this post was submitted on 16 Aug 2023
1344 points (97.1% liked)

Technology

59594 readers
3330 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Thanks to Popcrave https://twitter.com/popcrave/status/1691852136236327316?s=46&t=lcH0dp9biwkMEBKsRQeVeQ

Who here is going to put their ID and photo on X/Twitter

you are viewing a single comment's thread
view the rest of the comments
[–] wesker@lemmy.sdf.org 334 points 1 year ago (10 children)

Twitter aside, if any website or app ever asks this of you, please nope the fuck out.

[–] sab@kbin.social 115 points 1 year ago (6 children)

I guess it only occasionally makes sense for government web sites and banks. X might have ambitions to become a bank, so in that sense it might make sense.

So another piece of advice: if twitter ever asks you if you want to start using it for banking, nope the fuck out.

[–] Hotzilla@sopuli.xyz 59 points 1 year ago* (last edited 1 year ago) (4 children)

You Americans should get to this century and start performing digital strong authentications like the rest of us. Sending picture of your ID to anyone is insane :)

How we do it here in Finland is that there are digital identity providers which use bank/mobile carrier to identify you. They then use MFA when identifying you. Any service can use these services to do strong authentication for you. And they don't cost anything for the customer, and is really cheap for the company who wants to identify you. It is also build into the law that you must identify people using these, to avoid identity theft.

[–] zaph@sh.itjust.works 96 points 1 year ago (1 children)

We're still trying to decide if slavery was wrong give us some time

[–] ShakeThatYam@lemmy.world 20 points 1 year ago* (last edited 1 year ago)

Half our country thinks that would be the mark of the Beast or some shit.

[–] HeartyBeast@kbin.social 2 points 1 year ago (2 children)

How doss your bank identify you?

[–] somethingsnappy@lemmy.world 4 points 1 year ago

When you walk in, the guy goes "hey Sam! I tupped your mom the other night."

[–] Honytawk@lemmy.zip 1 points 1 year ago (1 children)

By the card they issued me when I opened the account.

[–] HeartyBeast@kbin.social 1 points 1 year ago (2 children)

But how did they authenticate your identity when you opened the account? I'd not trying to be an arse - but at some point it will likely have come back to matching some official photo id against your face.

[–] Damage@feddit.it 1 points 1 year ago

It's not like the bank KEEPS your ID

[–] Hotzilla@sopuli.xyz 1 points 1 year ago (2 children)

They once identify you from your driver's license, government id card or passport. After that you for example link your smart phone to you, and you use their app when you identify.

You can also use mobile carriers, they send a push notification directly to you phone+sim. Not sure what protocol they use here, because it opens up an UI which is plain android, and asks pin.

Everything relays on chain of trust that since one service has identified you, the next can trust too. Plus there is MFA to verify that you actually made the identification request.

[–] HeartyBeast@kbin.social 2 points 1 year ago (1 children)

The initial argument was ‘sending is to anyone is insane’ but that’s what you do with the bank. Yes it’s only once - but that’s the same as the other systems we are taking about here.

[–] Hotzilla@sopuli.xyz 1 points 1 year ago (8 children)

They don't accept it remote, only face-to-face. I have done it once, 15 years ago. Face-to-face is actually only way to do it to avoid identity theft.

load more comments (8 replies)
[–] assassin_aragorn@lemmy.world 2 points 1 year ago (1 children)

I mean that's how it's like here in the States too. Show your paperwork at registration and that's it.

load more comments (1 replies)
[–] GBU_28@lemm.ee 2 points 1 year ago
[–] wesker@lemmy.sdf.org 15 points 1 year ago* (last edited 1 year ago) (3 children)

Idk, I've got my hands in a lot of financial cookie jars, and I don't recall ever being asked for something like this. At the very least, not in this manner.

[–] 520@kbin.social 22 points 1 year ago (1 children)

It's pretty standard for European banks thanks to Know Your Customer laws.

[–] exen904@kbin.social 5 points 1 year ago (2 children)

If you keep in mind that it’s only done with special certified subcontractors, then yes. I would never give that information directly to a company like X. And yes, also those special companies are more times shady than they should be, but still.

[–] Diprount_Tomato@lemmy.world 13 points 1 year ago

Call it Twitter please

[–] 520@kbin.social 3 points 1 year ago

If you keep in mind that it’s only done with special certified subcontractors, then yes.

Dunno what you're talking about here but I've had to go through something similar every time I've opened a new account with a financial service.

But yeah, I would not trust Twitter/X either. Musk is too much of an emotional child following whatever whim takes his fancy that day.

