W3C home > Mailing lists > Public > public-credentials@w3.org > August 2021

Re: WoN Re: Public consultation on EU digital principles

From: Daniel Hardman <daniel.hardman@gmail.com>
Date: Wed, 11 Aug 2021 09:14:24 +0200
Message-ID: <CACU_ch=FNrnBQn-6nZ-Z8RENZ7QicTNj9WR8ZuL+KyMvVDpM8Q@mail.gmail.com>
To: Bob Wyman <bob@wyman.us>
Cc: David Chadwick <d.w.chadwick@verifiablecredentials.info>, Henry Story <henry.story@gmail.com>, "W3C Credentials CG (Public List)" <public-credentials@w3.org>
>
> Another solution is chaining: have an accreditation authority issue a VC
>> to issuers, attesting to the issuer's bona fides; verification = verify
>> proximate VC + VC that makes proximate issuer trustworthy. Possibly repeat
>> through several levels of indirection.
>
> If it is discovered, through some arbitrary means, that some intermediary
> in a chain should not be considered trustworthy, even though that
> intermediary produces credentials that satisfy the specification's
> requirements, how can a lack of trust be expressed, communicated, etc?
>

A chain has to be followed. That means each credential must be verified.
And if an intermediate credential in the chain is revoked, the chain gets
broken and thus will not validate. So: revoke.
Received on Wednesday, 11 August 2021 07:14:48 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 11 August 2021 07:14:50 UTC