I’m sure the most rigorous of data safety standards will be followed. After all they’re being forced to do this I’m sure they won’t take the cheapest possible route. Oh definitely not.
ShaggySnacks@lemmy.myserv.one 3 weeks ago
Oh no. Some hackers hacked out database and released all the ID information on high profile people. Oh such whoopsie, we made.
- Adult Websites
echodot@feddit.uk 2 weeks ago
YiddishMcSquidish@lemmy.today 2 weeks ago
I seriously feel this. I’ve found a little site that dgaf what country or state you’re in. I use a VPN if I want a change.
JohnEdwa@sopuli.xyz 3 weeks ago
Depends entirely on how it’s implemented, because the website doesn’t need to know who you are, only verify that you are over 18. Which can be done reasonably securely - you generate a random ID on a secure service, give that ID to the website, and the only communication between the two of them is “Is id 123 valid and an adult? Yes/No”.
Now, if that “secure service”, most likely a government contract done as cheaply as possible turns out not to be, and they keep logs linking those IDs to the URLs requesting verification, then the entire thing goes belly up.
BlameTheAntifa@lemmy.world 2 weeks ago
So your bank now knows you accessed certain websites. And you are okay with that?
JohnEdwa@sopuli.xyz 2 weeks ago
Was an example of the security, not who is running the service. But I mean, guess who knows if you pay for OnlyFans or stuff like that?
Your bank.
echodot@feddit.uk 2 weeks ago
The bank doesn’t know what people pay for, or who it goes to, they just know what account you paid into. They would have to go through and verify who owns the account and that’s not an automatic process. Finding out the actual person or company behind an account requires effort, so unless there’s some investigation that involves that bank account, they won’t have that information.
Knock_Knock_Lemmy_In@lemmy.world 2 weeks ago
Zero Knowledge is more secure. Government signs a credential confirming date of birth and gives that to the citizen.
Citizen can then use that to create a proof they were born before date X. Verifier only sees the proof and the Government signature.
No need to trust 3rd party websites.
echodot@feddit.uk 2 weeks ago
The problem there is that requires the government to do some of the work, and they don’t want to. They want to sell this to the public as them being tough, but they definitely don’t want it to cost any money.
This will be implemented in the most sketchy short-sighted way possible, I guarantee it
DeathsEmbrace@lemmy.world 2 weeks ago
I would never touch any of these telemetry websites anymore because this is definitely going to be used to fingerprint you.
Knock_Knock_Lemmy_In@lemmy.world 2 weeks ago
The dob credential could verified and issued by anyone. But you may have more confidence in a government signature than a private company or known individual.
JohnEdwa@sopuli.xyz 2 weeks ago
I was basically after that same concept - create that credential, and have the website only verify it’s legit and nothing else.
I think my example of how it’s currently done for basically everything in Finland just confused people, I wasn’t suggesting every country implements adult age checks with their banks.