Comment on France seeks to ban social media for children under 15
fluffykittycat@slrpnk.net 4 days agoNo ZKP system can work because someone can generate hundreds of tokens and hand them out to whoever wants one.
Comment on France seeks to ban social media for children under 15
fluffykittycat@slrpnk.net 4 days agoNo ZKP system can work because someone can generate hundreds of tokens and hand them out to whoever wants one.
sunbeam60@feddit.uk 4 days ago
Only the entity that owns the private key can generate signed tokens. You can read about the Danish solution, which is the first and most developed implementation of the EU’s requirements for anonymity: digst.dk/…/implementing-age-verification-with-dan…
clean_anion@programming.dev 3 days ago
This is a false assumption: PIN codes can be bypassed by sharing them with others. Devices can be faked unless using hardware attestation, which prohibits any modifications to the device which may be undertaken by those interested in rooting or installing a custom OS.
This method requires the use of a vanilla, unmodified device, effectively prohibiting modifications to devices that one might wish to alter.
sunbeam60@feddit.uk 3 days ago
It may theoretically be a false assumption but in practice it’s really not. The MitID identification and signing framework of Denmark, and many other similar systems across the EU, is based entirely on “the device is personal, access to it is limited and the secure enclaves within them are trustworthy”.
You are correct that this framework is not designed for anyone who wishes to root their device or install a custom OS. In other words, it cuts out 0.00000000001% of the population. The colour of the app has a bigger impact than “oh no! We can’t support rooted devices”.