As Congress Rushes To Force Websites To Age Verify Users, Its Own Think Tank Warns There Are Serious Pitfalls
from the a-moral-panic-for-the-ages dept
We’re in the midst of a full blown mass hysteria moral panic claiming that the internet is “dangerous” for children, despite little evidence actually supporting that hypothesis, and a ton arguing the opposite is true. States are passing bad laws, and Congress has a whole stack of dangerous “for the children” laws, from KOSA to the RESTRICT Act to STOP CSAM to EARN IT to the Cooper Davis Act to the “Protecting Kids on Social Media Act” to COPPA 2.0. There are more as well, but these are the big ones that all seem to be moving through Congress.
The NY Times has a good article reminding everyone that we’ve been through this before, specifically with Reno v. ACLU, a case we’ve covered many times before. In the 1990s, a similar evidence-free mass hysteria moral panic about the internet and kids was making the rounds, much of it driven by sensational headlines and stories that were later debunked. But Congress, always happy to announce they’ve “protected the children,” passed the Communications Decency Act from Senator James Exon, which he claimed would clean up all the smut he insisted was corrupting children (he famously carried around a binder full of porn that he claimed was from the internet to convince other Senators).
You know what happened next: the Supreme Court (thankfully) remembered that the 1st Amendment existed, and noted that it also applied to the internet, and Exon’s Communications Decency Act (everything except for the Cox/Wyden bit which is now known as Section 230) got tossed out as unconstitutional.
It remains bizarre to me that all these members of Congress today don’t seem to recognize that the ruling in ACLU v. Reno existed, and how all their laws seem to ignore it. But perhaps that’s because it happened 25 years ago and their memories don’t stretch back that far.
But, the NY Times piece ends with something a bit more recent: it points to an interesting Congressional Research Service report that basically tells Congress that any attempt to pass a law targeting minors online will have massive consequences beyond what these elected officials intend.
As we’ve discussed many times in the past, the Congressional Research Service (CRS) is Congress’ in-house think tank, which is well known for producing non-political, very credible research, which is supposed to better inform Congress, and perhaps stop them from passing obviously problematic bills that they don’t understand.
The report focuses on age verification techniques, which most of these laws will require (even though some of them pretend not to: the liability for failure will drive many sites to adopt it anyway). But the CRS notes, it’s just not that easy. Almost every solution out there has real (and serious) problems, either in how well they work, or what they mean for user privacy:
Providers of online services may face different challenges using photo ID to verify users’ ages, depending on the type of ID used. For example, requiring a government-issued ID might not be feasible for certain age groups, such as those younger than 13. In 2020, approximately 25% and 68% of individuals who were ages 16 and 19, respectively, had a driver’s license. This suggests that most 16 year olds would not be able to use an online platform that required a driver’s license. Other forms of photo ID, such as student IDs, could expand age verification options. However, it may be easier to falsify a student ID than a driver’s license. Schools do not have a uniform ID system, and there were 128,961 public and private schools—including prekindergarten through high school—during the 2019-2020 school year, suggesting there could be various forms of IDs that could make it difficult to determine which ones are fake.
Another option could be creating a national digital ID for all individuals that includes age. Multiple states are exploring digital IDs for individuals. Some firms are using blockchain technologies to identify users, such as for digital wallets and for individuals’ health credentials. However, a uniform national digital ID system does not exist in the United States. Creating such a system could raise privacy and security concerns, and policymakers would need to determine who would be responsible for creating and maintaining the system, and verifying the information on it—responsibilities currently reserved to the states.
Several online service providers are relying on AI to identify users’ ages, such as the services offered by Yoti, prompting firms to offer AI age verification services. For example, Intellicheck uses facial biometric data to validate an ID by matching it to the individual. However, AI technologies have raised concerns about potential biases and a lack of transparency. For example, the accuracy of facial analysis software can depend on the individual’s gender, skin color, and other factors. Some have also questioned the ability of AI software to distinguish between small differences in age, particularly when individuals can use make-up and props to appear older.
Companies can also rely on data obtained directly from users or from other sources, such as data brokers. For example, a company could check a mobile phone’s registration information or analyze information on the user’s social media account. However, this could heighten data privacy concerns regarding online consumer data collection.
In other words, just as the French data protection agency found, there is no age verification solution out there that is actually safe for people to rely on. Of course, that hasn’t stopped moral panicky French lawmakers from pushing forward with a requirement for one anyway, and it looks like the US Congress will similarly ignore its own think tank, and Supreme Court precedent, and push forward with their own versions as well.
Hopefully, the Supreme Court actually remembers how all this works.
Filed Under: age verification, children, crs, free speech, kosa, protect the children, restrict act, stop csam
Comments on “As Congress Rushes To Force Websites To Age Verify Users, Its Own Think Tank Warns There Are Serious Pitfalls”
Why are the panicking about TikTok, when they are about to require every online service to gain a real id of all users?
They say that the road to hell is paved with good intentions, in this case I think good intentions are used to pave a road to hell. I remain confused as to why such a road is necessary due to the fact we are already there.
This would later evolve into binders full of women, after arriving on Mitt Romney’s desk.
“perhaps that’s because it happened 25 years ago and their memories don’t stretch back that far.”
Pretty sure for many of them, there’s a gaping hole in their memories that stretches between the 1950s and what they had for lunch today.
(bitter laughter)
Re:
Its likely the Supreme Court would overturn any of the bills if they were pass seeing they already been ruled unconstitutional.
Re:
When has the Roberts Court ever voted to restrict a corporation’s First Amendment rights?
Re: Re:
That was before the “wokes” started getting in the way of the Christofascist endgame.
Re: Re: Oh, they might...
…if Disney v. DeSantis ever gets there.
