Comment by simoncion
12 hours ago
> Not everyone knows they exist...
"Oddly", the laws that demand you enter your birthday (and will eventually demand you scan your ID) seem to require OS producers to make it so that users will not be ignorant of these new features. [0] I wonder if it's possible to do the same thing for Parental Controls...?
> ...there's a huge install base of older and/or cheaper devices that may not be getting updates that could be strengthened like this.
They're not going to be getting updated to be compliant with any of the new state (or Federal) user-identification regs, so I don't see what good-faith reason you could have for bringing them up.
> But what if we do want to regulate the behaviour of those third parties?
You use law and regulation? You mention nothing in your subsequent paragraphs that a "Papers, Please!" mechanism will prevent that a "Beefed-up and difficult-to-bypass Parent Controls" mechanism will not.
[0] For example, AB1043 says (among other things)
1798.501. (a) An operating system provider shall do all of the following:
(1) Provide an accessible interface at account setup that requires an account holder to indicate the birth date, age, or both, of the user of that device for the purpose of providing a signal regarding the user’s age bracket to applications available in a covered application store.
> You use law and regulation?
I mean, 'papers please' mechanisms are a type of law and regulation, we're arguing over what sort of law and regulation should be used, no?
In Australia, platforms are being regulated, the regulation says they must not allow under 16s to have accounts. How they achieve this is up to them to a large extent. "Papers-please" then is their doing. It's certainly not the only way things can be done - see anonymous credentials, verifiable credentials and other such schemes that don't involve showing your identification documents to everyone that asks.
> You mention nothing in your subsequent paragraphs that a "Papers, Please!" mechanism will prevent that a "Beefed-up and difficult-to-bypass Parent Controls" mechanism will not.
An arms race to work around the controls, which seems likely to me unless there is some sort of regulation on the service providers.
But either way, look at this! We're discussing how things might work, rather than dismissing things out of hand and impugning each others' motives. Going to the "Papers please" governments and parents in those populations, saying "Look, we understand there is concern and we think there's a better way", or even "We understand the concern but here's why acting on it in any way is a bad idea" is a lot better than "You're all evil and probably stupid".
> I mean, 'papers please' mechanisms are a type of law and regulation...
Yes, they are. I still have no idea how laws of the form "You must honor the signals you get from Beefed-Up Parental Controls and we fine or jail you if you do not" fails to constrain the behavior of US-based businesses. You seem to have an understanding of how it won't, so do let me know what I'm missing?
> An arms race to work around the controls,
Whether the arms race is server-side or client-side is irrelevant. If anything, I'd expect a client-side implementation to be far more robust... if for no other reason than because the private company that is contracted to implement and run a server-side implementation will cut every corner to improve their profit margins.
> In Australia...
Speaking from a civil-liberties perspective, Australia has been a shithole for a long time now. They can very safely be ignored by US parents and US lawmakers.
> "You're all evil and probably stupid".
The people who are pushing for these "Papers Please!" regs are evil. The lawmakers (and parents) who aren't asking "Wait, what about the existing Parental Controls mechanisms built into every major OS?" are stupid and -if that stupidity is willful- also evil. Those are plain facts. One is not obligated to be all niceys to people who are invested in tearing yet another chunk out of the vial organs of civic life.
> "You must honor the signals you get from Beefed-Up Parental Controls and we fine or jail you if you do not"
> If anything, I'd expect a client-side implementation to be far more robust...
You're not really describing a client-side solution, you're describing legislation of something like the old Do Not Track header, which is a server-side solution, and fines for services which don't respect it. In such a situation I would expect 'smart' firms like Meta to start finding just-this-side-of-legal ways to get kids hooked on their services. But I suppose the same is likely to happen with server-side-verified blocks on kids using services, Meta can spin up new services that don't quite meet the definition and try to work around it. I guess this is orthoganal to the method of blocking kids.
> from a civil-liberties perspective Australia has been a shithole for a long time now. They can very safely be ignored by US parents and US lawmakers.
Even though what they are doing is less "Papers please" and more "Services must verify, how it's done is up to you", which seems lower down your evil scale than the US states you're up in arms about?
Interesting take.
But again, this is fine, it's an exchange of ideas. You don't seem to be against age verification in principle, you're acknowledging that people want something done. The article and many commenters here are immediately writing off everything in this area as effectively a distraction from full monitoring of everything everyone does on the net.
So while we may disagree entirely on how to go about effecting any sort of solution, and we may not (honestly I'm not entirely averse to the parental controls idea), you're not dismissing the problem out of hand, and in general I have no quarrel with you or your approach.
4 replies →