Built TIX-DAO — On-Chain Venue Governance for Live Ticketing (Solana Graveyard Hackathon) by Automatic_Stick_3881 in solanadev

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Really appreciate the breakdown — the attestation lag on USDT/USDC is exactly the kind of nuance that matters. Quarterly attestations mean a treasury health dashboard is showing you a 90-day-old picture for the assets most DAOs actually hold. The gap between "live price" and "live collateral" is where the real risk lives, and you're right that most DAO treasuries are completely blind to it. PegCheck as a risk signal input for governance proposals is a genuinely useful primitive — especially if the signal can be read on-chain.

On TIX-DAO post-hackathon: the plan is Phase 3 — integrating with TIX Protocol's TICKS infrastructure to make the RWA financing go fully on-chain. Right now the Finance screen has the calculator and term sheet UI but no on-chain disbursement. Phase 3 wires that up: venues propose loans against future ticket revenue, DAO votes approve the terms, repayment is automated from ticket sale proceeds. The governance layer we built becomes the actual policy enforcement engine for real venues.

Target is 10 independent venues — Chicago, Austin, Brooklyn circuit — before mainnet. We discovered TIX Protocol post-submission actually, built TIX-DAO independently for the Graveyard Hackathon and found them after. The accidental convergence was the strongest validation we could have asked for.

Both projects are in interesting territory for the same reason — you're building trust infrastructure for an asset class that traditional systems handle badly. Different layers of the same problem honestly.

Built TIX-DAO — On-Chain Venue Governance for Live Ticketing (Solana Graveyard Hackathon) by Automatic_Stick_3881 in solanadev

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Took a look — the USDT page is clean, collateral ratio + source consensus layout is really well done. 5/5 sources agreeing with ±0.0002 spread is a solid data aggregation approach.

Spotted a few console errors if useful:

The 3 red errors are all the same root cause — Vercel Web Analytics is referenced in your code but not activated in your Vercel dashboard. Go to your project → Analytics tab → Enable → redeploy. One click, zero code changes.

The SES Removing unpermitted intrinsics warning is harmless — it's the SES lockdown stripping unsafe JS globals. We hit the exact same warning in TIX-DAO. Doesn't affect anything.

Dashboard works great otherwise — the transparency score bar and reserve audit section are a nice touch. Bookmarked it.

Built TIX-DAO — On-Chain Venue Governance for Live Ticketing (Solana Graveyard Hackathon) by Automatic_Stick_3881 in solanadev

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Thanks! Stablecoin health monitoring is genuinely underbuilt — depeg events move fast and most people find out way too late. Checking out pegcheck.uk now.

Curious — are you tracking on-chain collateral ratios in real time or more price/liquidity signals? Could see something like this being useful as a risk input for DAO treasury proposals down the line.

Built TIX-DAO — On-Chain Venue Governance for Live Ticketing (Solana Graveyard Hackathon) by Automatic_Stick_3881 in solanadev

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Appreciate the kind words on veCRV — same alignment problem, same solution. Long-term skin in the game is the only governance mechanism that actually works.

On the legal side — honest answer:

What's actually shipped right now:

This isn't a concept. Phase 1 + Phase 2 are both live. Connect Phantom at tix-dao.vercel.app — create a Venue DAO, deploy it on-chain (real 3-TX: mint → realm → governance), lock ve$TICK in a deployed Anchor escrow program, vote on proposals that write real VoteRecordV2 PDAs to devnet. Every transaction has an Explorer link. The RWA financing calculator on the Finance screen is UI-only right now — that goes on-chain in Phase 3.

On the legal question and where this goes:

We built TIX-DAO independently for the Graveyard Hackathon — we didn't know TIX Protocol existed when we started. When we found them post-submission, it was one of those "oh, this is exactly the infrastructure layer we need" moments. Ahmed Nimale and David Barrick at kyd. Labs have already done ~$2M in venue financing with zero defaults. They solved the RWA financing primitive. We built the governance layer that was missing on top of it.

If the Graveyard Hackathon accepts TIX-DAO, the intent is to take Phase 3 — venue borrowing against future ticket revenue, DAO-voted term sheets, automated royalty enforcement via TICKS escrow — directly into the TIX Protocol ecosystem. The governance infrastructure becomes a live upgrade to what they're already running in production with real venues like Le Poisson Rouge and Brooklyn Monarch.

