[big85]

There's still the issue of how to verify the user to give them that 1 bit. The current tools do not trust the user or the user's device, because the user could lie or modify the software on their device. But once my ID leaves the device, it becomes a privacy issue. You also have the problem that every pre-2026 device no longer functions with any site that requires the 1 bit.

[WithinReason]

Isn't this already a solved issue in crypto? You just need 1 trusted website to verify your identity and sign your bit. Instead of having to trust every website.

[big85]

Indeed. I don't see why the verification process has to be done once per user per website, instead of once per user. That maximizes costs, inconvenience, privacy risks, and compliance failures.

[inigyou]

In the California law the verification is just assuming the person who bought the device is an adult.

This creates a grey zone where a 16yo could buy their own device and set themselves as an adult but grey zones like this aren't really a bad thing.

There's also no penalty for lying. If an adult wants a child to have an adult account, they can.