W3C home > Mailing lists > Public > public-credentials@w3.org > February 2015

Re: State, not Identity-based Credential Use Cases?

From: Brian Sletten <brian.sletten@gmail.com>
Date: Thu, 12 Feb 2015 12:45:31 -0800
Cc: public-credentials@w3.org
Message-Id: <E0466B92-AF28-4B2B-AABB-A47C15CD3467@gmail.com>
To: Eric Korb <eric.korb@accreditrust.com>

> Like the idea, not the name.  How about "location-based credentials"?

That's why I am not in marketing. :)

Location is merely one type of state, but I think "location-based credentials" make sense for that kind of a system.

> Also, who/what would sign them?  Private keys in the devices?

Some kind of local, trusted service. It would be configured to be secure and tamper-resistant. If you are on a particular Wifi network, then you are in a particular physical location. If you are within range for an iBeacon or other low energy Bluetooth type device, then we can also verify that the device is there. The service would sign a credential for the identity of the device asserting this location and a timestamp. Obviously, the credential would have a short lifespan and would need to be re-upped periodically.
Received on Thursday, 12 February 2015 20:46:00 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 11 July 2018 21:19:22 UTC