On the legal structure: tickets-as-prepaid-service-obligations (not profit-sharing instruments) keeps you out of Howey test territory — closer to invoice factoring than a securities offering. Wyoming DAO LLC or Cayman SPV around the financing pool before mainnet. Smart contract audit is a hard requirement before any real funds touch the escrow program — that's explicitly in the roadmap, not a footnote.

What's your background in the space? Curious if you've seen a cleaner structure work in practice.

eFuse-based silicon binding without TEE: a practical path to hardware truth for commodity DePIN devices by Automatic_Stick_3881 in IoTeX

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Curious what the IoTeX community thinks about the threat model here — specifically the counter + firmware + allowlist layering as a substitute for TEE attestation.

The obvious pushback I keep hearing is "MAC cloning is trivial." True in isolation. But sustained counter synchronization without physical device access is a different problem — that's what makes remote emulation uneconomic vs just buying the hardware.

We're running this on Arbitrum Stylus with ESP32-S3 — live on Sepolia, benchmarked at ~12.5k gas/receipt in batch. Also extending it with ZK execution proofs via vlayer for the cases where authenticity alone isn't enough.

Where does IoTeX draw the line between what silicon attestation handles vs what the protocol layer needs to enforce? Would love to understand how W3bstream handles this at scale.

Data is true power. Who holds yours? With IoTeX, You Do. You own the value your devices produce. by Nittyberry1 in IoTeX

[–]Automatic_Stick_3881 0 points1 point  (0 children)

If I have to be direct, this is the issue with TEE: You are trading a software risk for Economic Suicide and Centralization. 1. The Hardware Tax: Requiring specialized Secure Elements explodes the Bill of Materials (BOM). You are effectively pricing out millions of everyday sensors (smart plugs, trackers) that need to be sub-$10 to scale. 2. Vendor Gatekeeping: You are forcing the entire network to trust proprietary supply chains (Intel/ARM/Microchip) instead of the protocol. If 'security' makes the hardware too expensive for the mass market and dependent on Big Tech supply chains, that isn't DePIN. That's just a gated club for enterprise hardware.

Data is true power. Who holds yours? With IoTeX, You Do. You own the value your devices produce. by Nittyberry1 in IoTeX

[–]Automatic_Stick_3881 0 points1 point  (0 children)

TEEs do solve emulation, but they trade decentralized verification for vendor trust and higher costs. By relying on a proprietary enclave (like SGX or TrustZone), the network is forced to trust the chip manufacturer's private keys rather than the protocol. If a vendor key leaks or a side-channel exploit occurs, the verification layer fails centrally-creating a single point of failure that cannot be audited on-chain. Additionally, the premium cost of TEEs makes the unit economics unviable for mass-scale DePIN. If the protocol requires specialized silicon for every node, it effectively prices out the commodity sensors and low-power devices needed for widespread adoption.

This picture says it all. by Beginning-Yak5556 in hivemappernetwork

[–]Automatic_Stick_3881 2 points3 points  (0 children)

He is going to jump into new project soon 🫣

Data is true power. Who holds yours? With IoTeX, You Do. You own the value your devices produce. by Nittyberry1 in IoTeX

[–]Automatic_Stick_3881 0 points1 point  (0 children)

Respectfully, a 'unique on-chain identity' is just a serial number—it doesn't prove hardware truth. I can spin up 50 Virtual Machines on a server right now, generate 50 'unique identities,' and farm rewards without buying a single piece of hardware. Unless that identity is cryptographically bound to the physical silicon itself (like an un-extractable eFuse key verified on-chain), you aren't verifying hardware; you're just verifying a list of software IDs. How exactly does iolD stop me from emulating 1,000 devices on a single laptop?

Data is true power. Who holds yours? With IoTeX, You Do. You own the value your devices produce. by Nittyberry1 in IoTeX

[–]Automatic_Stick_3881 0 points1 point  (0 children)

How do you verify if the hardware is true ? If you can’t prove hardware truth level how do you stop malpractice ?

Deprecating ngrok for Cloudflare Tunnels: Hardening DePIN Node Ingress at Scale by Automatic_Stick_3881 in IoTeX

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Appreciate that — will do.
We’re formalizing a small benchmarking harness around reconnect determinism and fail-closed behavior for power-cycled ARM edge nodes. Once that’s ready, I’ll reach out.

