1. Context

    In August 2022 a Metaverse Integrity Summit was held to 1) understand the current state of integrity tooling, 2) identify gaps in product and processes, and 3) set goals to close those gaps. The goals span three pillars: scaled, specialized, and measurement.

In H2 each pillar made progress against these goals that resulted in a healthy balance between supply and demand in a, relative to FoA, low demand volume environment.

In 2023 this team expects significant growth in Metaverse usage driven by new 2D access points, a focus on teenage adoption, and expanding to new markets. The tooling and processes that have enabled Human Review to be successful to this point will require step-change improvement to meet increased demand to reduce harm and protect voice and economic opportunity.

we will see

The Nexus of Privacy

Threat modeling Meta, the fediverse, and privacy


There's very little privacy on the fediverse today. Mastodon and other fediverse software wasn't designed and implemented with privacy in mind. Even the underlying protocol that powers the fediverse has major limitations. But it doesn't have to be that way!

Meta's new product means that it's critical for the fediverse to start focusing more on privacy. Of course, 's a threat in many other ways as well; that said, the privacy aspects are important too.

For one thing, if Meta does indeed follow through on its plans to work with instance admins and others "partners" who to monetize their users (and their data), people in the region of the fediverse that's not Meta-friendly will need stronger privacy protections to protect their data. And Meta's far from the only threat to privacy out there; changes that reduce the amount of data Meta can gather without consent will also help with other bad actors.

More positively, there's also a huge opportunity here. Privacy's even worse on Facebook and Instagram than it is in the fediverse. So If the fediverse can provide a more private alternative, that will be hugely appealing to a lot of people.

Any way you look at it, now's a good time for the fediverse to take privacy more seriously.

The bulk of the article focuses on threat modeling, a useful technique for identifying opportunities for improvement. It's a long article, though, so if you don't want to wallow in the details, feel free to skip ahead to the section at the end on the path forward and the specific recommendations.

And if you're already bought in to the idea that the
should focus more on privacy, and just want to know how you can help make it happen, it also suggests specific actions you can take -- and there's a section with some thoughts for

Here's the table of contents:

* There's very little privacy on the fediverse today. But it doesn't have to be that way!
* Today's fediverse is prototyping at scale
* Threat modeling 101
* They can't scrape it if they can't fetch it
* Different kinds of mitigations
* Attack surface reduction and privacy by default
* Scraping's far from the only attack to consider
* Win/win "monetization" partnerships, threat or menace?
* A quick note to instance admins
* Charting a path forward
* Recommendations

This is still a draft, so as always feedback is welcome. And thanks to everybody for the feedback on previous drafts!


Threat modeling Meta, the fediverse, and privacy (DRAFT)

DRAFT! Work in progress! Feedback welcome

The Nexus Of Privacy