- From: Manu Sporny <msporny@digitalbazaar.com>
- Date: Sat, 2 Apr 2022 19:51:15 -0400
- To: Tobias Looker <tobias.looker@mattr.global>, "public-credentials@w3.org" <public-credentials@w3.org>
On 3/29/22 8:43 PM, Tobias Looker wrote: >> Yes, I can commit to doing one for CHAPI and VPR + VC-API. A first cut at some CHAPI protocol flow diagrams (using VPR and VC-API) that are claimed to be end-to-end secure are available here... along with LOTS of healthy debate over if/when they are actually secure and when they are not: https://github.com/w3c-ccg/vc-api/issues/280 More analysis on the security model is here: https://docs.google.com/document/d/1DavP0nFut41BZ3jNDyIECUEamSuqhbR0vkMTK96bc4s/edit# > Great, would we aim to present on a CCG call or somewhere else / some other > format? Yeah, once we get enough clarity and potentially come to some set of information that we can distill into a more easily consumable form, we should aim to present to anyone that will have us. Given the momentum of the thread -- CCG would be a good place to start. I expect that we're still around 4 weeks or so out from being able to do that. It feels like there are a variety of more conceptual things that might need to be conveyed to the broader community. * The role of mediators in the ecosystem * Same-device wallet invocation * Cross-device wallet invocation * CHAPI * OIDC4SSI * WACI + DIDComm * VPR + VC-API The above feels like a lot; overwhelming... and I'm sure I missed other important items. Thoughts? -- manu -- Manu Sporny - https://www.linkedin.com/in/manusporny/ Founder/CEO - Digital Bazaar, Inc. News: Digital Bazaar Announces New Case Studies (2021) https://www.digitalbazaar.com/
Received on Saturday, 2 April 2022 23:51:30 UTC