Theoretical Private Age Confirmation -- Possible?
-
Not sure. How about this (simplified):
- USER visits porn site
- PORN site encrypts random nonce + "is this user 18?" with GOV pubkey
- PORN forwards that to USER
- USER forwards that to GOV, together with something authenticating themselves (need to have GOV account)
- GOV knows user is requesting, but not what for
- GOV checks: is user 18?, concats answer with random nonce from PORN, hashes that with known algo, signs the entire thing with its private signing key
- GOV returns that to USER
- USER forwards that to PORN
- PORN is able to verify that whoever made the request to visit PORN is verified as older than 18 by singing key holder / GOV, by checking certificate chain, and gets freshness guarantee from random nonce
- but PORN does not know anything about the user
There's probably glaring issues with this, this is just from the top of my head to solve the problem of "GOV should know nothing".
What you want is cryptographic Zero-knowledge proofs, not regular encryption. See anonymous credentials protocols.
And it does require every verifying entity to trust the issuer (each user could collect attestations from multiple issuers, to prove different things to different verifiers)
Another issue is the risk of deanonymization by verifiers simply asking for more proof of many different properties, until you can be identified anyway
-
How does the website ask if someone's over 18 without knowing who they're asking about? The website would still need to confirm who's asking for access and then it's back to the whole ID situation to make sure kids aren't claiming to be their parents
You could tie it to requiring access to a digital ID (with password / PIN protection, etc), but yes kids could still "borrow" it
-
IMO, your suggestion assumes that today's government and tomorrow's government will have the same ideals and viewpoints on pornography, and not for 1-2 administrations, but indefinitely. Being able to reverse engineer someone via metadata is possible as is, and likely will become even more finetuned as we AI evolves.
As an American, there are plenty of examples under the current administration where data shared in confidence by undocumented immigrants are now being used to target them for deportation.
It's kind of like sharing data with a company indefinitely because of their current ToS, which is just a snapshot in time. Today's "helpful" approach towards data collection becomes a key part of surveillance in tomorrow's world.
Website: 18+?
Gob.: Yep
???The ideia is neither party is aware of the other's info. The website wouldn't have your data, and the gob. wouldn't know what the information is for.
Website knows, e.g. is the user 18+?, which the user agrees to share, but not anything else
Gob. knows, e.g. you wanted to confirm being 18+ (better if it just didn't know at all), but knows not what use you'll make for that
One side asks a yes or no question, the other gets a question (no source), answers it, the answer makes it back to the first side with no further info.
Unless they can know exactly who you are because you proved to be 18+ or something. Granted, if it were your names, for say a social media profile, that'd be different
-
Hmm… sounds good, other than the amount of work getting and sending stuff everywhere. Though I guess if it were a one-time thing, that'd be fine. I'm used to no cookies and the cookies pop-up always coming back cuz the website never remembers, so my mind just went "too much work" but it could work if the website were to not prompt every time
As long as your browser saves an auth token or something for GOV somewhere, all of that can happen without user interaction.
-
Not sure. How about this (simplified):
- USER visits porn site
- PORN site encrypts random nonce + "is this user 18?" with GOV pubkey
- PORN forwards that to USER
- USER forwards that to GOV, together with something authenticating themselves (need to have GOV account)
- GOV knows user is requesting, but not what for
- GOV checks: is user 18?, concats answer with random nonce from PORN, hashes that with known algo, signs the entire thing with its private signing key
- GOV returns that to USER
- USER forwards that to PORN
- PORN is able to verify that whoever made the request to visit PORN is verified as older than 18 by singing key holder / GOV, by checking certificate chain, and gets freshness guarantee from random nonce
- but PORN does not know anything about the user
There's probably glaring issues with this, this is just from the top of my head to solve the problem of "GOV should know nothing".
wrote on last edited by [email protected]Much too complicated for no benefit.
You had achieved the same with a certificate given to the user, signed (electronically) by GOV stating the user's age.
The problems are, as far as I can see: 1. this means the user must do all the work, and 2. maybe somebody, somewhere does not like to trust GOV, and 3. no "info service" can make money for nothing from it.
-
Hello,
I was gonna post this on Ask Lemmy, but then I thought maybe Technology would be a better fit for the theme. But then I saw it's mostly news, so I thought perhaps Ask Lemmy would indeed be a better fit. If this is not the case, please point me to the right direction.
As a heads-up, I am not 'Murican, and never been to 'Murica, so keep that in mind.
Seeing the recent news with France trying to age-restrict pornographic material online, I was wondering and have sort of an idea, that I wonder if it is actually doable and actually good.
Hear me out: the gobermint likely already has your data, right? At least stuff like name, date of birth, etc. The gobirment could have a private and secure service, which websites and services could use to confirm certain requirements.