We’re in the midst of a full blown mass hysteria moral panic claiming that the internet is “dangerous” for children
And yet the parents are just sitting idly by waiting for someone else to do something, while their children wander around the Internet unprotected from certain doom.
If only they had control over the means their children used to access the Internet…
Re:
The thing everyone needs to remember about the religious, moral panicky types is that they don’t just want to raise their own children, they want to raise yours. That’s what these laws are for. You might not care if your 16-year-old sees porn (because why would you), but the Fundies do. Oh, they do. And they’re willing to legislate against it, and put peoples personal information at risk.
Your child needs a good fundamentalist Christian upbringing afterall (your own personal religious views notwithstanding).
“It remains bizarre to me that all these members of Congress today don’t seem to recognize that the ruling in ACLU v. Reno existed”
Mike, most of them have no idea what the Constitution says.
Re:
In the case of conservative Christian Republicans, the same could be said about the Bible.
Re: Re:
If only they read that part in the bible that explicitly says that the life of an child in utero is not equivalent to one that currently exists after they’re born. That is, Exodus 21:22-25. If only the “pro-life” Christians followed that part of the bible.
Seems the oversaturation of “for the children” bills could very well mean none of the bills will pass because Congress may find it hard to agree on which one to pass.
Sometimes, the hard lessons will have to be learned the hard way.
And that’s not a sexual euphemism. We’ll be losing the next generation to the current moral panic.
I hope Congress likes a more radical next generation, the protests and worse will continue.
Free dumb
I think this is all part of the same movement by conservatives to cut children off from information that challenges the conservative worldview. Banning books, screaming about CRT, gutting public education—that’ll all get you pretty far… but there’s still that pesky open Internet with all that free information. Gotta ban that, too, if you really want to isolate your kids and keep them in your thought prison. Wouldn’t want their gay or trans kids to find community online, now, would they…
Re:
I would say the anti-queer legislation is also having the cut-children-from-information effect. Teens may realize that they’re not the person they were assigned at birth, and the anti-queer legislation is meant to force them to be oppressed and miserable (not to mention targeted for death).
Age ID
Do the words “Congress” and “think (tank or otherwise)” even belong in the same article?
Re:
Congress does try to distance itself from thinking, but some things are unavoidable.
What's that again?
CRS is short-hand for Can’t Remember Shit, and stating otherwise is discrimination against us senior citizens!
Additionally.....
As well as the difficulties in ‘proving’ that the offered ‘proof of age’ was valid, passing any of these bills will instantly moot any future attempt to mitigate privacy invasions. After all, if you had to give up all of your private info in order to access the internet in the first place, then what’s the point of asking Congress for comprehensive privacy protections?
Further, I don’t see any ‘reactive protections’ in place where when a data breach does occur (not if), some sort of protection against ID theft will automatically kick in. We see that now, somewhat voluntarily, offered by private corps, but that’s not enough. And while I’m at it, who exactly will hold “the keys to the kingdom”? That person/entity should be personally accountable for any breach.
Yes, well, you see… the thing is, the Internet embodies that which the typical politician hates most: someone else speaking.
The problem is there’s no safe way to verify ID or age without compromising users privacy and this effects everyone not just users under the age of 16
Of course it’s very likely most websites will be hacked and users private data accessed by hackers
We don’t have the tech to do this safely
Politicians are asking 1000s of websites to do the impossible
Maybe politicians should protect children by taking action on gun control to stop school shootings
Rather than pass laws to put people’s privacy at risk
the internet is part of most young peoples life ,used for education, communicating with friends family ,arranging meet ups or social events ,its also a medium for free speech and keeping up with news and politics and current affairs .Congress should at least consult with experts on how the internet works before making laws that would compromise the privacy of adults and teens by making 1000,s of websites collect personal data on ever person who wishs to read an article or visit a website even once.
other countrys apart from china and russia have rejected the use of age id verification as we simply do not have a safe way of doing this without putting the public,s privacy at risk .
Re: Yeah, right.
Previously stated doubt on whether Congress has read The Constitution – much less understood that.
Now, we’ve had Section 230 for quite awhile and Congress seems to blindly accept the kooks accusations without ever reading the plain text of the law.
They won’t read this one either. It doesn’t conform to their preexisting biases.
This is not about protecting children – it’s about suppressing anonymous speech by having everyone register. The Supreme Court has noted 514 U.S. 334 (1995):
“Protections for anonymous speech are vital to democratic discourse. Allowing dissenters to shield their identities frees them to express critical minority views . . . Anonymity is a shield from the tyranny of the majority. . . . It thus exemplifies the purpose behind the Bill of Rights and of the First Amendment in particular: to protect unpopular individuals from retaliation . . . at the hand of an intolerant society.”
They’re already using anti-trust and sec investigations to keep the platforms in line. Now, they want to know who they want the IRS to audit in order to keep the users in line too.
They will keep all the records for everyone
All visitors to all American websites. Fascinating.
Hats off to the never saw a technical idea that couldn’t be used in a more inappropriate application: The Blockchain – which has been described as a very slow database. Rather accurately, one might add.
Is this actually a push by Oracle, and HDD/SSD vendors? Cause they will be making big sales on this.
There is an easy solution
I’ve called for a national ID for a LONG time.
Free and government funded. Supplied first in the hospital the day you are born. Updated every 4 years for free until the day you die.
Full legal name,
Date of birth
current locational residence
Driving permissions
Voting status
Citizenship(s)
A smart chip ID platform would instantly solve all these problems.
Smart card readers are less than $10. Often under $5.
They can be used directly via usb or wirelessly via NFC/BT
What many privacy advocates see as an issue is simply the common way of life in the majority of the world.
how the US still doesn’t have a national smart ID is beyond me.