← Back to context

Comment by Nursie

1 day ago

> You don't exactly get to dictate how the government implements it!

Who was talking about the government implementing it? I wasn't.

And also "This has been done poorly in the past so we should never attempt to do it again, better" seems an odd way to go about things. There are well put together schemes by international standards bodies in this area now. Neither of the above links followed them.

7 comments

Nursie

Reply
shakna  1 day ago

If neither follow them, why do you have such faith that anybody would...?

  • Nursie  1 day ago

    I mean, your example of the ATO there isn't even an age verification thing, it's a defective clone of OIDC, so by that logic we should ban all SSO or identity delegation solutions?

    Because we don't believe anyone will ever use the standards in this area, despite loads of companies and government bodies actually using OIDC already?

    I'm not really sure what you're driving at.

    • shakna  1 day ago

      > I mean, your example of the ATO there isn't even an age verification thing, it's a defective clone of OIDC, so by that logic we should ban all SSO or identity delegation solutions?

      MyGovID _is_ an age verifier. Sorry. The successor after the rebrand, is called myID [0], and advertised as:

      > myID is a secure way to prove who you are online.

      ---

      > I'm not really sure what you're driving at.

      Clearly. You seem to think that because it might one day be done correctly, by one group, the rest of the world is safe. However, over in this reality, we have fuck ups by governments and private corporations, who are the people the rest of the world actually deals with.

      You cannot enforce these real groups, to actually follow good practices. Thus, in practice, everyone gets fucked when you bring in these laws. Because it will always be done the wrong way, by someone.

      [0] https://www.myid.gov.au/

      4 replies →