For instance: A website wants to confirm if you're over 18. The website essentially asks the official gob. service, "is this user at least 18 years of age?". The official gob. service essentially has to answer "yes, your requirements are met" or "no, your requirements are not met", without giving away information on a person. The user gets prompted, being told what information is being required and whether they wish to share that. The official service wouldn't know where the request is coming from, but the original website requesting the information generates and shows a temporary code, which is not related to the website at all and is sent to the gob. service, so that the user can confirm it is indeed the website they were using that is requesting this, and not a hijack of some kind. The gob. service, if allowed by the user, sends out this confirmation to the original website, without the gob. service knowing the website and without the website knowing the user's info. The website then knows whether their requirements are met and can then act accordingly, such as by not allowing someone to access adult material if they do not meet the age requirement.
Does this make sense? Is it doable? Could it be a potential private and secure way of confirming user information without either party having access to the other's information? Obviously, the idea could be worked on and polished, but as a starting point.
Edit: so, what I'm gathering from comments here:
- Som'o'y'all didn't get it (no, you don't got to log in to your porn tube of choice with an official gob. account)
- This cannot be done
- This could be done
- This is already a thing being worked on
What is to prevent me from giving my information to someone who is under 18? Or worse, it is stolen?
Anyway what you are describing is very similar to SSO. But of course the service can validate the token, by asking the token generator (the gov service.) then the gov service sees that pornhub is asking about that token, now they know what website you are on.
-
Much too complicated for no benefit.
You had achieved the same with a certificate given to the user, signed (electronically) by GOV stating the user's age.
The problems are, as far as I can see: 1. this means the user must do all the work, and 2. maybe somebody, somewhere does not like to trust GOV, and 3. no "info service" can make money for nothing from it.
While that's true from a technical perspective...
How/where do you keep the certificate? If you either need an app for it, or need to manually install it on your device, most users would probably be out. The benefit of my suggestion is that you need absolutely nothing except a way to authenticate with GOV.
- is a Problem with all of these, that's for sure.
I fjnt get the part about the info service tbh
-
Yes, such systems are in development and are called identity wallets. https://yivi.app/ for example has the idea of zero trust attribute sharing. You can request attributes the government knows and store these on your phone. You could then share an attribute like "over 18" with the porn site without the government knowing you shared it with them. Most identity wallets don't want to touch the porn industry tho. So it isn't used for that (yet).
Then how does the site verify the attribute is valid?
-
Hello,
I was gonna post this on Ask Lemmy, but then I thought maybe Technology would be a better fit for the theme. But then I saw it's mostly news, so I thought perhaps Ask Lemmy would indeed be a better fit. If this is not the case, please point me to the right direction.
As a heads-up, I am not 'Murican, and never been to 'Murica, so keep that in mind.
Seeing the recent news with France trying to age-restrict pornographic material online, I was wondering and have sort of an idea, that I wonder if it is actually doable and actually good.
Hear me out: the gobermint likely already has your data, right? At least stuff like name, date of birth, etc. The gobirment could have a private and secure service, which websites and services could use to confirm certain requirements.
For instance: A website wants to confirm if you're over 18. The website essentially asks the official gob. service, "is this user at least 18 years of age?". The official gob. service essentially has to answer "yes, your requirements are met" or "no, your requirements are not met", without giving away information on a person. The user gets prompted, being told what information is being required and whether they wish to share that. The official service wouldn't know where the request is coming from, but the original website requesting the information generates and shows a temporary code, which is not related to the website at all and is sent to the gob. service, so that the user can confirm it is indeed the website they were using that is requesting this, and not a hijack of some kind. The gob. service, if allowed by the user, sends out this confirmation to the original website, without the gob. service knowing the website and without the website knowing the user's info. The website then knows whether their requirements are met and can then act accordingly, such as by not allowing someone to access adult material if they do not meet the age requirement.
Does this make sense? Is it doable? Could it be a potential private and secure way of confirming user information without either party having access to the other's information? Obviously, the idea could be worked on and polished, but as a starting point.
Edit: so, what I'm gathering from comments here:
- Som'o'y'all didn't get it (no, you don't got to log in to your porn tube of choice with an official gob. account)
- This cannot be done
- This could be done
- This is already a thing being worked on
This can work, but with cryptography instead of the porn site connecting to a government service.
The swiss government wanted to introduce electronic id a few years back which was a complete clusterfuck, every party would get all your private data even if they just needed 'older than 18', it was supposed to be implemented by various private companies that then sell it to the individual states, not really with gov oversight, so you have like 20 companies all with all the data, each of which could be hacked at any point etc.
we forced a public vote on it in 2021 and rejected it with 65%.
the use cases are pretty valid, like online pharmacies, ordering booze online, though of course you never know what they would require it for in the future.
so now it's 2025 and a new proposal, this time much more privacy focused, developed by the government, open source, seems like they did listen to a lot of the criticism.
this blogpost goes into a bit of details on why unlinkability matters and that one-time-pads are one potential solution. And the whitepaper with more detail.
i saw a presentation from the digital society on it earlier this year and from what i remember, you get a set of keys (and can create new ones if you run out) from which you can create derived keys that only contain relevant information. The other party can verify this directly, without a gov service. And since you use a new key each time, the porn site also cant crossreference with your booze site that you're the same person, that kind of stuff. It all sounded pretty reasonable and like it would adress your points.
