- From: Adrian Gropper <agropper@healthurl.com>
- Date: Tue, 6 Jul 2021 14:44:50 -0400
- To: Manu Sporny <msporny@digitalbazaar.com>
- Cc: W3C Credentials Community Group <public-credentials@w3.org>
- Message-ID: <CANYRo8hy-2y3+3qX2=muB7uK+EhVoHzUuH30aD-A-8+gF8GuoQ@mail.gmail.com>
In other words, a significant privacy-driven objection aligned with self-sovereign identity principles will be sidelined because all of the participating implementers are focused on selling to sovereign issuers and verifiers starting with DHS and BC Gov. - Adrian On Tue, Jul 6, 2021 at 2:23 PM Manu Sporny <msporny@digitalbazaar.com> wrote: > On 7/6/21 12:03 PM, Adrian Gropper wrote: > > Would implementing a RAR request to the Issuer that results in a > > capability based on biscuit, macaroon, or ZCAP not be something to > > implement? > > All of those are possible, but we would need someone to step forward, do > the > work, and then convince other implementers to implement it. > > The only concrete proposal the VC HTTP API group has explored over the past > several weeks that seems to meet that bar is OAuth2 + client_credentials. > > There is moral support for concretely supporting RAR/GNAP/ZCAPs in the > future, > once people put in the work to write the specs, implement them, and then > build > a coalition of implementers that want to demonstrate interop. Until that > happens, for the technologies listed above, or any other similar > technologies, > we should expect the same near-term outcome (non-support to put work that > doesn't have a volunteer or broad implementer support in the way of > progress). > > -- manu > > -- > Manu Sporny - https://www.linkedin.com/in/manusporny/ > Founder/CEO - Digital Bazaar, Inc. > News: Digital Bazaar Announces New Case Studies (2021) > https://www.digitalbazaar.com/ > > >
Received on Tuesday, 6 July 2021 18:45:15 UTC