this post was submitted on 24 May 2025
692 points (96.9% liked)
Technology
70365 readers
3817 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related news or articles.
- Be excellent to each other!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
- Check for duplicates before posting, duplicates may be removed
- Accounts 7 days and younger will have their posts automatically removed.
Approved Bots
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
You show your ID and a notary enters their credentials to allow you to create an account with your fingerprint or FaceID.
Your ID doesn’t get saved. Your biometrics are only saved in the way that your iPhone saves them for a password.
Work with me. What’s a solution that would be acceptable for you? Get creative.
The problem then lies in how whoever (likely the government) can ensure that verified accounts are indeed verified by real people.
If any notary can create these accounts by just claiming they saw a proper ID/biometrics, then even one malicious notary could make as many "verified" accounts as they want. If they're then investigated, that would mean there'd be monitoring in place to see who they met with, which would defeat the privacy preservation method of only having them look at it.
This also doesn't solve the problem of people reselling stolen accounts, going to multiple notaries and getting each one to individually attest and make multiple accounts to give out or sell, etc.
If your biometrics are stored, then there's one of two places they could be stored and processed:
This can just be bypassed by the user once they log in with their biometrics, since the credentials are then decrypted and they can just export them raw, or just have them stolen by anyone who accesses their device or installs malware, etc.
This doesn't solve the sale, transfer, or multiple creations of accounts.
The scanner that originally creates the hash for your fingerprint must be trusted to not transmit any other data about your fingerprint itself, and could be bypassed by modifying network requests to send fake hashes to the government server during account creation, thus allowing for infinite "verified" accounts to be created and sold.
This also doesn't prevent the stealing or transfer of accounts, since you would essentially just be using your hash as a password instead of a different string of text, and then they'd just steal your hash, not a typical password. This also would mean the government would get a log of every time someone used their account, and you could be instantly re-identified the moment you go to the airport and scan your fingerprint at a TSA checkpoint, for example, permanently tying your real identity back to any account you verify with your biometrics in the future.
The fundamental problem with these systems is that if you have to verify your identity, you must identify yourself somehow. If that requires sending your personal data to someone, it risks your privacy and security going forward. If that doesn't require sending your personal data, then the system is easily bypassed, and its existence can't be justified.
I've said it before, and I'll continue advocating for it going forward:
We already know these things do the most we can reasonably do to prevent underage viewing of adult content. We don't need age verification laws, because they either harm privacy or don't even work, when much simpler, common sense solutions already solve the problem just fine.
I’m convinced this was written by GPT. We disagree on how good or bad porn is for society and the youth, so the rest doesn’t even matter.
I'm a human being. I know my writing style can often come off weird to some people, but I can assure you I don't outsource my thinking to a word prediction program to make my points for me.
I haven't seen any evidence that light or moderate consumption of porn by legal adults produces significant negative consequences for them or society at large, so long as the porn doesn't involve non-consenting parties, underage individuals, etc. Thus, I don't think it's reasonable to heavily monitor and restrict access to every single individual in our society.
As for kids, research is obviously lacking since it's somewhat of a touchy subject for researchers to study, but since we know sex ed, conversations between kids & parents, and even the most basic of parental controls and monitoring can prevent the vast majority of the negative effects, and even the whole of the initial consumption while underage, then that's what I advocate for.
Until I see evidence to the contrary, that demonstrates larger harms from general consumption trends than the surveillance of the online media consumption of every single citizen, on top of the possible risks to online censorship, while other methods we already know work well still can't reduce that risk below the possible harms of a monitoring/access control system, then I'm not going to support such a system.
If you’re a man I would propose the notion that you only have the perspective of the part of society that is predominantly watching porn and who is predominantly sexual abusers. Your perspective is limited and it’s evident by arguments you make. For example, limiting the support for your opinions to light or moderate porn viewing and that the porn doesn’t include non-consenting individuals or underage, etc. you’re completely ignoring the problem areas the maintain your point of view. Try thinking outside your bubble just as an exercise. Don’t mean this in an offensive way. I can understand your perspective and as such the narrow-sightedness of it.