W3C home > Mailing lists > Public > public-credentials@w3.org > May 2019

New specs for Hashlink and HTTP Signatures released

From: Manu Sporny <msporny@digitalbazaar.com>
Date: Sun, 5 May 2019 14:33:15 -0400
To: W3C Credentials CG <public-credentials@w3.org>
Message-ID: <375fba64-5ddd-ac25-8eec-1fbff7e66c6d@digitalbazaar.com>
Hi all,

New specs have been published for Hashlink:


... and for HTTP Signatures:


Some highlights from the most recent specs:

HTTP Signatures
 * 25 implementations! (no, that is not a typo)
 * Used by PSD2, Berlin Group, and STeT (European banking standards)
 * Used for banking standards in Europe, OCAP-LD, HTTP-based DID Auth
   Secure Data Hub authz (spec on its way in Summer 2019)
 * We are putting together a test suite in order to do real interop
   testing for the 25 existing implementations.

 * We failed to specify that arbitrary metadata is possible, this
   version fixes that.
 * Added Security Considerations section wrt. DO NOT use MD5/SHA-1, etc.

These are a few of our building block specs for some of the technologies
being worked on by the CCG.

-- manu

Manu Sporny (skype: msporny, twitter: manusporny)
Founder/CEO - Digital Bazaar, Inc.
blog: Veres One Decentralized Identifier Blockchain Launches
Received on Sunday, 5 May 2019 18:33:38 UTC

This archive was generated by hypermail 2.4.0 : Thursday, 24 March 2022 20:24:54 UTC