-
Notifications
You must be signed in to change notification settings - Fork 103
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add language clarifying VP is short-lived #1164
Conversation
Signed-off-by: Brent Zundel <brent.zundel@gmail.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I'm ok with that but we should also add some more text that says that verifiers cannot assume any correlation between the VP and VC.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
actually, i approve this PR as is since the PR is already an improvement and is focused on the longevity. I created a separate issue for what my concern was.
index.html
Outdated
@@ -1917,7 +1917,12 @@ <h3>Presentations</h3> | |||
<a>verifiable credentials</a> is a typical use of | |||
<a>verifiable presentations</a>. | |||
</p> | |||
|
|||
<p> | |||
<a>Verifiable presentations</a> are intended to be extremely short-lived, and |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This does not seem to align with the normative requirements we have in the spec.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I don't think this is a good change - see my post. Also, no example has been provided why VPs are intended to be (extremely) short lived, as suggested by @Sakurann s comment. So, lacking any substantiation for the assertion that presentations are intended to be extremely short-lived, and noting that the standard cannot know the intentions of holders regarding the presentations they create,I suggest to not merge this.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Use normative language regarding securing presentations.
Avoid asserting that credentials have integrity when there is no requirement that they do.
Co-authored-by: Ted Thibodeau Jr <tthibodeau@openlinksw.com>
Co-authored-by: Orie Steele <orie@or13.io>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
thanks, lgtm.
Normative, multiple reviews, changes requested and made, no objections, merging. |
Fixes #937
This PR uses language suggested in #937 to clarify that VPs are intended to be short-lived.
Preview | Diff