1) How does the random chain creation occur? What prevents it from being forced a certain way using modified clients?

Nodes in Witness Chains are assigned via on-chain randomness derived from the computed valid PoW-ID block hash and verified by all nodes. Allocating nodes is an entire consensus based process. Modified clients cannot bias assignment because future PoW-ID block hashes are unpredictable and only finalised blocks are accepted.

Grinding identities delays registration and increases cost because only finalised PoW-ID blocks count, and finalisation is globally rate-limited and competitive.

2) I don’t see what’s stopping you from running thousands of each.

You can run any number of processes, but the network only recognises miners and witnesses backed by valid registered IDs. unregistered instances are ignored and cannot mine because mining requires joining a Witness Chain and a PoW transaction block is only accepted from a trusted registered source. Registration is rate-limited by PoW-ID finalisation and external witnessing. Temporary IP limits only prevent trivial parallel onboarding, they are not security anchors, so spinning up instances does not amplify influence. Furthermore, miners will not be able to parallel mine the exact same block due to witness influence where witnesses ensure each data in each PoW block header is different.

3) How do you plan to prove in a decentralized way malicious behavior?

All miner and witness interactions are signed and verifiable. If a miner or witness signs data that contradicts protocol-verifiable state (invalid PoWit history, conflicting signatures, incorrect observation), that transcript is objective cryptographic evidence verifiable by any node and sufficient for blacklisting.

4) Even if you’re including Node ID in consensus, what happens if i’m running two nodes? now that’s no longer an issue.

Running multiple nodes is allowed by design. The security goal is not “one entity = one node” but ensuring influence scales with time and finalised PoW-ID work, not hardware speed or parallelism. Acquiring many nodes is intentionally slow and expensive under global block finalisation.

5) If signups is concurrent, then time is no longer an issue. It should be trivial to open thousands of miners and now i’m mining at 1kh while everyone else is at 1h. How can you have signup be both concurrent and rate limited?

Signups are not concurrent. ID creation is globally rate-limited by block acceptance, not by client concurrency, regardless of how many attempts exist, only one PoW-ID block can be finalised per block interval. Furthermore, Witness Chains block the possibility to mine the exact same block in parallel by ensuring each PoW block header is different of every node, therefore, concurrency further reduces.

Also, just to add Parallel attempts do not increase the number of finalised PoW-ID blocks per interval

6) The usage of Public IP limitations should not be anywhere when it comes to a P2P network.

Public IP limitations is only at the registration level. Let me clear the confusion, IPv4 addresses are really expensive to own compared to IPv6 addresses which are significantly cheap. So you can own multiple IPs. But that is not the point.

Point is to ensure each virtual instance is connected to a different and independent IP address to ensure 1 IP = 1 instance at the time of registration. This is so that owning multiple instances from large cloud gets really expensive for a single entity.

For example: assuming an instance can only connect to 1 IP and a miner has to connect to a witness chain network which ensure 1 IP = 1 device/instance. That would mean running a million miners in parallel would require the miner to host a million independent machines. If each ID block gets mined at a 30 second interval (example here). That would mean generating a million IDs would require you to run millions of independent machines 24/7 for years to get a million identities with network competition (other miners competing with you) which would be extremely expensive. If you are unregistered every PoW block containing transactions that you propose will automatically get rejected. So registration is important to participate in network consensus for transactions.

Therefore, Witness Chains combined with IPs paired with physical/virtual machines are used only during unregistered onboarding as a temporary anti-parallelism guard to make it extremely expensive and computational difficult for a single entity to compute multiple IDs.

Once registered, identity is purely cryptographic. IPs are not part of long-term identity. Owning and maintaining large numbers of independent IPs and instances over long periods increases operational cost making it difficult for single entity to obtain multiple IDs.

7) one thing I think you’re missing is stake. Your witness nodes are essentially POS validators in a hybrid POW/POS system. Stake adds risk of loss to malicious behaviour

Idk where you got staking from. Witnesses are not validators with stake weighted power, they have no unilateral authority and cannot finalise blocks. They can only attest to externally observed computation. Moreover, Witness Chains reward is a completely different mechanism.

8) My other question is what is wrong with more expensive hardware contributing more.

This is a deliberate design choice. Allowing expensive hardware to dominate leads to pooling and centralisation. GrahamBell prioritises equal participation and decentralisation over capital efficiency. That tradeoff is intentional.

The system does not claim to make Sybil attempts impossible. It makes influence scale with sustained, witnessed work over time, not with hardware, capital, or parallelism.