Didn't find many details, so please excuse the questions.
So the user would get a number of signed tokens from the gov to prove age, then a token could be shared with a site that verifies age without connecting to gov, assuming it's already aware of the gov's public key?
What prevents the same token from being used by more than one person?
How can the site prove compliance with the law? Will they need to store the tokens for each user? Can the gov tie a stored token back to a particular person that that verified?
So the user would get a number of signed tokens from the gov to prove age, then a token could be shared with a site that verifies age without connecting to gov, assuming it's already aware of the gov's public key?
What prevents the same token from being used by more than one person?
How can the site prove compliance with the law? Will they need to store the tokens for each user? Can the gov tie a stored token back to a particular person that that verified?