The people pushing for age verification have already said that they want to know who's behind every account on every website on the entire Internet. They won't accept any open or privacy-preserving standard.

The third world is also pushing Digital ID. In fact they would love it even more than the first world as it would allow for even more totalitarianism.

And it was a huge mistake. The laws are the same for everyone. If Apple can do this then so can Google.

Problem is a lot of apps require a locked-down device. You can't use a phone that isn't locked down in most of the world. And it will spread to PCs eventually.

The EU Digital Wallet requires hardware attestation so only it only works on locked-down government-approved OSes. That opens the door for government control of all electronic devices.

What a shame. The California one is just an input box.

Zero knowledge proofs stops corporations from tracking you, but they don't stop the government from tracking which websites you visit. They also require hardware attestation for them to work, which means you will be only allow to use a locked-down goverment-approved OS for age verification, and that opens the door for the government to control the software running on every device.

I doubt banks or the government would ever white list something like Lineage that's not made by some megacorporation. Also IIRC most phones don't allow you to relock the bootloader after flashing a custom ROM.

Most banks don't know hardware tokens are a thing. They want everyone to use their app.

Is this yet more evidence of how utterly broken US banks are? Assuming you are referring to US banks.

For the past 20 or so years, every bank I've been with in Belgium has provided me with one of three types of hardware token:

1. An OTP token that's just a screen that displays a new 6 digit token every couple of seconds (haven't seen one of these in a few years now). This was used to supplement username/password on login and to verify every bank transfer.

2. A token with a screen and a display, which generates OTPs based on input. E.g. for a payment the bank would tell me to enter the amount + the last N digits of the bank account, the token then generates an OTP, which I can use to confirm the payment. That's what 2 of my 3 banks currently use. They have separate modes for logging in, for signing bank transfers, for signing 3D Secure online payments, etc.

3. A card reader where where I just slot in my card. I can then log in or sign payments using the card's chip & pin. This is what my third bank uses. There are a couple of variants on this, such as models which connect with USB and models which can read QR codes from your screen so you don't have to tap in anything except for your PIN.

To avoid confusion, the actual name is Trusted Platform Module.

They won't need to do that. Once Google Play Integrity starts using remotely provisioned keys in a few years it will be impossible to hide root without exploiting a hardware or firmware vulnerability.