-
Notifications
You must be signed in to change notification settings - Fork 19
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Split design space into two different types of status lists #85
Comments
-1 to split the specs (makes impl tougher) |
privacy considerations being tracked in #86 |
TPAC VC WG mtg. no consensus to unify the design space. |
The issue was discussed in a meeting on 2023-09-15
View the transcript1.1. Split design space into two different types of status lists (issue vc-status-list-2021#85)See github issue vc-status-list-2021#85. Manu Sporny: issue 85 ... raises the question on whether or not to split the design space ... status list was on an easy trajectory .... then additions by folks in the supply chain traceability space ... modifying the single bit into a multi bit status ... to contain a message effectively, and then have an arbitrary number of messages with the particular status entry ... including links to documentation and business rules ... time to live ... variety of oth[CUT].
Manu Sporny: in hindsight that has had unanticipated effects ... status list not as simple as before ... Brent Zundel: as far as the privacy concerns ... when issuing ... don't think the characterization of single bit vs multi bit is quite accurate .... it was always multi bit IIUC ... Kristina Yasuda: only raised recently, so not the moment to make decisions .... single bit vs multi bit doesn't seem like it would change the privacy analysis ...
Andres Uribe: i agree with kristina .... i recommend that we don't have multiple types .... makes it hard for people to make a decision on which one to use ...
David Chadwick: not sure i see a different problem with having two lists.
Joe Andrieu: i think it applies to more than the human privacy issue ... the bit shows up in other problems ... we could have solved this in other ways other than multi-bit ...
Joe Andrieu: with the multi bit you are checking ... i'm curious why you don't think single bit vs multi bits isn't the key of the concern ... Brent Zundel: framing it as a single bit vs multi bit is disingenuous. Manu Sporny: +1 what joe said ... Kristina Yasuda: i seriously question the notion within the status list use case and specification that more data points about the user instead of just one bit being used rather than two bits for valid or invalid leads to more correlation ... that is not correlation comes from in the three party model ... it comes from the identifiers ... Gabe Cohen: i agree with the sentiment that we should limit footguns ...
Brent Zundel: back to concrete proposals, status list, the spec, be separated into two different types .... we don't have consensus to do that to make that change .... based on the conversation ... the argument that the work is greater if we don't split it isn't convincing to me .... seems like we'd have to do the same amount of work either way ... joeandrie: +1, doesn't seem like consensus ... Joe Andrieu: it could be different lists ... topologically, you'd have to look at the VC ... whereas if multi bit ... joeandrie: or you could have one VC with 3 bits ... Joe Andrieu: we are not going to get consensus atm. Kevin Dean: privacy application to individuals vs corporations ... corporations may have the same concerns ... that you could apply to personal data ... same concerns to non-human side of VCs ....
Manu Sporny: understand that we are not going to get consensus to split ... so ... i'll proceed by trying to address this in spec text ....
Brent Zundel: as to this issue, can it be closed? or should it remain open? Manu Sporny: lets open a new one while we are here. Brent Zundel: lets move on to our next issue. |
The current specification, in an attempt to create just one status list type, overloaded the previous status list with a variety of new features that makes it more complex to implement and changes the privacy characteristics of the status list.
Managing a multi-bit status list has additional implications, such as how to decoy the list data in a believable way -- it's not as simple as just flipping bits now, you have to have expertise on what each status means and how statistically significant flipping each bit is going to be.
In addition there are status list messages that can be defined now that are not needed for the simpler revocation/suspension use cases provided before.
This issue is to track the notion of separating the design space into two different types of status lists - SingleBitStatusList and MultiBitStatusList (or whatever names we might bikeshed towards in the future).
The text was updated successfully, but these errors were encountered: