Porn company fined £1M over inadequate age checks (UK)

https://www.bbc.co.uk/news/articles/c93nll07z3go

18•ndsipa_pomu•1h ago

Comments

Lio•51m ago

I love the way that the BBC studiously doesn't name any AVS Group Ltd sites in that article.

DoctorOW•47m ago

I'd like to think somewhere in the newsroom somebody read off the list of websites, nobody admitted to visiting, so they had to conclude none of them had name recognition.

sva_•39m ago

Funnily, ofcom itself provides a list in the opening text

https://www.ofcom.org.uk/online-safety/protecting-children/i...

entuno•17m ago

Yeah, they didn't really think through the fact they're publishing big lists of sites without effective age verification in all the investigation notices on their website..

IlikeMadison•43m ago

They can fine all they want, if the company doesn't have any entity in said territory they can just ignore it. What Ofcom succeeded to achieve though is to deter more and more foreign IT companies to ever expand and create jobs in the UK.

crimsoneer•40m ago

I mean, while this might be true, I'm not sure democracies being totally incapable of regulating the internet is a good place to be. I'm not sure a race to the bottom (if you attempt to regulate us in anyway we'll leave/go complain to the US president) is really a great outcome here. "Porn websites should check your age" is not some radical totalitarian demand I think?

brainwad•33m ago

I think it actually is a radical totalitarian demand, if the only accepted form of age verification is government ID scans or selfie face capture. People should have a right to serve content without having to deal with the SPII of their clients.

crimsoneer•27m ago

... but they specifically don't have to, right? You can just use a third party verification company. Or you can not, if you'd prefer not to. You just have to do something vaguely meaningful that isn't just "Pinky swear you're 18".

mzajc•24m ago

How do they perform age checks?

zettabomb•30m ago

The alternative to the OSA is not "being totally incapable of regulating the internet". There's a wide, wide gap between complete lack of regulation and what the UK has done.

IlikeMadison•30m ago

Do you really believe Ofcom and the UK establishment in general really care about the children or terrorists when they are pushing for mandatory digital ID and age-verification in every aspect of our digital lives or are you playing naive?

crimsoneer•25m ago

Controversially, I think most people I know in politics really are actual humans, who got into politics to stop bad things happening, and think that children having ready access to pornography is A Bad Thing.

mittensc•27m ago

> . "Porn websites should check your age" is not some radical totalitarian demand I think?

How would that work? do you want to provide government id to watch porn?

And how is this helping since it's not going to work overall (other sites, torrents, etc)

VBprogrammer•6m ago

If you take as a given that consenting adults should have access to sexually explicit material generated by other consenting adults; the potential for harm to adults is huge with the current implementations.

Can't wait for the headlines when the entire watch history of some famous person is released after someone recognises them in their "age verification scan".

It's about the only good thing which could come out of digital ID. Being able to proved proof of age in a double blind way.

sam-cop-vimes•19m ago

Everyone disagreeing with this poster, are you okay with living in a society where anything goes? Do we give up trying to minimise harms because it is hard to do? The effort to regulate this sort of access has to start in some shape or form and then improved.

Come up with a better solution, provide a proof of concept and yes regulatory agencies / governments will take notice. People like us work in these agencies. Let's propose better ways of achieving the same goal of reducing porn exposure to minors - not keep bashing the initiative taken.

arccy•16m ago

Why is that even a good goal in the first place? Must children grow up in a sterile environment coddled by a nanny state?

NitpickLawyer•13m ago

> Come up with a better solution

Parents are responsible for their children.

Lio•9m ago

Sorry but I'm going to keep bashing the initiative because:

1. It doesn't stop kids from accessing porn because kids know about or can learn about free VPNs.

2. I think it exposes lots of adults to identity theft on non-porn websites by normalising compulsory ID checks. e.g. on Spotify, Bluesky, Reddit, etc. I think it's a matter of time before phishing sites start making use of this.

I think the implementors of this law either knew about these issues or are hopelessly naive.

