> Teen-by-default settings to roll out globally for all Discord users
Does it mean that even people who reside outside jurisdictions touched by the age verification craze will have to deal with all this?
> use facial age estimation
Surely a kid won't be able to ask someone else to pass the check for them. But let's talk about false positives. If the estimator falsely declares someone an adult, is Discord legally liable?
> submit a form of identification
If you have a picture of an ID document, can you verify that it's real? You'd have to ask the government for that. And at least in one country there is no process for that.
On-device doesn't have to mean on "your" device - they might refer to smartphones with remote attestation (like AVF pKVM) which of course are not really controlled by you..
I have a recording of me trying to pass the captcha for straight 5 minutes and giving up. To be fair, this has only happened once.
What is the purpose of such loop? Bots can simply switch to another residential proxy when the captcha success rate gets low. For normal humans, it is literally "computer says no".
They can do it right up until the battery truly discharges. You can’t turn off WiFi/BT for real either. Icons will go dark and your WiFi and devices won’t work, but underneath the radios are still plenty active and powered on.
Fighting with the OS is futile. The OS is always in control and apps can only ask it nicely to do things.
Microsoft can simply change Recall to capture DRM-marked content too. And to avoid copyright issues, it will store some kind of visual summary (or whaterer the neural network can use) instead of plain screenshots like it is doing now.
I had an idea about amost-privacy-preserving system by involving government ID and blind signatures:
1. The service passes a random string to the user.
2. The user authenticates to their government and asks the government to sign it.
3. The government applies a blind signature which basically says "this user/citizen hasn't registered an account in the last 60 minutes".
4. The government records the timestamp.
5. The user passes the signature back to the service.
Upsides:
* Bypassing this would be orders of magnitude more expensive than phone numbers.
* Almost private
Downsides:
* Won't happen. Remote HW attestation is likely to win :(
* The service knows your citizenship * The gov knows when and how often you register.
* Any gov can always bypass the limits for themselves.
I think it may be also possible to extend it so that the government attests that you have only one account on the service but without being able to find which account is yours.
Some time ago there was a website that showed you a random YouTube video. Like truly random. The biggest discovery to me was that a typical video has 0-1 views, nearly always <10. I bet most people don't realize this is how YouTube actually looks like. And I guess it's also a good small reminder to all people trying to become famous on social media.
I believe the website tried to find videos with least bias possible by doing some clever searches using YouTube API (so not just videos titled IMGXXXX). Maybe it was trying to do partial matches on video ID.
> The biggest discovery to me was that a typical video has 0-1 views, nearly always <10. I bet most people don't realize this is how YouTube actually looks like.
This is also interesting when thinking about how to optimize a video platform. You can see how the vast majority of videos could be evicted to cold / slow storage.
That's probably rare but I had a no name TV which just let me just enable adb over network with full root access. IIRC I had to install an app that can launch arbitrary activities so I could access the buildin Android settings menu instead of the crippled TV settings UI.
Does it mean that even people who reside outside jurisdictions touched by the age verification craze will have to deal with all this?
> use facial age estimation
Surely a kid won't be able to ask someone else to pass the check for them. But let's talk about false positives. If the estimator falsely declares someone an adult, is Discord legally liable?
> submit a form of identification
If you have a picture of an ID document, can you verify that it's real? You'd have to ask the government for that. And at least in one country there is no process for that.
> On-device processing
Oh, a client-side check. Must be secure.