What if I told you that by regulation, the EU age verification system has to be anonymous and that it’s only the AUKUS countries that are moving forward in a way where anonymity is “a nice to have”.
Denmark’s system, which is a front-runner implementation in the EU, is going to be fully ZKP.
And yes it’s basically built with tokens.
You identify with a government system in an app. The services issues you signed tokens that are anonymous. You hand these anonymous tokens over to the sites that demand proof of age.
That sounds great. I don’t follow the topic closely (probably I should), so wasn’t aware of these developments. This should be brought up in all discussions about age verification, so everyone knows there are better options.
Some people will feel that it’s not ideal, as you still have to trust the government, opposed to full anonymity, but that is a bit of a separate problem.
Ultimately someone has to vouch for “yes, this person is 18+”. People can’t self-attest, except through crappy biometric, so at some point a government ID has to be involved.
I’d trust my government over a credit reference agency that literally makes revenue from selling access to your private data.
Yes, and governments, at least democratic ones, represent the interests of their people, so at least on paper this is the correct way to structure things. Then you use the channels to government to ensure it’s regulated properly. If this is not possible or there’s no trust, there’s a larger problem.
What if I told you that by regulation, the EU age verification system has to be anonymous and that it’s only the AUKUS countries that are moving forward in a way where anonymity is “a nice to have”.
Denmark’s system, which is a front-runner implementation in the EU, is going to be fully ZKP.
And yes it’s basically built with tokens.
You identify with a government system in an app. The services issues you signed tokens that are anonymous. You hand these anonymous tokens over to the sites that demand proof of age.
How are you supposed to abuse the data of people that you can’t even identify…?
Anyone have a more in-depth technical description of how that works? I’m interested.
https://digst.dk/media/5gybwsaq/implementing-age-verification-with-danish-digital-identity-wallet-dktb-09.pdf
That sounds great. I don’t follow the topic closely (probably I should), so wasn’t aware of these developments. This should be brought up in all discussions about age verification, so everyone knows there are better options.
Some people will feel that it’s not ideal, as you still have to trust the government, opposed to full anonymity, but that is a bit of a separate problem.
Ultimately someone has to vouch for “yes, this person is 18+”. People can’t self-attest, except through crappy biometric, so at some point a government ID has to be involved.
I’d trust my government over a credit reference agency that literally makes revenue from selling access to your private data.
Yes, and governments, at least democratic ones, represent the interests of their people, so at least on paper this is the correct way to structure things. Then you use the channels to government to ensure it’s regulated properly. If this is not possible or there’s no trust, there’s a larger problem.