- From: Christopher Allen <ChristopherA@lifewithalacrity.com>
- Date: Sat, 23 Apr 2022 11:32:03 -0700
- To: Manu Sporny <msporny@digitalbazaar.com>
- Cc: W3C DID Working Group <public-did-wg@w3.org>
Received on Saturday, 23 April 2022 18:32:27 UTC
On Fri, Apr 22, 2022 at 5:40 AM Manu Sporny <msporny@digitalbazaar.com> wrote: > SRI International has publicly released their independent review on the > use of > cryptography in W3C VCs and DIDs and made some recommendations: > > Cryptography Review of W3C Verifiable Credentials Data Model (VCDM) and > Decentralized Identifiers (DIDs) Standards and Cryptography Implementation > Recommendations by David Balenson & Nick Genise > > http://www.csl.sri.com/papers/vcdm-did-crypto-recs/ > > It's largely a view from the US NIST cybersecurity standards, which are > used > through most of the world, but not everywhere. In any case, it's a valuable > perspective that I hope the VC2WG and DIDWG takes into the next stage of > the work. If you don’t also follow the CCG mailing list, I followed this topic up there starting at https://lists.w3.org/Archives/Public/public-credentials/2022Apr/0112.html. As that is a public list, and my thoughts are more DID 2.0 and long-term, not 1.0, I’d prefer any followups responsed or questions there. — Christopher Allen >
Received on Saturday, 23 April 2022 18:32:27 UTC