-
Hello,
I was gonna post this on Ask Lemmy, but then I thought maybe Technology would be a better fit for the theme. But then I saw it's mostly news, so I thought perhaps Ask Lemmy would indeed be a better fit. If this is not the case, please point me to the right direction.
As a heads-up, I am not 'Murican, and never been to 'Murica, so keep that in mind.
Seeing the recent news with France trying to age-restrict pornographic material online, I was wondering and have sort of an idea, that I wonder if it is actually doable and actually good.
Hear me out: the gobermint likely already has your data, right? At least stuff like name, date of birth, etc. The gobirment could have a private and secure service, which websites and services could use to confirm certain requirements.
For instance: A website wants to confirm if you're over 18. The website essentially asks the official gob. service, "is this user at least 18 years of age?". The official gob. service essentially has to answer "yes, your requirements are met" or "no, your requirements are not met", without giving away information on a person. The user gets prompted, being told what information is being required and whether they wish to share that. The official service wouldn't know where the request is coming from, but the original website requesting the information generates and shows a temporary code, which is not related to the website at all and is sent to the gob. service, so that the user can confirm it is indeed the website they were using that is requesting this, and not a hijack of some kind. The gob. service, if allowed by the user, sends out this confirmation to the original website, without the gob. service knowing the website and without the website knowing the user's info. The website then knows whether their requirements are met and can then act accordingly, such as by not allowing someone to access adult material if they do not meet the age requirement.
Does this make sense? Is it doable? Could it be a potential private and secure way of confirming user information without either party having access to the other's information? Obviously, the idea could be worked on and polished, but as a starting point.
Edit: so, what I'm gathering from comments here:
- Som'o'y'all didn't get it (no, you don't got to log in to your porn tube of choice with an official gob. account)
- This cannot be done
- This could be done
- This is already a thing being worked on
I always thought the simplest way to do it is to pass laws that require every website to provide a rating/content description and then leave it up to the end user to set acceptable levels. We don't get mad for kids watching the wrong content on TV.
Websites could be fined for either not providing or providing incorrect classifications.
If people don't want their kids to see that stuff, make sure the parents have the tools to enforce.
-
Hello,
I was gonna post this on Ask Lemmy, but then I thought maybe Technology would be a better fit for the theme. But then I saw it's mostly news, so I thought perhaps Ask Lemmy would indeed be a better fit. If this is not the case, please point me to the right direction.
As a heads-up, I am not 'Murican, and never been to 'Murica, so keep that in mind.
Seeing the recent news with France trying to age-restrict pornographic material online, I was wondering and have sort of an idea, that I wonder if it is actually doable and actually good.
Hear me out: the gobermint likely already has your data, right? At least stuff like name, date of birth, etc. The gobirment could have a private and secure service, which websites and services could use to confirm certain requirements.
For instance: A website wants to confirm if you're over 18. The website essentially asks the official gob. service, "is this user at least 18 years of age?". The official gob. service essentially has to answer "yes, your requirements are met" or "no, your requirements are not met", without giving away information on a person. The user gets prompted, being told what information is being required and whether they wish to share that. The official service wouldn't know where the request is coming from, but the original website requesting the information generates and shows a temporary code, which is not related to the website at all and is sent to the gob. service, so that the user can confirm it is indeed the website they were using that is requesting this, and not a hijack of some kind. The gob. service, if allowed by the user, sends out this confirmation to the original website, without the gob. service knowing the website and without the website knowing the user's info. The website then knows whether their requirements are met and can then act accordingly, such as by not allowing someone to access adult material if they do not meet the age requirement.
Does this make sense? Is it doable? Could it be a potential private and secure way of confirming user information without either party having access to the other's information? Obviously, the idea could be worked on and polished, but as a starting point.
Edit: so, what I'm gathering from comments here:
- Som'o'y'all didn't get it (no, you don't got to log in to your porn tube of choice with an official gob. account)
- This cannot be done
- This could be done
- This is already a thing being worked on
The Queensland digital I.D./driver's licence can already do this, and we're hardly ahead of the curve on this. The only current limitation is companies accepting it.
-
Then how does the site verify the attribute is valid?
The attributes are cryptographically signed by the provider. With their public key you can check if they are actually signed by them.
