Research — LuMiNx

Passwordless by construction: a threat model for OrbitID: We present the threat model behind OrbitID, an SSO provider that eliminates shared-secret authentication entirely. We enumerate the attacks that legacy providers leave open by retaining password fallback and email-link recovery, and show how a possession-and-presence model closes them while remaining compatible with OIDC relying parties.
Edge-native homeservers: deploying Matrix without an origin: We describe MatrixFlare, a Matrix-spec homeserver implemented entirely on globally distributed edge runtimes. Room state lives in durable per-room actors; media in object storage; federation is asynchronous by default. We discuss the latency and cost characteristics of this architecture compared to a region-bound monolithic homeserver, and the protocol-level adjustments required to make federation tolerable under arbitrary geographic dispersion.