[–] sab@kbin.social 8 points 1 year ago (1 children)

I know there's a similar-ish process for accessing Spanish social security services online at least, and I believe it's the same for some other services as well.

Then again, Spanish public services are not exactly the gold standard for digitalization.

[–] Diprount_Tomato@lemmy.world 7 points 1 year ago (1 children)

Wait are you Spanish too? Those websites look like they've been made by a secretary's cousin that only knew how to copy and paste in the 90s

[–] sab@kbin.social 6 points 1 year ago (1 children)

I just have a few Spanish friends! And from what they're telling me that's probably exactly how these websites were made.

[–] Diprount_Tomato@lemmy.world 3 points 1 year ago

I mean, most public computers are very old too. Like 20 years old at leat

[–] qaz@lemmy.world 3 points 1 year ago

I have the opposite experience but maybe it’s just different in the EU

[–] Yoryo@kbin.social 12 points 1 year ago (1 children)

He's definitely pushing for Twitter to be the next WeChat.

[–] Diprount_Tomato@lemmy.world 10 points 1 year ago

Can't wait for the social credit system

[–] Bishma@discuss.tchncs.de 7 points 1 year ago (1 children)

To follow his dystopian vision of Twitter as the Everything app, in the US it will have to be a bank at some point. The same way that Apple is now a bank in order to power parts of their wallet and payment platforms.

[–] FlyingSquid@lemmy.world 5 points 1 year ago (2 children)
load more comments (2 replies)
[–] PunnyName@lemmy.world 5 points 1 year ago (1 children)

Yeah, PayPal sure as fuck ain't a bank. And the same douche started that.

[–] Cabrio@lemmy.world 4 points 1 year ago* (last edited 1 year ago)

Max Levchin, Peter Thiel, and Luke Nosek own Twitter?

[–] Neato@kbin.social 3 points 1 year ago

The only government function that has ever wanted a "selfie" was for my drivers license and passport. Both of which feature that picture. But I've never done either through a site.

[–] BorgDrone@lemmy.one 19 points 1 year ago (1 children)

It’s stupid as well, because it’s impossible to authenticate an id or passport from a photo. You can just photoshop something and send that in.

[–] ThePrism@feddit.nl 4 points 1 year ago (2 children)

incorrect. it is actually fairly easy to authenticate an id or passport from a photo. Photoshopping something is easily spotted by a trained eye. Source i work as a document expert for an online ID verification company. the amount of fakes we spot each day are fairly large and its not all automatically processed. Also for those people that don't know where there data is proccesed. there are actually a lot of laws in place to protect your data for example for EU citizens

[–] Honytawk@lemmy.zip 1 points 1 year ago* (last edited 1 year ago) (1 children)

So just ... photoshop and print a fake ID and ask a stranger to take a picture with it.

I doubt you will see the ID clearly enough to make out the photoshopped parts.

[–] ThePrism@feddit.nl 1 points 1 year ago

nah thats why we reject on bad quality if we can't see all the sec features or if documents are printed or on a screen. Things like laser engraving are actually easy to see the difference between Photoshop and real.

[–] BorgDrone@lemmy.one 1 points 1 year ago (1 children)

Sure, a bad photoshop can be spotted, but you can’t spot it if the forger put in just a little bit of effort. The fact that you can spot some fakes doesn’t mean you spot all fakes.

[–] ThePrism@feddit.nl 1 points 1 year ago

Hence why we have minimum picture quality were we reject if too low quality plus in 6 years of working i have only seen a handful of fraudsters put in effort. most don't put in effort and are either shoddy photoshops or people use camouflage passports(aka passports from non existing countries)the thing is that most printing techniques are easily visible on official passports. things like laser engraving and embossing are hard to photoshop and if people try they often look digitally replaced. But for doing my work it also has made we agree that not all companies need every data you have. But yes it does hell that i have done Print design before this job so know about how things are printed plus knowing how photoshop works

[–] Trebach@kbin.social 4 points 1 year ago (1 children)

Then nope the fuck out of Hetzner then. They asked that of me.

load more comments (1 replies)
[–] pumpsnabben@sopuli.xyz 4 points 1 year ago (1 children)
[–] Blizzard@lemmy.zip 2 points 1 year ago (3 children)
load more comments (3 replies)
[–] otter@lemmy.ca 3 points 1 year ago

Outside of services where you need to access it (ex. school / exams / government services), one beneficial one might be dating apps. There's an advantage to being verified.

Although none of them ask for ID from what I understand, just "hold up 3 fingers and take a touch your nose" or something...

load more comments (5 replies)