Given that and the push for digital IDs at the same time I think they are bad actors and I question their motivation.

aesh2Xa1•2m ago

This law demands a surveillance architecture, not just porn regulation. Once the norm and mechanism to de-anonymize web traffic exists, it can be expanded to any content, including political dissent, and for both accessing AND contributing to content (like, for example, on HN). The line should be drawn here.

The vague potential harm of sex doesn't justify the concrete harm of abolishing digital privacy. Further, it's just sex. Equating imagery of legal, natural activity with physical danger is an error.

It is blatantly dangerous to justify stripping citizens of their anonymity. The lawmakers who proposed this are oppressors. They are the danger to our children.

gary_0•1m ago

Everyone seems to be missing that the vast majority of adult websites already follow all the protocols so that they can be blocked by client-side parental software. A good-faith attempt to reduce kids' access to adult content would just be to educate parents about the use of that software on their family's devices, and to improve the standardization and accessibility of the existing parental control tools (which already work quite well). Nobody who isn't a parent would need to be (and never should be) bothered.

This approach would be much more effective than making ridiculous demands of privately run websites or attempting to ban VPNs. And yes, some kids will find a way around whatever system you set up; the solution to that is not to turn the whole of society into a police state. Some kids will always find ways to break the rules; many years ago when I was young I knew plenty of kids who found ways of getting their hands on alcohol or even worse things. Somehow society still exists today.

NitpickLawyer•14m ago

> they can just ignore it.

Eh, maybe? Maybe not? What if years later someone from that company flies through the UK? And if you think you can avoid connecting flights there, what if a flight from NY to CDG has to do an emergency landing and chooses somewhere in the UK?

roblabla•5m ago

If you're that paranoid, you _can_ just chose not to fly.

The bigger problem is if the UK has an extradition treaty with the country you live in.

HatchedLake721•13m ago

> They can fine all they want, if the company doesn't have any entity in said territory they can just ignore it.

Try running an online poker site abroad and serve US players and find out how that'll work out for you.

Didn't work out well for Lithuanian/Canadian/Israeli Isai Scheinberg founder of Poker Stars, nor Calvin Ayre, the founder of the Bodog, who ended up on the FBI's top 10 list. United States reportedly sought* to seize around $3 billion worth of assets from 3 major online poker companies at the time.

https://poker.stackexchange.com/questions/457/is-online-poke...

https://en.wikipedia.org/wiki/United_States_v._Scheinberg

worldsavior•34m ago

1M is nothing.

sam_lowry_•10m ago

Nothing for you Facebook or Citybank crooks, but porn is a very competitive business with thin margins.

metalman•34m ago

great news for self employed prostitutes everywhere

raesene9•31m ago

I'd like to believe that technical people at OFCOM actually know the impossibility of what they're being asked to implement but are just going through the motions, so their bosses/politicians can put out pointless press releases like this.

Trying to restrict access to content on the Internet by requiring "robust" age verification was never going to achieve the goals they stated, and has a number of predictable (and already seen) negative side-effects.

Unfortunately governments all over the place seem intent on continuing this type of regulation, I presume so they can be seen to be doing something. Good time to be in the VPN game, I'd guess.

LandR•29m ago

Until governments try to ban VPNs...

raesene9•26m ago

That is one option, but then you get into the world of Corporate VPNs which are heavily in use and it would seriously cause problems if you banned.

Then you're into "what about all TLS connections" which can be used to send traffic, so you have to do TLS interception at scale, which is a very non-trivial problem to try and solve.

Then you're into non-TLS encrypted protocols, so your only option there is to block anything you can't intercept.....

At that point you've pretty much broken Internet access in your country, might as well just chop the cables :P

falcor84•14m ago

I wish I was as optimistic about the resilience of the open web as you, but I see what the Chinese government achieved and what the Russian government have been doing over the last few years, and I'm very concerned.

raesene9•11m ago

Oh I'm not saying they won't try and do it, just it'll either be ineffective or they'll effectively wreck the Internet.