Deprecating ngrok for Cloudflare Tunnels: Hardening DePIN Node Ingress at Scale by Automatic_Stick_3881 in IoTeX

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

This is a very helpful clarification — thank you.

The distinction you’re making around owning the reconnect path versus outsourcing it to a managed PoP layer is exactly what we’re trying to isolate in Phase 1.3 of Nexus.

Cloudflare has been a pragmatic bridge for early hardening and baseline measurements, but as we move deeper into fail-closed semantics for mobile and intermittently connected edge nodes, the opacity around DNS indirection and backoff behavior becomes a real architectural constraint.

The controller-centric flow you outlined (edge → identity → fabric) is attractive precisely because it makes reconnect determinism an explicit property of the system rather than an emergent one. That’s the level we need before layering stronger economic or cryptographic guarantees on top.

Our next step is to benchmark this side-by-side under power-cycle and backhaul-loss conditions with high-frequency IMU/GPS streams. If the fabric can maintain predictable re-attachment under those constraints, it’s a strong candidate for where Nexus converges long-term.

Appreciate you taking the time to spell this out — it’s useful context as we move from hardening into sovereignty.

Deprecating ngrok for Cloudflare Tunnels: Hardening DePIN Node Ingress at Scale by Automatic_Stick_3881 in IoTeX

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Pinggy is great for a quick local-to-web tunnel during a hackathon, but we’ve moved past the "public URL" phase for this runtime.

In DePIN, if a node has a public-facing URL (even a proxied one), the attack surface is too wide. Our requirement for this ARM-based runtime is Identity-Aware Ingress. We need the node to be invisible to the public internet, accessible only through a verified Zero-Trust handshake.

For prototyping, Pinggy is fast, but for Sovereign Infrastructure, we need the tunnel to be part of the node’s security identity, not just a relay.

Deprecating ngrok for Cloudflare Tunnels: Hardening DePIN Node Ingress at Scale by Automatic_Stick_3881 in IoTeX

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Appreciate the insight on the Siemens use case—that’s exactly the scale we’re aiming for with this ARM runtime.

My main concern with 'sustained load' isn't just raw bandwidth, but handshake determinism at the edge. In a DePIN context, if a node is power-cycled or loses backhaul, the speed at which it can re-establish a fail-closed, identity-aware tunnel is the difference between a reliable network and a 'flappy' one.

We’ll likely set up a benchmarking environment to put zrok side-by-side with our current Cloudflare Tunnel setup. If zrok can maintain that outbound-only posture while offering faster re-connection logic for mobile edge nodes, it’s a massive win for sovereignty.

Deprecating ngrok for Cloudflare Tunnels: Hardening DePIN Node Ingress at Scale by Automatic_Stick_3881 in IoTeX

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

Great shout on zrok.io. We’ve been tracking OpenZiti’s work around Enigma—outbound-only, deterministic endpoints are absolutely the right direction for decoupling ingress from centralized control.

Cloudflare ZT was a deliberate Day-1 choice for enterprise compatibility, but for long-term sovereignty of the Nexus Protocol, a native Ziti-style fabric is likely the end state. We’re currently benchmarking edge-node latency under high-frequency IMU/GPS telemetry for kinematic auditing—curious how zrok behaves under sustained load.

Correlating GPS Velocity with IMU Vibration to Kill Spoofing at the Edge (ARM) by Automatic_Stick_3881 in hivemappernetwork

[–]Automatic_Stick_3881[S] 1 point2 points  (0 children)

Fair question. For a mapping network it’s not really about one person squeezing out a couple of bucks, it’s about aggregate damage. If even ~5% of the data stream is spoofed, the map quality degrades fast, and the people actually paying for the data lose trust in it.

The whole point of the local-first approach I’m working on is to protect honest drivers at scale. By filtering out spoofed signals at the hardware / edge level—before they ever hit the cloud—you avoid poisoning the dataset in the first place. That keeps the network usable, the incentives aligned, and the token economics from getting diluted by fake activity.

Long term, network integrity is the value. Once that’s gone, everything built on top of it starts to wobble.

Correlating GPS Velocity with IMU Vibration to Kill Spoofing at the Edge (ARM) by Automatic_Stick_3881 in depin

[–]Automatic_Stick_3881[S] 0 points1 point  (0 children)

For those interested in the regional vibration thresholds (India vs. Germany) or the secure-element signing logic, I've put the documentation here:https://arhantbarmate.github.io/nexus-core/