[wg/fedid] Adds Digital Credentials from WICG #484
Conversation
plehegar
added
enhancement
privacy-tracker
|
(there is a separate question whether we should do an other AC review since this change is pretty significant) |
|
My understanding was that the group hadn't reached consensus to leave this work in scope of the initial charter because this work is too new and still requires further discussion regarding privacy concerns and human rights concerns. I've expressed this on the TPAC notes here and in the subsequent issue where this was noted here. It doesn't appear that Webkit or Mozilla expressed opinions contrary to this and so seemed ok with this being left out for now. For this reason, I think it would be safest for us to not include this change since both signaled willingness to support without these changes in the AC review. From discussions internally at Brave we would be fine with the charter as is. My apologies for not coordinating better with our AC rep to signal our intent of this during the review. That mistake is on me. With that said, I don't believe we should add this at this time and an AC review should be necessary for the inclusion of this work. The use cases being addressed present a different privacy and security model in FedCM than in Digital Credentials API and should require broader review in my opinion and so leaving the charter as is seems like the best path to move this forward. |
|
If we keep the Digital Credentials addition, I'd recommend adding language that this working group will work with other industry standards efforts to protect against developing competing standards. |
|
out of scope section will need to get revised as well. It currently lists "Interactions with identity wallets" as out of scope. |
plehegar
changed the title
| <dt><a href="https://wicg.github.io/digital-identities/">Digital Credentials</a></dt> | ||
| <dd>This specification, incubated in <a href="https://www.w3.org/groups/cg/wicg">Web | ||
| Platform Incubator Community Group</a>, specifies an API to enable user agents to | ||
| mediate access to, and presentation of, digital credentials such as a driver's |
There was a problem hiding this comment.
I suggest to include issuance as well. Wallet based applications are incomplete without the issuance part. Furthermore, providing the web with an interoperable way for issuance will facilitate user's choice of their wallet.
|
Following conversations at IIW, folks came up with a new draft that includes the Digital Credentials API in the scope of the FedID Working Group: Please, raise separate issues against the draft. |
Following AC Review.
See also w3c/strategy#427
cc @hlflanagan @asr-enid @timcappalli @wseltzer