New specs for Hashlink and HTTP Signatures released

Hi all,

New specs have been published for Hashlink:

https://tools.ietf.org/html/draft-sporny-hashlink-03

... and for HTTP Signatures:

https://tools.ietf.org/html/draft-cavage-http-signatures-11

Some highlights from the most recent specs:

HTTP Signatures
 * 25 implementations! (no, that is not a typo)
 * Used by PSD2, Berlin Group, and STeT (European banking standards)
 * Used for banking standards in Europe, OCAP-LD, HTTP-based DID Auth
   Secure Data Hub authz (spec on its way in Summer 2019)
 * We are putting together a test suite in order to do real interop
   testing for the 25 existing implementations.

Hashlink
 * We failed to specify that arbitrary metadata is possible, this
   version fixes that.
 * Added Security Considerations section wrt. DO NOT use MD5/SHA-1, etc.

These are a few of our building block specs for some of the technologies
being worked on by the CCG.

-- manu

-- 
Manu Sporny (skype: msporny, twitter: manusporny)
Founder/CEO - Digital Bazaar, Inc.
blog: Veres One Decentralized Identifier Blockchain Launches
https://tinyurl.com/veres-one-launches

Received on Sunday, 5 May 2019 18:33:38 UTC