- From: Anders Rundgren <anders.rundgren.net@gmail.com>
- Date: Wed, 10 Aug 2016 17:51:18 +0200
- To: Timothy Holborn <timothy.holborn@gmail.com>, Shane McCarron <shane@spec-ops.io>
- Cc: David Chadwick <d.w.chadwick@kent.ac.uk>, Credentials Community Group <public-credentials@w3.org>
On 2016-08-10 17:47, Timothy Holborn wrote: > > > On Thu, 11 Aug 2016 at 01:38 Anders Rundgren <anders.rundgren.net@gmail.com <mailto:anders.rundgren.net@gmail.com>> wrote: > > On 2016-08-10 17:04, Timothy Holborn wrote: > > A Fundamental promise that has existed for years, is that you can goto a website and say, your an adult, and that is all. > > > > if what has developed since cannot do that, then it should be seriously considered by stakeholders. > > This is a research topic since more than a decade back. > > Microsoft and IBM have spent big bucks on developing products but AFAICT with very modest success. > https://www.microsoft.com/en-us/research/project/u-prove/ > http://www.research.ibm.com/labs/zurich/idemix/ > > For dynamically generated claims this is technically trivial. > > For static credentials you need the quite intricate cryptography featured in the Microsoft and IBM schemes. > > > cryptographic methods are out of scope. Then the only viable alternative for selective disclosure of private information are dynamically server-generated claims. Anders > I respect those i may refer > to as the 'sages' with regard to their views on such consideration. > Yet, what we have within scope of this CG/TF/outcome - i'd hope we do properly. > > > Anders > > Tim.H.
Received on Wednesday, 10 August 2016 15:51:51 UTC