Add links from stalled prs #73
Conversation
index.html
Outdated
| <li>Other VC Data Integrity proof types: | ||
| <ul> | ||
| <li>VC Data Integrity - <a href="https://or13.github.io/lds-pgp2021"></a>PGP</li> | ||
| <li>VC Data Integrity - <a href="https://ns.did.ai/suites/multikey-2021"></a>Multbase / MultiCodec</li> |
There was a problem hiding this comment.
This is the only line I would object to. We put publicKeyMultibase and Multikey in DID Core with the explicit goal to finish standardizing it in the VC 2.0 WG. This is a normative deliverable, to be defined in Data Integrity, and must remain as such.
There was a problem hiding this comment.
This is a normative deliverable, to be defined in Data Integrity, and must remain as such.
I didn't touch that part of the charter, which already covers Ed25519 2020 and with your PR (#63) will add Secp384r1 2022.
Until the normatively deliverables cover other popular key formats (like P-256 / ES256) which is mandatory here: https://www.iana.org/assignments/jose/jose.xhtml
I think its smart for us to keep the door open to working on them non normatively.
|
@msporny either update your PR (#63) to cover P-256 (and others), or accept this PR to allow us to define them non normatively... we can't skip over mandatory to implement key and signature formats and expect to have the charter approved. Another alternative would be to move the LD specific key and signature representations that are not based on JWS to the section in this PR. I don't consider the current attempts at defining and omitting specific keys and signatures in this WG to be a path to success. It's going to lead to formal objections for not addressing the topic consistently. Either |
Can you please explain how what is proposed in this spec (normative deliverable of WG) doesn't make
The goal there is to define all possible key types in the multicodec table, which include (IIRC) all key types that are possible to be expressed in Please state, concretely, why you believe the Multikey that you want is not supported via a normative work item that is currently listed in the charter? |
|
is titled:
And it points to: Which in turn looks like this:
https://digitalbazaar.github.io/di-ecdsa-secpr1-2019/#ecdsasecp256r1signature2019 I suppose we might consider this "close enough"... but its not defining:
I guess if we add up all the CCG specs for key types and signatures, we do indeed have a working solution (except for RSA and P-521). My point was that its pretty painful to have to review:
If you are saying that this is just a function of where the input documents are today / how they were created, and that indeed our intention truly is to solve this https://github.com/multiformats/multicodec/blob/master/table.csv#L90 We are aligned, but this feels significantly less concrete than a single document stating this clearly. We have such a document, here: https://w3c-ccg.github.io/data-integrity-spec/#multikey Perhaps we don't need all these suites in the "normatively defined" section if we have the link above? (which is already in the normative section?) This PR (#73) makes it clear that we do intend to address these concerns at least non normatively for existing crypto that we are using today. I will be happy to remove multikey from the non normative section, or approve your PR if it removes it from this section in the future. If you require me to remove a non normative reference to the key format we use to address these issues currently, which is already conformant with |
| <li>Test suites for verifiable credential proof types: | ||
| <ul> | ||
| <li>VC Data Integrity - Ed25519</li> | ||
| <li>VC Data Integrity - BBS+</li> | ||
| <li>VC Data Integrity - Json Web Signatures</li> |
There was a problem hiding this comment.
We should collapse all items above to "Test Suites for WG-defined crypographic container formats and suites."
|
closing due to instability in the section, I will take another stab when it settles. |
Preview | Diff