A new US bill requires age verification to occur directly on user devices rather than through centralized servers. The measure aims to balance content restrictions with privacy concerns.
The proposed legislation mandates that age verification systems operate locally on devices, preventing user data from being transmitted to third-party verification services. This approach addresses privacy concerns while enabling platforms to enforce age restrictions on certain content categories.
Under the bill's framework, devices would verify age through existing identification methods without storing verification results centrally. The requirement applies to platforms offering age-restricted content, including adult material and services.
Key aspects:
- Verification happens on-device, not on external servers
- Reduces data collection and privacy risks
- Applies to multiple content categories
- Shifts compliance burden to platforms
The proposal has generated significant discussion in tech circles, with 117 points and 55 comments on Hacker News. Implementation details remain under review, including technical standards and exemptions for smaller platforms.
The bill represents an attempt to modernize age verification without creating centralized databases of user information.
Microsoft has released a patch for a zero-day vulnerability in Windows Defender that could allow attackers to exhaust hard disk space. The flaw was discovered and reported by security researcher NightmareEclipse.
A software defect from 2006 triggered a cascading network failure that knocked out Telstra's national phone service Wednesday morning. The bug, related to daylight savings time processing, created a 'digital domino chain' that locked customers out across the country.
The EU Parliament is advancing legislation that would require tech companies to scan for child sexual abuse material (CSAM), reviving a proposal rejected in March. End-to-end encrypted services like WhatsApp would be exempt from the requirements.
Hackers compromised the Injective Labs SDK repository on GitHub and published a malicious package to npm that steals cryptocurrency wallet private keys and seed phrases from developers.