W3C home > Mailing lists > Public > public-credentials@w3.org > November 2019

Re: DIDs available by satellite. A curiosity, an exploration.

From: Sam Mathews Chase <samantha@venn.agency>
Date: Fri, 29 Nov 2019 22:38:03 -0800
Message-ID: <CAFjjKznSWWASzodRey1=sCkW7GUD4rTw+_gDQq6rEQUTa_qiCQ@mail.gmail.com>
To: Brent Shambaugh <brent.shambaugh@gmail.com>
Cc: Credentials Community Group <public-credentials@w3.org>, Mike Lodder <mike@sovrin.org>, Wolf McNally <wolf@wolfmcnally.com>, David Hoffman <dhoffman32@gmail.com>
Hi Brent!

My company, Venn.Agency is a permanent contractor of Seaspan ULC and the
Vancouver Shipyards. We are currently rolling out our *verifiable* safety
training focused on emergency response and fire safety. The risk of fire to
a vessel or ship build is the number one thing keeping Lloyd's Actuaries up
at night. We're working to establish a new risk category in which everyone
who enters a vessel or works in the shipyard has gone through our active
simulation training and learned important safety information. We're
maintaining an occupancy percentage over a set threshold which issues a
"Certificate of Recognition" COR
<https://www.worksafebc.com/en/health-safety/create-manage/certificate-recognition>
[equivalent] Credential to BC Gov's Orgbook.
<https://orgbook.gov.bc.ca/en/home> Kim Hamilton Duffy has designed our
system's architecture and can offer more insight if you have
specific questions.

The thing I myself most worry about is how freakin' easy it is to hack a
big ship... or a tank for that matter 😳
I co-authored a paper with Wolfe McNally and Michael Lodder (on cc) at Rwot
Toronto outlining Critical Use Cases for Offline Credentials.
<https://nbviewer.jupyter.org/github/WebOfTrustInfo/rwot7-toronto/blob/master/final-documents/offline-use-cases.pdf>

On Satcoms, there are very narrow bandwidths for encryption and
unfortunately, on top of that, a lot of passwords are password. Pentest
Partners
<https://www.pentestpartners.com/security-blog/sinking-container-ships-by-hacking-load-plan-software/>do
a lot of good work exposing vulnerabilities and associated risk in ships
and satcoms more broadly.

It is my personal belief, that focusing technical solutions and early
adoption towards critical infrastructure (government, workforce data
providence and privacy, heavy industry/high-risk safety and environmental
compliance, etc) is the best way to make lasting change. I welcome you,
(and anyone else on this thread) to comment- offer some insights,
corrections, or alternate points of view on our soon to be published Rwot
Barcelona paper: Driving Adoption with a Focus on Safety, Security &
Compliance.
<https://docs.google.com/document/d/1E-yJ5LJDCwE3yOD-U7Q5Yz2GyI2-hgk33IiZ80JalUU/edit?usp=sharing>

I'm keen to know who else is working in or near these use cases? Currently,
historically, hypothetically or all of the above!

Also, the link to your video is dead. Can you recover it for me?


*Sam Mathews Chase*
*Founder, Venn.Agency*
*-------------------------------------------------------*
*Move Slow and Fix Things.*
*-------------------------------------------------------*
*samantha@venn.agency <samantha@venn.agency>*


On Fri, Nov 29, 2019 at 1:10 PM Brent Shambaugh <brent.shambaugh@gmail.com>
wrote:

> To whom it may concern:
>
> I have been wondering: Would it be useful to work on a solution that makes
> DIDs resolvable anywhere on the surface of the earth with Satellites?
>
> It does not seem broadband is needed, and when studying DIDs it seems like
> only a small part of the time does one need to verify a DID for a
> particular identity [1].
>
> [1] "Peer DIDs: a secure and scalable method for DIDs that's entirely off
> ledger" https://www.youtube.com/watch?v=d-5MmLLd3x
>
> Thanks for your time,
>
> Brent Shambaugh
>
Received on Saturday, 30 November 2019 06:38:24 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 19:19:03 UTC