Comment by JoshTriplett

And? Presentation of someone else's valid credentials is not fixable by any privacy-preserving mechanism. You can set an expiration date in order to rotate them, and they can be fast-rotating.

In any case, it's a moot point: the correct amount of required identification is zero.