-
I think that at the bare minumum, the PORN<->GOV connection must not occur. How about this (simplified):
- USER visits porn site
- PORN site encrypts random nonce + "is this user 18?" with GOV pubkey
- PORN forwards that to USER
- USER forwards that to GOV, together with something authenticating themselves (need to have GOV account)
- GOV knows user is requesting, but not what for
- GOV checks: is user 18?, concats answer with random nonce from PORN, hashes that with known algo, signs the entire thing with its private signing key
- GOV returns that to USER
- USER forwards that to PORN
- PORN is able to verify that whoever made the request to visit PORN is verified as older than 18 by singing key holder / GOV, by checking certificate chain, and gets freshness guarantee from random nonce
- but PORN does not know anything about the user
There's probably glaring issues with this, this is just from the top of my head to solve the problem of "GOV should know nothing".
In step 2, why encrypt nonce + question? As user, I would like to see what I'm asking gov to sign for me.
-
In step 2, why encrypt nonce + question? As user, I would like to see what I'm asking gov to sign for me.
Fair, maybe remove the question altogether, and have dedicated GOV endpoints for specific attestations?
-
The attributes are cryptographically signed by the provider. With their public key you can check if they are actually signed by them.
To verify the signature with the public key, don’t you need to contact the service/party that signed it?
-
Hello,
I was gonna post this on Ask Lemmy, but then I thought maybe Technology would be a better fit for the theme. But then I saw it's mostly news, so I thought perhaps Ask Lemmy would indeed be a better fit. If this is not the case, please point me to the right direction.
As a heads-up, I am not 'Murican, and never been to 'Murica, so keep that in mind.
Seeing the recent news with France trying to age-restrict pornographic material online, I was wondering and have sort of an idea, that I wonder if it is actually doable and actually good.
Hear me out: the gobermint likely already has your data, right? At least stuff like name, date of birth, etc. The gobirment could have a private and secure service, which websites and services could use to confirm certain requirements.
For instance: A website wants to confirm if you're over 18. The website essentially asks the official gob. service, "is this user at least 18 years of age?". The official gob. service essentially has to answer "yes, your requirements are met" or "no, your requirements are not met", without giving away information on a person. The user gets prompted, being told what information is being required and whether they wish to share that. The official service wouldn't know where the request is coming from, but the original website requesting the information generates and shows a temporary code, which is not related to the website at all and is sent to the gob. service, so that the user can confirm it is indeed the website they were using that is requesting this, and not a hijack of some kind. The gob. service, if allowed by the user, sends out this confirmation to the original website, without the gob. service knowing the website and without the website knowing the user's info. The website then knows whether their requirements are met and can then act accordingly, such as by not allowing someone to access adult material if they do not meet the age requirement.
Does this make sense? Is it doable? Could it be a potential private and secure way of confirming user information without either party having access to the other's information? Obviously, the idea could be worked on and polished, but as a starting point.
Edit: so, what I'm gathering from comments here:
- Som'o'y'all didn't get it (no, you don't got to log in to your porn tube of choice with an official gob. account)
- This cannot be done
- This could be done
- This is already a thing being worked on
wrote on last edited by [email protected]I might be missing something, but they could just mass validate 100 IDs in person, without logging anything, then mix/shuffle 100 "person is an adult" codes (or even multiple per person) that aren't directly connected to anyone and hand these out at random.
This way neither the government, nor the website knows your real ID and your age can still be verified.
Edit: Sure you can still somewhat be tracked by these codes, but this may be mitigated by handing out new or multiple codes and having them expire.
-
To verify the signature with the public key, don’t you need to contact the service/party that signed it?
Yeh, but it's public and normally has a decent validity, so you could fetch it once and then use it for years.
-
Yes, such systems are in development and are called identity wallets. https://yivi.app/ for example has the idea of zero trust attribute sharing. You can request attributes the government knows and store these on your phone. You could then share an attribute like "over 18" with the porn site without the government knowing you shared it with them. Most identity wallets don't want to touch the porn industry tho. So it isn't used for that (yet).
To add to this: The EU is developing this and it’s supposed to be available to all EU citizens at the end of 2026. From that time government services should also be able to accept it. (Not sure if they’re going to make it, the standards are still under active development).
It’s all based on OpenID Connect (OIDC). Everything is being developed in the open, as open source software. You can find the github project here.
If you want to take a look at the draft standards themselves, search for OpenID4VCI (standard for issuing of credentials to a wallet) and OpenID4VP (standard for presenting credentials to 3rd parties).
-
Yeh, but it's public and normally has a decent validity, so you could fetch it once and then use it for years.
But for the same signed attribute?
It seems like the signer would know which clients are attempting to verify authenticity?
-
But for the same signed attribute?
It seems like the signer would know which clients are attempting to verify authenticity?
If the signer (government in this case) is signing everyone's attribute with the same private key, then the public key will be able to verify all of them.
