Comment on Half of the US Now Requires You to Upload Your ID or Scan Your Face to Watch Porn
Saapas@piefed.zip 17 hours ago
I’m not against proper age verifications as such, it would be like carding people in a store or a bar. But I just haven’t seen an implementation of it that isn’t prone to being a privacy nightmare and surveillance state shit.
I know there’s some systems that generate a token that verify that you are 18 and you give that to the site, so neither side directly meet so to say. The site knows only that you have a valid token for being 18 and the app or service you use to generate the token knows just that you wanted to token for something. I think Spain was figuring out a system like that.
the easiest thing would be making the internet as a whole 18+.
under 18 would be restricted to a firewalled version and age info would be part of the cellphone or internet plan. on a family plan…? under 18s get a firewalled plan. home internet? owner of the service gets a pin to disable the firewall.
We are blinded by the fact that the teens are involved in this too, and they deserve equality as well. The internet is made to build bridges - get rid of boundaries - not set false narratives and infantilise those that are really impacted in this situation and have full awareness of the status quo.
This is a foot in the door technique that uses our deceived emotional manipulation, where our age discrimination is the secret ingredient in this fascist circus.
Also the fact no companies are ever held liable for losing all your personal info, I sure as hell don’t trust this, it can backfire at all.
Incompetence is one big reason why current style systems are just a no-go for me.
Same.
Clearly, no-one involved in making these laws has ever heard of OAuth. Not every single site needs to manage your identity / credentials. The government already has this info, they can be the identity provider and use OAuth to grant access to age-gated resources without giving any personal data to the platform. Someone mentioned id.me, and I’m pretty sure that’s how that platform works, though they’re a private entity if I understand their site correctly.
I know most politicians are comically tech-illiterate, but it’s so frustrating to see them constantly implement terrible solutions to already solved problems without asking a single expert who knows how this shit works.
That being said, California passed a bill with a not perfect, but better approach. User age is configured on the OS level when a user account is set up, and then it will tell platforms what age category the user belongs to, and nothing more:
(a) An operating system provider shall do all of the following:
(1) Provide an accessible interface at account setup that requires an account holder to indicate the birth date, age, or both, of the user of that device for the purpose of providing a signal regarding the user’s age bracket to applications available in a covered application store.
(2) Provide a developer who has requested a signal with respect to a particular user with a digital signal via a reasonably consistent real-time application programming interface that identifies, at a minimum, which of the following categories pertains to the user:
(A) Under 13 years of age.
(B) At least 13 years of age and under 16 years of age.
© At least 16 years of age and under 18 years of age.
(D) At least 18 years of age.
(3) Send only the minimum amount of information necessary to comply with this title and shall not share the digital signal information with a third party for a purpose not required by this title.
I think iOS already does this, actually.
The US government already uses a clearing house service, id.me, for it’s own verification systems. Why is this not used for this purpose as well instead of forcing the site owners to collect and protect that data? It’s stupid and unnecessary. There is literally already a system in place that they aren’t even considering using.
ArmchairAce1944@discuss.online 14 hours ago
When you are carded at a club the staff doesn’t scan your card and keep it on file. They simply look at it and return it.
As someone who worked similar jobs and would have had to look at tons of IDs every day I can assure, I dont have the time or interest in remembering all of them.
Saapas@piefed.zip 13 hours ago
That’s really what the whole rest of my reply was about. We need a system more like carding and less like giving them copy of your passport.
ArmchairAce1944@discuss.online 10 hours ago
The UK experienced a major data breach with all their government info from their ID checks not long after the law kicked in. How many fucking data breaches do we need before people catch on?
Saapas@piefed.zip 10 hours ago
Exactly. Just have a system that has basically no other info than “they had a valid token showing they’re 18”. Nobody does anything with that info if there’s a data breach.