"Herd-privacy" canonicalization #8
Comments
|
The way I'd characterize our work here (in this WG) is that it's important that we enable the output from the canonize algorithm to be easily used by selective disclosure software to accomplish its goals (as opposed to us needing to necessarily fully solve selective disclosure problems ourselves). Of course, if we have a simple and clean example "herd-privacy" post-processing algorithm demonstrating what can be done, it's all the better. |
Hear, hear. Much as this is an exciting subject and technical challenge, this is not part of this WG charter... |
|
It seems to me that we can close this issue since the topic can be discussed as a part of privacy considerations (#84 and related PR). |
|
Discussed on 2023-06-07; decided to close because this topic has been already covered in #84 and related PR. |
I completely agree with the importance of the "herd-privacy" canonicalization proposed in #4 (comment) by @dlongley when we use c14n with selective disclosure. However, if I understand it correctly, we would still have to improve the above algorithm; it seems to me that the following normalized datasets CX1 and CX2 are not modified via the above transformation, i.e., CX1==CY1 and CX2==CY2.
CX1 (obtained from JSON-LD Playground) (==CY1)
CX2 (obtained from JSON-LD Playground) (==CY2)
Therefore, even if Alice selectively hides the statement about her spouse, anyone can easily guess whether Bob or Carl is Alice's spouse based on the canonicalized identifiers or the order of unrevealed statement:
CY1 with selective disclosure
CY2 with selective disclosure
What we actually wanted seemed like the following result:
CY1'
CY2'
I am trying to figure out a solution, but haven't found one yet so just submitting this issue at the moment...
The text was updated successfully, but these errors were encountered: