Comment by theptip

3 months ago

> the sponsor of Louisiana's HB-570, publicly confirmed that a Meta lobbyist brought the legislative language directly to her. The bill as drafted required only app stores (Apple, Google) to verify user ages. It did not require social media platforms to do anything.

Thing is, when these “make the websites collect your ID” proposals come up, the overwhelming sentiment here is “this is terrible and we need to do it lower in the stack”. I think the OS is a better place than the website. (Let security conscious folks use a standalone device too if desired.)

The astroturfing stuff is obviously sus, I don’t have a feel for whether this is egregious by the standards of $T companies or just par.

Of course, the EU option of using proper ZK proofs etc sounds way better as portrayed in the OP. But when you actually dig in, doesn’t the EU effectively mandate OS support too, eg https://eudi.dev/1.7.1/architecture-and-reference-framework-..., https://github.com/eu-digital-identity-wallet/eudi-doc-archi... ? Maybe this isn’t set yet but it seems a likely direction at least.

4 comments

theptip

Reply
inetknght  3 months ago

> Thing is, when these “make the websites collect your ID” proposals come up, the overwhelming sentiment here is “this is terrible and we need to do it lower in the stack”.

Perhaps the "overwhelming" sentiment is paid actors? Or people whose jobs depend on not having that risk assigned to their employers?

  • theptip  3 months ago

    Perhaps, or perhaps there are legitimate privacy concerns with requiring every website to collect a photo of your ID to prove you are not a minor?

    • inetknght  3 months ago

      There are legitimate privacy concerns with requiring every website to collect a photo of your ID to prove you are not a minor.

      Those concerns are amplified when it's done even lower in the stack. You don't want a website to collect your ID? Neither do I. I also don't want my OS to collect anything about me either.

      1 reply →