Sorry but I fundamentally disagree.
-
Sorry but I fundamentally disagree. Privacy respecting solutions do not collect unnecessary information.
The packaging of identity validation in the OS breaches this principle by collecting more information than necessary and by collecting that information prior to the existence of a necessitating use case.
It is not necessary to prove my age to do things not restricted by age, nor is it necessary to know who I am, or to prove my exact age, to prove I am older than a certain age.
Even in the efforts I have seen to verify threshold rather than current age instead of identity, I'm not aware of any attempts or solutions that protect against timing attacks or inference attacks as users transition from failing the threshold verification process to passing it.
Most OS code is proprietary and not auditable so any baked in solution cannot possibly pass a zero trust requirement. Access gates should only be applied at the point of need, as such things have always been done in all other scenarios and environments.
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Εγγραφή Σύνδεση