undefined | Better HN

0 pointsJohnFen1mo ago0 comments

My intention wasn't to be negative, it was to point out a real issue. If we're talking about a standard kind of age verification, then it's a problem. At least for me, I couldn't use such a system.

Since, with this system or any other, someone at some point needs to actually look at an ID, it seems to me that a purpose-built cert that indicates that this was done would be better. Then it would retain the same attributes (aside from being able to be used for anything beyond validating you're over a certain age), you could store it as a file and use it without any special hardware.

Another thought: what about people who use multiple machines? Since you couldn't share credentials across machines, wouldn't that require users to go through the enrollment process for each machine?

0 comments

whh1mo ago

I envision it being similar to passkeys today. I'd expect that your smartphone would hold the credential, and you use the standard QR-code flow for most users.

I store my passkeys in a password manager, so it's conceivable that they can be portable... but in ways supported by the FIDO alliance.

j / k navigate · click thread line to collapse

0 pointsJohnFen1mo ago0 comments

My intention wasn't to be negative, it was to point out a real issue. If we're talking about a standard kind of age verification, then it's a problem. At least for me, I couldn't use such a system.

Another thought: what about people who use multiple machines? Since you couldn't share credentials across machines, wouldn't that require users to go through the enrollment process for each machine?

0 comments

whh1mo ago

I envision it being similar to passkeys today. I'd expect that your smartphone would hold the credential, and you use the standard QR-code flow for most users.

I store my passkeys in a password manager, so it's conceivable that they can be portable... but in ways supported by the FIDO alliance.

j / k navigate · click thread line to collapse