Trust
Safety by design—not afterthought
PoN separates reachability proofs from personal data, keeps miners in control of device load, and layers anti-abuse signals. Policy matrices and attestations evolve with testnet data and governance.

Posture
Security first
PoN is designed with privacy, user control, and anti-abuse protection at its core.
Data boundaries
User privacy
Proof workflows should minimize sensitive surface area: no shadow data collection, and permissions that users can reason about.
- No access to personal photos
- No access to private files
- No contact list access
- No hidden data collection
- Transparent permission model

On-device
Device protection
Mining modes stay bounded so everyday phones are not treated like rack miners.

- Battery limit control
- Data usage limit
- Background activity control
- Temperature protection
- User-controlled mining mode
Abuse resistance
Anti-Sybil protection
PoN uses device reputation, network behavior, challenge randomness, and risk scoring to reduce fake accounts and duplicated nodes.

Assumptions
Threat model (high level)
These classes inform verifier design and policy—not an exhaustive formal model.
- Fake nodes
- Bot farms
- Emulator farms
- VPN/proxy manipulation
- Replay attacks
- Packet spoofing
- Reward farming
- Validator collusion

