I recently read an article from the creaters of PopOS. In that they raise a vaild point. If a child installs a virtualization software (say with the concent of an adult for educational purposes), then they can but browse internet through the VM, with them being the root user, pretending to be adults. It defeats the whole purpose of such verification methods. So their plan would to stick with ID based ones.

I think this was never about age verification, but to uniquely fingerprint every person using internet and to keep accountability.

Lets face it, the internet you knew is dead.