- From: Daniel Hardman <daniel.hardman@gmail.com>
- Date: Fri, 16 Jun 2023 10:43:06 +0200
- To: Greg Bernstein <gregb@grotto-networking.com>
- Cc: public-credentials@w3.org
Received on Friday, 16 June 2023 08:43:24 UTC
>What Luca and I have been discussing is ways to control the “atomicity” or “bundling” of attributes, i.e., things that must be revealed together or not at all. The graduated disclosure scheme in ACDCs ( https://trustoverip.github.io/tswg-acdc-specification/draft-ssmith-acdc.html#name-graduated-disclosure-and-co) allows an issuer to identify things that must be disclosed together, and to build an arbitrarily complex hierarchy of rules about such things. Thus, for attributes A-Z, the issuer can decide ahead of time, "If disclosing any attributes M-Z, M-O can be disclosed individually, but there is a cluster of disclosure around attribute P-R, such that if P is revealed, Q and R must also be revealed." This leaves the holder in charge of making disclosing decisions, but allows the issuer to guarantee that its assertions will never to be taken out of context. ACDCs do this using JSON-Schema's boolean operators such as oneOf, anyOf, etc. A variation on this approach could probably be adapted to other serialization schemes. ACDCs provide support for JSON, CBOR, and MsgPack. --Daniel
Received on Friday, 16 June 2023 08:43:24 UTC