W3C home > Mailing lists > Public > public-credentials@w3.org > May 2016

Re: Expiry time in Data Model

From: Stone, Matt <matt.stone@pearson.com>
Date: Fri, 20 May 2016 14:00:20 -0600
Message-ID: <CA+w1=RRpMTE92rLp44ou5V5RsiHWxiUxo09pDHLLaha3CSOHRQ@mail.gmail.com>
To: David Chadwick <d.w.chadwick@kent.ac.uk>
Cc: Jason Weaver <jweaver@parchment.com>, Eric Korb <eric.korb@accreditrust.com>, Credentials Community Group <public-credentials@w3.org>
On Fri, May 20, 2016 at 1:42 PM, David Chadwick <d.w.chadwick@kent.ac.uk>
wrote:

> This is a separate issue. A claim may not have expired, but it may have
> been revoked. Therefore going back to the issuer is a something the
> recipient/relying party will have to decide to do based on its risk
> threshold.
>
> A second parameter of a credential should be whether it is revocable or
> not.
>
> regards
>
> David
>

​The issuer should have a voice in how frequently a claim should be
reverified and how long it can be cached w/out validation - it's not the
exclusive domain of the recipient.​

what is an example of a credential that's irrevocable?

-stone



=====
Matt Stone
501-291-1599
Received on Friday, 20 May 2016 20:00:47 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 11 July 2018 21:19:29 UTC