A key part of ID verification laws is that you're confirming the ID presented also belongs to the user.
They can't just check for "This person currently has an adult ID in their possession" and nothing more, otherwise one kid at school would borrow their older brothers' ID and then use it to register all of their friends' accounts one day.
You tie it cryptographically to their phone with keys in the phone's hardware security module. This doesn't stop sharing of ID but it makes it much more inconvenient.
1. Make it illegal and punish people.
2. Have a certain limit (like 5) on virtual ids one person can register. Allow to withdraw consent and close virtual ids.
Aurornis|29 days ago
A key part of ID verification laws is that you're confirming the ID presented also belongs to the user.
They can't just check for "This person currently has an adult ID in their possession" and nothing more, otherwise one kid at school would borrow their older brothers' ID and then use it to register all of their friends' accounts one day.
tzs|29 days ago
machomaster|29 days ago
unclad5968|29 days ago
MatteoFrigo|29 days ago
Our (Google) implementation: https://github.com/google/longfellow-zk
An independent implementation by the Internet Security Research Group: https://github.com/abetterinternet/zk-cred-longfellow Still being developed but already interoperable with ours.
European age verification app: https://ageverification.dev/av-doc-technical-specification/d...