Comment by Nursie

12 hours ago

> If there were honest intent, then the regs would be beefing up the "Parental Controls" mechanisms present in every major OS

Not everyone knows they exist, and there's a huge install base of older and/or cheaper devices that may not be getting updates that could be strengthened like this.

> Not only does this mechanism require zero involvement of an unrelated third party

But what if we do want to regulate the behaviour of those third parties? We know they've been cognisant of the harms and addictive behaviours their stuff promotes (see internal Meta research), and in fact seem to have designed for that. If the controls are only at the consumer side, are we not likely to see an arms race where they continue to try to addict kids around the controls?

You're also assuming a level of technical sophistication on the part of parents, voters and politicians that would necessarily lead them to come to the same conclusions as yourself about solutions. This may simply not be present.

This is what I mean by "good arguments that won't land". We can talk about how solutions should work, whether solutions can possibly work, and even make strong arguments that regulation in this area is wrong in and of itself. Jumping straight to "they're all liars and only want to spy on me" makes the entire thing look like a group of fringe nutters unable to take onboard how people (particularly non-tech people) feel.

8 comments

Nursie

Reply
simoncion  12 hours ago

> Not everyone knows they exist...

"Oddly", the laws that demand you enter your birthday (and will eventually demand you scan your ID) seem to require OS producers to make it so that users will not be ignorant of these new features. [0] I wonder if it's possible to do the same thing for Parental Controls...?

> ...there's a huge install base of older and/or cheaper devices that may not be getting updates that could be strengthened like this.

They're not going to be getting updated to be compliant with any of the new state (or Federal) user-identification regs, so I don't see what good-faith reason you could have for bringing them up.

> But what if we do want to regulate the behaviour of those third parties?

You use law and regulation? You mention nothing in your subsequent paragraphs that a "Papers, Please!" mechanism will prevent that a "Beefed-up and difficult-to-bypass Parent Controls" mechanism will not.

[0] For example, AB1043 says (among other things)

  1798.501. (a) An operating system provider shall do all of the following:
  (1) Provide an accessible interface at account setup that requires an account holder to indicate the birth date, age, or both, of the user of that device for the purpose of providing a signal regarding the user’s age bracket to applications available in a covered application store.

  • Nursie  12 hours ago

    > You use law and regulation?

    I mean, 'papers please' mechanisms are a type of law and regulation, we're arguing over what sort of law and regulation should be used, no?

    In Australia, platforms are being regulated, the regulation says they must not allow under 16s to have accounts. How they achieve this is up to them to a large extent. "Papers-please" then is their doing. It's certainly not the only way things can be done - see anonymous credentials, verifiable credentials and other such schemes that don't involve showing your identification documents to everyone that asks.

    > You mention nothing in your subsequent paragraphs that a "Papers, Please!" mechanism will prevent that a "Beefed-up and difficult-to-bypass Parent Controls" mechanism will not.

    An arms race to work around the controls, which seems likely to me unless there is some sort of regulation on the service providers.

    But either way, look at this! We're discussing how things might work, rather than dismissing things out of hand and impugning each others' motives. Going to the "Papers please" governments and parents in those populations, saying "Look, we understand there is concern and we think there's a better way", or even "We understand the concern but here's why acting on it in any way is a bad idea" is a lot better than "You're all evil and probably stupid".

    • simoncion  11 hours ago

      > I mean, 'papers please' mechanisms are a type of law and regulation...

      Yes, they are. I still have no idea how laws of the form "You must honor the signals you get from Beefed-Up Parental Controls and we fine or jail you if you do not" fails to constrain the behavior of US-based businesses. You seem to have an understanding of how it won't, so do let me know what I'm missing?

      > An arms race to work around the controls,

      Whether the arms race is server-side or client-side is irrelevant. If anything, I'd expect a client-side implementation to be far more robust... if for no other reason than because the private company that is contracted to implement and run a server-side implementation will cut every corner to improve their profit margins.

      > In Australia...

      Speaking from a civil-liberties perspective, Australia has been a shithole for a long time now. They can very safely be ignored by US parents and US lawmakers.

      > "You're all evil and probably stupid".

      The people who are pushing for these "Papers Please!" regs are evil. The lawmakers (and parents) who aren't asking "Wait, what about the existing Parental Controls mechanisms built into every major OS?" are stupid and -if that stupidity is willful- also evil. Those are plain facts. One is not obligated to be all niceys to people who are invested in tearing yet another chunk out of the vial organs of civic life.

      5 replies →