←back to thread

Supreme Court's ruling practically wipes out free speech for sex writing online

(ellsberg.substack.com)
693 points macawfish | 5 comments | 12 Jul 25 18:14 UTC | HN request time: 0s | source
Show context
xp84 ◴[12 Jul 25 19:01 UTC] No.44544217[source]
So, while I agree that this feels foreign and wrong to me as someone who has experienced "The Internet" for so long, I can't help but wonder if we can separate that from how the offline world works.

I'm asking this in good faith.

Given that:

1. The Internet is not an optional subscription service today the way it was in 1995. Every kid and adult has 1,000 opportunities to get online including on the multiple devices every one of their peers owns, which a single set of parents has no control over. So "Just keep them off the Internet/control their devices" seems like a silly "Just" instruction.

2. The Internet is nearly infinite. The author of this editorial says "then install a content blocker on your kids’ devices and add my site to it". This is a silly argument since the whole point is that no one has ever heard of him/her and it's obviously impossible for a filter (let's just assume filters can't be bypassed) can "just" enumerate every inappropriate site even if it employed a full-time staff who did nothing but add new sites to the list all day long.

So given all of that, how do we justify how the Internet must operate on different rules than the offline world does? One can't open a "Free adult library" downtown and allow any child to wander in and check out books showing super explicit porn. I'd have to check IDs and do my best to keep kids out. It also seems like it would be gross to do so. If you agree with that, why should the Internet operate on different rules?

I'd also like to separate the logistics from the morality here. If you believe it's hard to do it without satisfying privacy concerns, totally true! But then the focus should be on finding a good privacy-respecting solution, not just arguing for the status quo.

replies(12): >>44544288 #>>44544347 #>>44544450 #>>44544850 #>>44545884 #>>44545971 #>>44546073 #>>44546385 #>>44547167 #>>44547340 #>>44547886 #>>44556828 #
_Algernon_ ◴[12 Jul 25 19:18 UTC] No.44544347[source]
The fundamental problem—and it's a big one—is that in the physical world, age verification does not result in a centralized log of when and where I was, and what I did. If I buy cigarettes I show my paper id to some dude and then buy smokes. It's transient with no record (except the fallible memory of the bloke doing the ID check).

This is not true for the proposed age verification schemes for the internet and that is a big problem. Unless this is solved, these schemes deserve every level of resistance we can muster.

replies(3): >>44544404 #>>44544804 #>>44546260 #
2OEH8eoCRo0[dead post] ◴[12 Jul 25 19:23 UTC] No.44544404[source]
[flagged]
_Algernon_ ◴[12 Jul 25 19:24 UTC] No.44544419[source]
Age verification is easy. Age verification that leaves no record, is anonymous, and not circumvent-able is difficult. In the physical world it relies on the fallibility of human memory. No such luck with replicated databases.
replies(3): >>44544499 #>>44544539 #>>44550639 #
1. baq ◴[12 Jul 25 19:41 UTC] No.44544539[source]
An id card is a bearer token.

You can get an anonymous, cryptographically signed, certified legal bearer token confirming your age only, or identity or whatever by a centralized service, be it government or high trust private organizations who need to verify your identity anyway like banks. With some smarts you can probably make such a token yourself so the root bearer token issuer doesn’t have the one you use to browse pornhub.

replies(1): >>44544559 #
2. _Algernon_ ◴[12 Jul 25 19:43 UTC] No.44544559[source]
Which inevitably can be deanonymized after a simple law change, mandating the required data to be reported.
replies(1): >>44550505 #
3. techjamie ◴[13 Jul 25 13:58 UTC] No.44550505[source]
https://datatracker.ietf.org/wg/privacypass/about/

Perhaps a system like Privacy Pass would be ideal. Where a verifier generates a verified client a number of redeemable signed tokens for a session, but when presented by a client, the site doesn't know who that token was issued to, but they know they authenticated this person and can verify they made the token. Therefore they get access.

replies(2): >>44555228 #>>44557369 #
4. heavyset_go ◴[14 Jul 25 00:39 UTC] No.44555228{3}[source]
You're looking for a technical solution to a political problem. This tech is useless the second a law is passed that identities have to be logged. It's also useless if implementers decide to collect identifying information without telling you.
5. _Algernon_ ◴[14 Jul 25 07:31 UTC] No.44557369{3}[source]
That also weakens circumventability. What's stopping me to sell my signed tokens to the highest bidder on ebay?