Depends entirely on how it’s implemented, because the website doesn’t need to know who you are, only verify that you are over 18. Which can be done reasonably securely - you generate a random ID on a secure service, give that ID to the website, and the only communication between the two of them is “Is id 123 valid and an adult? Yes/No”.
Now, if that “secure service”, most likely a government contract done as cheaply as possible turns out not to be, and they keep logs linking those IDs to the URLs requesting verification, then the entire thing goes belly up.
Zero Knowledge is more secure. Government signs a credential confirming date of birth and gives that to the citizen.
Citizen can then use that to create a proof they were born before date X. Verifier only sees the proof and the Government signature.
No need to trust 3rd party websites.
The problem there is that requires the government to do some of the work, and they don’t want to. They want to sell this to the public as them being tough, but they definitely don’t want it to cost any money.
This will be implemented in the most sketchy short-sighted way possible, I guarantee it
I would never touch any of these telemetry websites anymore because this is definitely going to be used to fingerprint you.
The dob credential could verified and issued by anyone. But you may have more confidence in a government signature than a private company or known individual.
I was basically after that same concept - create that credential, and have the website only verify it’s legit and nothing else.
I think my example of how it’s currently done for basically everything in Finland just confused people, I wasn’t suggesting every country implements adult age checks with their banks.
BlameTheAntifa@lemmy.world 2 weeks ago
So your bank now knows you accessed certain websites. And you are okay with that?
JohnEdwa@sopuli.xyz 2 weeks ago
Was an example of the security, not who is running the service. But I mean, guess who knows if you pay for OnlyFans or stuff like that?
Your bank.
echodot@feddit.uk 2 weeks ago
The bank doesn’t know what people pay for, or who it goes to, they just know what account you paid into. They would have to go through and verify who owns the account and that’s not an automatic process. Finding out the actual person or company behind an account requires effort, so unless there’s some investigation that involves that bank account, they won’t have that information.
jnod4@lemmy.ca 2 weeks ago
🤡🤡🤡Lmao what? The amount of men calling up for some transaction error and I need to bring their account up and we can see EVERYTHING, the tinder premium subscriptions, the balding pills, the only fans. There’s full access to the whole bank statements up until the account creation at the click of a button
There’s been countless cases of bank tellers being fired for looking up their friends and exes to look up what is in their banks