IdeaWell

Project ideas from Hacker News discussions.

Online age-verification tools for child safety are surveilling adults

Original Article

Hacker News Discussion

📝 Discussion Summary (Click to expand)

5 Prevalent Themes in the Discussion

# Theme Supporting Quote
1 “Mandatory” narrative is often inaccurate > “Discord’s age verification is optional and only required to disable the image content filter, join adult servers, and a couple other features. I’m not saying it’s a good decision, but I am getting tired of the repeated claim that it’s mandatory to go do age verification to use the service.” – Aurornis
2 Privacy & surveillance concerns > “Age verification will make software development impossible or be impossible to implement without huge investment.” – righthand
> “Not really, you'll just be forced to use services from eg google or meta. And pay for them. And share user data.” – ajsnigrutin
3 Effectiveness is doubtful; laws may expand beyond intent > “You know that none of those things actually protect children from predators which is the supposed reason for these changes. So when they inevitably don’t work Discord will take the next step of requiring age verification from everyone.” – voxic11
4 Calls for less‑intrusive or privacy‑preserving alternatives > “ZK proofs are the solution to this problem. It’s a pity this tech is not taken more seriously.” – dylkil
5 Broader critique of over‑reach and loss of freedom > “The uncomfortable part is that both sides are right: there are real harms to kids online, but tying real‑world identity to routine internet access fundamentally changes what the internet has been for decades.” – ErigmolCt

The summary is intentionally concise, focusing on these five recurring points with direct, attributed quotations.

🚀 Project Ideas

AgeProof SDK

Summary

  • Provides a zero‑knowledge proof (ZKP) based age verification flow that never stores or transmits the user’s real age or identity.
  • Enables web and mobile apps to comply with age‑restriction laws while preserving user privacy.
  • Eliminates the need for third‑party ID uploads or credit‑card checks.

Details

Key Value
Target Audience Web and mobile developers building age‑restricted services (games, e‑commerce, content platforms).
Core Feature Client‑side ZKP age proof generation + server‑side verification via a lightweight API.
Tech Stack Rust/WebAssembly for client, Go for API, libsnark or zk‑SNARK libraries, PostgreSQL for audit logs (optional).
Difficulty Medium
Monetization Revenue‑ready: Subscription + per‑verification fee.

Notes

  • HN users complain that “age verification is a pain” and “privacy is lost” (e.g., “I don’t want to give my ID”). AgeProof lets them comply without data leakage.
  • The ZKP approach satisfies regulators who require proof of age but not identity, addressing the “no record‑keeping” demand.
  • Ideal for Discord‑style platforms, gaming servers, and any service facing California/UK age‑verification laws.

AgeCompliance Dashboard

Summary

  • A web‑based compliance checker that maps a developer’s target regions to applicable age‑verification statutes and provides ready‑to‑use code snippets.
  • Reduces the risk of accidental non‑compliance and the “mandatory age verification” confusion.

Details

Key Value
Target Audience Backend and DevOps engineers, product managers of SaaS and mobile apps.
Core Feature Interactive map + API that returns required age‑verification logic per jurisdiction.
Tech Stack React, Node.js, GraphQL, PostgreSQL, Docker.
Difficulty Medium
Monetization Revenue‑ready: Tiered SaaS pricing ($49/mo for 10 regions, $199/mo for unlimited).

Notes

  • Users like “Aurornis” and “RHSeeger” are frustrated by ambiguous “mandatory” claims; AgeCompliance clarifies what is truly required.
  • Provides quick integration snippets (e.g., Express middleware, Firebase Cloud Function) to speed up development.
  • Helps avoid costly fines and legal disputes highlighted by “john_strinlai” and “jimz”.

AgeGuard Browser Extension

Summary

  • A privacy‑first browser extension that detects age‑verification prompts, auto‑fills safe age values, and warns users about mandatory verification requirements.
  • Gives users control over whether to comply or avoid services that enforce intrusive checks.

Details

Key Value
Target Audience End‑users, privacy advocates, parents.
Core Feature Site‑specific rules, auto‑fill, warning banners, optional “skip” mode.
Tech Stack JavaScript, WebExtensions API, IndexedDB for local rules.
Difficulty Low
Monetization Hobby (open source).

Notes

  • Addresses frustration from “Aurornis” and “airstrike” who dislike mandatory age checks.
  • Empowers users to bypass or delay verification, reducing the “mandatory” narrative.
  • Can be distributed via Chrome Web Store and open‑source on GitHub.

Decentralized Age Attestation Wallet

Summary

  • A self‑sovereign identity wallet that issues age attestations via verifiable credentials (VCs) without revealing personal data.
  • Works with EUDI, EU‑Digital‑Identity‑Wallet, and other standards, enabling cross‑platform age verification.

Details

Key Value
Target Audience Individuals, developers, service providers needing age proof.
Core Feature VC issuance, selective disclosure, offline signing, revocation support.
Tech Stack Rust (for CLI), JavaScript SDK, DID‑method: key, integration with EUDI wallet APIs.
Difficulty High
Monetization Revenue‑ready: Freemium wallet + enterprise API ($99/mo).

Notes

  • Responds to concerns about “EUDI” privacy issues and “BBS+” unlinkability (see “chocmake”).
  • Allows users to prove age to services without giving away birthdate or address.
  • Meets the “no record‑keeping” requirement voiced by “triceratops” and “Rex”.

DataLeakTracker Service

Summary

  • A subscription service that continuously scans public data‑breach feeds, social media, and dark‑web sources to detect leaked personal data for users.
  • Sends alerts and remediation guidance, helping users protect themselves from identity theft.

Details

Key Value
Target Audience Privacy‑conscious individuals, small businesses, compliance teams.
Core Feature Real‑time breach monitoring, email/SMS alerts, automated password reset workflows.
Tech Stack Python, Scrapy, ElasticSearch, Flask API, Twilio for notifications.
Difficulty Medium
Monetization Revenue‑ready: $9.99/mo per user, $199/mo per business.

Notes

  • Addresses the “jimz” and “softTalker” concerns about data leaks and lack of transparency.
  • Provides practical utility for users who fear “data leaks” and “privacy‑busting” age‑verification systems.
  • Can be integrated into existing security platforms or offered as a standalone SaaS.

Read Later