Comment on Bluesky is rolling out age verification in the UK
pika@feddit.nl 4 days agoIs the system opaque? Does someone else hold the private encryption keys? Could unencrypted data leak from the company and expose users?
If any of those answers are “yes”, then assume it’s already compromised by a government and unsafe.
Ulrich@feddit.org 4 days ago
There is no encryption involved. They just give you a token that verifies your age and you present the token to the site.
pika@feddit.nl 4 days ago
But you have to submit evidence of age to some site, right? So where does that evidence (your ID) get sent to or stored? Once it’s sent, are you sure it’s not stored? Is the token unique or traceable to you?
I honestly don’t know, and when I don’t know, I have to assume it’s not staying private.
Ulrich@feddit.org 4 days ago
Your evidence is already stored with the gov, regardless of the any age verification systems. And the gov provides your token. If you honestly don’t know, you should research instead of making assumptions.
github.com/eu-digital-identity-wallet
pika@feddit.nl 4 days ago
Fair enough. Thanks for the info. 👍