Re: HTML Metadata and Decentralized Identifiers from Adam Sobieski on 2017-09-29 (public-credentials@w3.org from September 2017)

From: Adam Sobieski <adamsobieski@hotmail.com>
Date: Fri, 29 Sep 2017 02:36:04 +0000
To: "Siegman, Tzviya - Hoboken" <tsiegman@wiley.com>, "public-credentials@w3.org" <public-credentials@w3.org>
Message-ID: <DM5PR01MB327594B878796613B0CBB3DAC57E0@DM5PR01MB3275.prod.exchangelabs.com>

Tzviya Siegman,

However, there is also: “If a DID method specification is written for a public ledger or network where all DIDs and DDOs will be publicly available, it is STRONGLY recommended that DDOs contain no PII. All PII should be kept off-ledger behind service endpoints under the control of the identity owner. With this privacy architecture, PII may be exchanged on a private, peer-to-peer basis using communications channels identified and secured by key descriptions in DID records. This also enables identity owners and relying parties to implement the GDPR right to be forgotten, as no PII will be written to an immutable ledger.” https://w3c-ccg.github.io/did-spec/#keep-personally-identifiable-information-(pii)-off-ledger

It might be the case that users would not want to include on a DID record content resembling:

{
  "service": {
    "orcid": "http://orcid.org/1234-1234-1234-1234"
  }
}

and that ORCID’s are a matter for digital wallets, verifiable claims, credentials and profiles instead.


Best regards,
Adam

From: Adam Sobieski<mailto:adamsobieski@hotmail.com>
Sent: ‎Wednesday‎, ‎September‎ ‎27‎, ‎2017 ‎6‎:‎05‎ ‎PM
To: Siegman, Tzviya - Hoboken<mailto:tsiegman@wiley.com>, public-credentials@w3.org<mailto:public-credentials@w3.org>

Tzviya Siegman,

I updated the example here: https://w3c-ccg.github.io/verifiable-news/journalistic-html-metadata.html .

It may be possible for users to include their ORCID's in their DID records. “In addition to publication of cryptographic key material, the other primary purpose of DID records is to enable discovery of service endpoints for the identity owner. A service endpoint may represent any type of service the identity owner wishes to advertise, including decentralized identity management services for further discovery, authentication, authorization, or interaction.” https://w3c-ccg.github.io/did-spec/#service-endpoint-references-(optional)<https://w3c-ccg.github.io/did-spec/#service-endpoint-references-%28optional%29>

{
  "service" {
    "orcid": "http://orcid.org/1234-1234-1234-1234"
  }
}

Best regards,
Adam

From: Siegman, Tzviya - Hoboken<mailto:tsiegman@wiley.com>
Sent: ‎Wednesday‎, ‎September‎ ‎27‎, ‎2017 ‎1‎:‎50‎ ‎PM
To: Adam Sobieski<mailto:adamsobieski@hotmail.com>, public-credentials@w3.org<mailto:public-credentials@w3.org>


Credentials Community Group,

Here’s an idea for how we could extend the HTML metadata system and models to facilitate the use of DID’s to indicate authors, editors, contributors and organizations pertinent to HTML journalistic content:

<html>
  <head>
    <meta name="model:author" content="did:example:ebfeb1f712ebc6f1c276e12ec21" />
  </head>
  <body>
    …journalistic content…
  </body>
</html>


I’m writing with my chair of the publishing working group [1] hat on. Do you see this replacing ORCID [2], which is primarily used in the scholarly publishing world?

[1] https://www.w3.org/publishing/groups/publ-wg/

[2] https://orcid.org/



Best regards,
Adam




Tzviya Siegman
Information Standards Lead
Wiley
201-748-6884
tsiegman@wiley.com<mailto:tsiegman@wiley.com>

Received on Friday, 29 September 2017 02:36:34 UTC