It should be assumed (for the purpose of evaluating if a system is actually secure) that they both are, and are working together.
Validation can be done cryptographically so that assertions (like age) can be verified by one party, and consumed by another party, without either of those parties being able to tie the combination together, even if they are actively cooperating.
It should be assumed (for the purpose of evaluating if a system is actually secure) that they both are, and are working together.
Validation can be done cryptographically so that assertions (like age) can be verified by one party, and consumed by another party, without either of those parties being able to tie the combination together, even if they are actively cooperating.