 3 - Profile with a name and picture (avatar) specified
- For non-contacts random name and random avatar is exposed in profile view and chat.
- For contacts specified name and avatar is exposed in chat AND random name is exposed in profile view.
Image 4 - Profile with a name, picture, and ENS name specified
- When an ENS name is specified (i.e. verified), it can be set to be displayed in chat or not. This is a global setting that would change the view for both contacts and non-contacts. If ENS name is set to display in chat:
- For contacts and non-contacts, ENS name is exposed in chat.
- For non-contacts, ENS name, random name, random avatar are exposed in profile view.
- For contacts specified name, specified avatar AND random name is exposed in profile view.
Bonus 1. Trusted contacts marked in chats with a checkmark
To add even more power to the contact list in Status, we can rename it to “Trusted Contacts” and add a check icon next to their names so that users could notice that
Bonus 2. Nicknames
We might add a feature so that users could rename other users themselves. For example i can rename “Fluffy Banana Fender” to “Jarrad” or “Crypto-trader from Berlin”
Credits to @andmironov for reverse engineering and visualizing the current structure.