- From: David Chadwick <D.W.Chadwick@kent.ac.uk>
- Date: Sun, 10 Dec 2017 09:47:09 +0000
- To: Steven Rowat <steven_rowat@sunshine.net>, public-credentials@w3.org
Hi Steven yes using roles will solve this problem. Roles are capabilities, but they provide a level of indirection between the rights and the user. With a 'raw' capability, the right is attached to the user's key. With role based capabilities, the right is attached to the role, and the role is attached to the user's key. More details below: On 09/12/2017 20:32, Steven Rowat wrote: > On 2017-12-09 10:52 AM, David Chadwick wrote: >> 2. Say I want to give my class of 100 students access to my research >> lab. Using the scheme as outlined in your draft, I would presumably have >> to issue 100 proclamations with a subject of MyLab, and know the keys of >> all my students. In my prior research using RBAC and X.509 ACs, I would >> instead (using your language) create a single proclamation where the >> authority to access MyLab was not granted to a key, but rather to a role >> (e.g. MyStudent role). Any person who can then present two capabilities, >> namely one for access to MyLab, and the other containing the MyStudent >> role, would be granted access to my lab. I leave the issuing of >> MyStudent role capabilities to my administration, as they know which >> students enrol for my course and which dont. Other capability creators >> can similarly give rights to MyStudents by issuing single capabilities. >> I believe this is a far more powerful and flexible model than simply >> issuing capabilities to keys. (In the same way that RBAC is superior to >> ACLs.) > > Interesting example. > > I've been envisioning a publishing use of the DID system that might have > the parallel problem, although I'm not sure. Perhaps someone can comment. > > My example: > Say a publisher is putting out all of Author X's works (a playwright), and: > > -- Some people need access to all the plays of Author X. > -- Some people need access only to the "To be or not to be,..." speech > in one of the plays of Author X. > -- Some people need access to a whole group of individual quotes > across Author X's works. > -- Some people need access to individual Acts within the Author X plays. > etc. This could be done as follows. The publisher sells different types of licenses: all access, single play access, quotation access etc. Each license is mapped into a role e.g. All-access-role, 2BRole, Henry4Role etc. When a user purchases a license, the publisher attaches the respective role to the user's public key. > > Perhaps this is a different problem, but if it's the same problem as > David describes, I'm in favour of having roles that can re-use a > certain access key rather than having all different keys for each single > instance. The different users dont use the same key. They all have their own key. The inspector validates two capabilities: one that links the user's key to the role, and one that links the role to access rights e.g. all play access. This allows distribution of responsibilities. It also allows a quick way of changing the access rights of a whole group of users i.e. by changing the access rights attached to a role. The publisher can assign the role to access rights, and delegate the attaching of roles to users to a sales distribution network. > > In other words, I'm hoping this publisher will be able to use DID to > offer 350 quotes from the works Author X (or, to extend it, Author X, Y > and Z together) as a single access, rather than 350 different key > instances. Exactly. By simply changing the access rights attached to a role, the published immediately changes the access rights of all the users who have the role capability. regards David > > ? > > Steven > > >> >> regards >> >> David >> >> >> >> >> On 07/12/2017 01:40, Christopher Lemmer Webber wrote: >>> Hello all! I wrote up a first draft of Linked Data Capabilities (which >>> we agreed we would explore as a possible work item for the group, but >>> that I should get a draft written first): >>> >>> https://w3c-ccg.github.io/ld-ocap/ >>> >>> This is mostly a transformation into spec-text of the paper Mark Miller >>> and I did for Rebooting Web of Trust: >>> >>> >>> https://github.com/WebOfTrustInfo/rebooting-the-web-of-trust-fall2017/blob/master/draft-documents/lds-ocap/lds-ocap.md >>> >>> >>> Like I said, it's a first draft. But I think the core things are >>> already there, and that it's looking pretty good... I even included a >>> gentle introduction-by-narrative section (which we did in ActivityPub as >>> well, and was generally well received). >>> >>> Would love to hear feedback! >>> - Chris >>> >>> >> >> >
Received on Sunday, 10 December 2017 09:47:41 UTC