Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

alsoKnownAs at risk? #584

Closed
rhiaro opened this issue Jan 28, 2021 · 5 comments
Closed

alsoKnownAs at risk? #584

rhiaro opened this issue Jan 28, 2021 · 5 comments
Assignees
@rhiaro
Labels
PR exists There is an open PR to address this issue pre-cr-p1 Pre-CR high priority issue.

Comments

@rhiaro
Copy link
Member

rhiaro commented Jan 28, 2021

Given the (appropriate) trend of removing as much as possible from the Core Properties, I question whether alsoKnownAs belongs there. It seems high risk of inviting PII, especially as it is not restricted to DIDs (but any URIs). I'd like to know about who is planning to implement this and what for? Should we mark it as at risk (of being moved to the Registries)?
@msporny
Copy link
Member

msporny commented Jan 28, 2021

I agree, given the current trajectory of consensus in the WG wrt. moving away from placing anything that could be PII in the DID Document (as a part of DID Core). I expect that @jandrieu will scrutinize this particular feature. @csuwildcat and @talltree may also want to weigh in here.

@msporny msporny added the pre-cr-p1 Pre-CR high priority issue. label Jan 28, 2021
@msporny msporny assigned rhiaro and unassigned talltree Feb 1, 2021
@msporny
Copy link
Member

msporny commented Feb 1, 2021

Reassigning to @rhiaro who volunteered to add a speculative PR wrt. this issue.

rhiaro added a commit that referenced this issue Feb 1, 2021
@rhiaro
at risk: mark alsoKnownAs at risk, for #584
969cc9d
@msporny
Copy link
Member

msporny commented Feb 1, 2021

PR #589 has been raised to address this issue. This issue will be closed when that PR is merged.

@msporny msporny added the PR exists There is an open PR to address this issue label Feb 1, 2021
@csuwildcat
Copy link
Contributor

This one is less an issue for me, because yes, it's more likely to be a PII vector, and your AKA assertions can be done via something like a personal datastore that exposes AKA statements. This is in contrast to the deterministic equivalence properties, which are PII vectors and can't be done by anything but a Method's secure resolution process. For this reason, I'm indifferent about AKA.

msporny pushed a commit that referenced this issue Feb 8, 2021
@rhiaro @msporny
at risk: mark alsoKnownAs at risk, for #584
e5cf7f3
@msporny
Copy link
Member

msporny commented Feb 9, 2021

PR #589 has been merged, which marks alsoKnownAs as at risk... closing.

@msporny msporny closed this as completed Feb 9, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rhiaro rhiaro

Labels
PR exists There is an open PR to address this issue pre-cr-p1 Pre-CR high priority issue.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@msporny @csuwildcat @rhiaro @talltree