You'd have to limit novel sessions to very low activity rates. That would require some sort of persistence token (not necessarily a cookie), and if provided on an anonymised basis, one that's verifiable but not predictable or traceable to prior cookies. Which is what much of the references I provided covers.
Sorting a mechanism for allocating those tokens' seed values is difficult. FAUST requires an unblinded token request initially.
CAPTCHAs had been useful, though always problematic. The goal isn't perfection but costs. Problem is that costs keep falling.
Sorting a mechanism for allocating those tokens' seed values is difficult. FAUST requires an unblinded token request initially.
CAPTCHAs had been useful, though always problematic. The goal isn't perfection but costs. Problem is that costs keep falling.