Because its not about age verification, its about tracking and controlling you and making a privacy respecting solution isn’t compatible with that.
linule@lemmy.world 1 day ago
Why is there no privacy respecting solution for age verification? Like the government giving you some sort of token that says you’re over 18 and that’s it?
NotMyOldRedditName@lemmy.world 1 day ago
linule@lemmy.world 1 day ago
So there should be a rebuttal demanding a privacy respecting age verification token, instead of just arguing against age verification, which technically does have a point. This way you disable their excuse to sneak in the other things.
NotMyOldRedditName@lemmy.world 18 hours ago
No, we still need to be against it. I said tracking and controlling, not just tracking.
They are already blocking resources that shouldn’t be blocked from youth, and even a privacy centric method would still let them do that, and then expand it to anything at a whim in the future.
linule@lemmy.world 16 hours ago
Okay, it’s 2 topics then, the privacy, and basically add a mandatory authorization layer to the internet derived from your real id.
To some extent the later already exists for movies or say to buy alcohol, getting a driving license etc. in the real world, where people often also have to verify their age. So here it could be asked on what exact basis the internet should work differently.
boonhet@sopuli.xyz 1 day ago
Because then you can share the token and everyone can use it
I’m sure a more robust solution is possible though.
undu@discuss.tchncs.de 4 hours ago
The scheme from the Danish government, shared in another comment, avoids the sharing by allowing token to be used only once, and, because the government issues the tokens, it can block people from getting tokens if they detect abuse. This can be done by rate-limiting, geoblocking and all sorts of techniques.
Remember that the function of the anonymous token is to not allow the service provider (like an OS, or a a website) to see your identity. This still allows the government to see which service provider you are using.
Hopefully the service provider can form pools yo block the government from knowing each individual website, but that’s not a given.
NotMyOldRedditName@lemmy.world 8 hours ago
You can make them biometric and still be private, but that’s even more effort which they wont spend.
linule@lemmy.world 1 day ago
Personal ids can also be used by non-owners, not much different than this theoretic age verification token. But yeah, ideally it would have an security layer to sufficiently confirm ownership.
boonhet@sopuli.xyz 1 day ago
Ah tbh I just realised that with the tokens being unique you could still limit accounts per token to 1, achieving the same effect as using real ID.
Jimmytea@sh.itjust.works 1 day ago
There is!, one of the officially recognised and approved ways is credit card verification, however afaik only steam is doing that.
linule@lemmy.world 1 day ago
I mean a dedicated, government issued age verification token that doesn’t reveal any data to the third party other than you are allowed access age wise.
JenitalJouster@lemmy.zip 17 hours ago
i’ve seen screenshots of ios users being verified due to having their credit cards as payment methods tied to their name, which is a hell of a lot better than an ID
sunbeam60@feddit.uk 1 day ago
What if I told you that’ by regulation, the EU age verification system has to be anonymous and that it’s only the AUKUS countries that are moving forward in a way where anonymity is “a nice to have”.
Denmark’s system, which is a front-runner implementation in the EU, is going to be fully ZKP.
ChaoticEntropy@feddit.uk 16 hours ago
How are you supposed to abuse the data of people that you can’t even identify…?
linule@lemmy.world 1 day ago
That sounds great. I don’t follow the topic closely (probably I should), so wasn’t aware of these developments. This should be brought up in all discussions about age verification, so everyone knows there are better options.
sunbeam60@feddit.uk 18 hours ago
Ultimately someone has to vouch for “yes, this person is 18+”. People can’t self-attest, except through crappy biometric, so at some point a government ID has to be involved.
I’d trust my government over a credit reference agency that literally makes revenue from selling access to your private data.
linule@lemmy.world 16 hours ago
Yes, and governments, at least democratic ones, represent the interests of their people, so at least on paper this is the correct way to structure things. Then you use the channels to government to ensure it’s regulated properly. If there’s no trust here, there’s a larger problem.
eah@programming.dev 18 hours ago
Anyone have a more in-depth technical description of how that works? I’m interested.
sunbeam60@feddit.uk 18 hours ago
digst.dk/…/implementing-age-verification-with-dan…