Google is making zero-knowledge proof technology more accessible to help platforms verify user age without collecting personal data. The move aims to balance online safety requirements with user privacy.
Zero-knowledge proofs allow one party to verify information about another without revealing the underlying data. Google's initiative makes this cryptographic technique available for age assurance systems, enabling websites and apps to confirm users meet age requirements without storing sensitive identification documents or birth dates.
The technology works by proving a statement is true—in this case, that a user is above a certain age—without disclosing why. Users maintain control over their information while platforms gain verification certainty.
Google has published technical documentation and tools to help developers implement zero-knowledge proofs for age verification. The company positions this as addressing growing regulatory pressure for age gates on age-restricted content while protecting user privacy.
The approach faces adoption hurdles, as developers must integrate new systems and users need to understand the verification process. However, industry support suggests growing interest in privacy-preserving verification methods as regulations like the EU's Digital Services Act mandate stronger age assurance measures.
A security analysis reveals xAI's Grok Build command-line tool transmits complete source code and project files to xAI's servers. The discovery raises data privacy questions for developers using the tool.
A Cambridge study reveals that terrorist organizations including Boko Haram and ISIS are using ChatGPT, Claude, and Gemini to plan attacks and develop weapons. Safety filters designed to prevent such misuse have repeatedly failed.
The Australian Cyber Security Centre has issued an alert about coordinated exploitation of vulnerable content management systems and plugins worldwide. The campaign targets organizations using outdated or unpatched CMS software.
Artificial intelligence discovered a critical security vulnerability in Linux kernel code that human developers overlooked for over a decade. The bug could allow unauthorized root access to systems.