For the UK I'm kind of doubting they'll put enough money into it to make it good, so we'll get the ineffective version and politicians will get stories like this one written about their efforts.

stingraycharles•10m ago

That is, until you only allow approved vendors (Microsoft, Cloudflare, etc) to provide these types of services. It’s very easy to pass laws like that, and it seems like centralization is the direction everything is headed.

raesene9•4m ago

So if you could get Google/Apple/MS on board, then you could embed controls onto most people's endpoints, and actually that'd work more than trying to put the burden on websites/controlling the network. The trick is those are all US corporations who may or may not want to be responsible for that level of control.

While we still have alternate operating systems, that won't be a universal control of course. You'd have to stop people owning general purpose computing devices for that to be fully effective.

Zenst•5m ago

Well, OFCOM lost all credibility with me and many on how they failed to fix the Vectone UK mess. Vectone UK was a virtual operator, however they owned the number range they allocated(Most MVNO's get a block from the provider they use for their network, Vectone behind the scene would shop around and by owning the number range, could made switching core network easier I presume). So even when you ported to another network, as they owned the number, they would set up routing to the new provider(This is how number porting works, of which I was unaware as I'm sure many are not). Issue is that if the provider goes bust, all those numbers go with them. So anyone who had a number that originated from them, even if they ported it to another network, suddenly lost not only their number, but any way shape or form of getting it back. The impact was devastating for many, including myself. All 2FA, or any account ties to that number you found yourself unable to control. Even if you had access to the account, to change the number would see them use best practice security to send a verification code to the old number. THis created a right nightmare as you can imagine with all the automated support we now have. So months of fun and games, with the odd gotcha popping up overlooked from time to time.

OFCOM failed to do anything, they could have forced them to sell the number range, taken over control of the umber range, or proactively thought out such situations due to the way they port numbers being that the new provider gets control of that number and not at the mercy of the previous provider, which in this case went bust.

Many other stories on this here: https://www.ispreview.co.uk/talk/threads/vectone-is-dead.406...

But like many, I myself contacted OFCOM and found a chocolate teapot far more comforting and with better results.

What with the UK pushing digital ID, funny anecdote there - I did jury service recently and they do not accept a digital ID as proof of ID, nor do they accept a selfie either as proof of age or ID ( we all had a good laugh as was done in the best possible taste ).

vaylian•2m ago

what do you mean by "number"?

cynicalsecurity•11m ago

UK repeats the same stupidity as the Prohibition in the United States was?

meitham•3m ago

This ban targets children, prohibition covered adults! This more like requiring proof of id when you purchase alcohol

curiousgal•6m ago

Highly recommend watching The Thick of It to get a glimpse of how such UK policies come to be.

PGlite – Embeddable Postgres

It’s time to free JavaScript

Tunnl.gg

Ghostty is now non-profit

Valve reveals it’s the architect behind a push to bring Windows games to Arm

Uncloud - Tool for deploying containerised apps across servers without k8s

Elites could shape mass preferences as AI reduces persuasion costs

Reverse engineering a $1B Legal AI tool exposed 100k+ confidential files

NextJS Security Vulnerability

Show HN: Walrus – a Kafka alternative written in Rust

Average DRAM price in USD over last 18 months

Micron Announces Exit from Crucial Consumer Business

Unreal Tournament 2004 is back

Interop and MathML Core

1D Conway's Life glider found, 3.7B cells long

Saturn (YC S24) Is Hiring Senior AI Engineer

Building optimistic UI in Rails (and learn custom elements)

RCE Vulnerability in React and Next.js

Show HN: I built a dashboard to compare mortgage rates across 120 credit unions

All the Way Down

Why WinQuake exists and how it works

Kea DHCP: Modern, open source DHCPv4 and DHCPv6 server

Acme, a brief history of one of the protocols which has changed the Internet

8086 Microcode Browser

Show HN: A Minimal Monthly Task Planner (printable, offline, no signup)

The Mysterious Realm of JavaScriptCore (2021)

Launch HN: Phind 3 (YC S22) – Every answer is a mini-app

Ethiopian volcano erupts for first time in nearly 12k years of records

Lie groups are crucial to some of the most fundamental theories in physics

How to Synthesize a House Loop