Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[ECDSA] Highlight security/privacy trade-offs between RDF-CANON and JCS #194

Closed
msporny opened this issue Aug 18, 2023 · 3 comments
Closed

[ECDSA] Highlight security/privacy trade-offs between RDF-CANON and JCS #194

msporny opened this issue Aug 18, 2023 · 3 comments
Labels
before CR This issue needs to be resolved before the Candidate Recommendation phase. pr exists A pull request exists to address this issue. privacy-needs-resolution Issue the Privacy Group has raised and looks for a response on. security-needs-resolution Issue the security Group has raised and looks for a response on.

Comments

@msporny
Copy link
Member

msporny commented Aug 18, 2023

From the PING's review (w3cping/privacy-request#120):

The spec should highlight the security tradeoffs that occur between section 3.1 and section 3.2 or select one to avoid encountering issue 1 highlighted in the w3cping/privacy-request#121 (comment) . The security of section 3.1 relies upon https://www.w3.org/TR/rdf-canon/ which is light on the security and privacy sections as well. It appears it's undergoing a review at the moment as well with w3cping/privacy-request#118

/cc @kdenhartog
@msporny msporny added CR1 This item was processed during the first Candidate Recommendation phase. privacy-needs-resolution Issue the Privacy Group has raised and looks for a response on. security-needs-resolution Issue the security Group has raised and looks for a response on. labels Aug 18, 2023
This was referenced Aug 19, 2023
Open
Open
@msporny
Copy link
Member Author

msporny commented Sep 15, 2023

Moving this to vc-data-integrity as duplicating content here and in eddsa cryptosuite doesn't make sense.

@msporny msporny changed the title Highlight security/privacy trade-offs between RDF-CANON and JCS [ECDSA] Highlight security/privacy trade-offs between RDF-CANON and JCS Sep 15, 2023
@msporny msporny transferred this issue from w3c/vc-di-ecdsa Sep 15, 2023
@msporny msporny added before CR This issue needs to be resolved before the Candidate Recommendation phase. and removed CR1 This item was processed during the first Candidate Recommendation phase. labels Sep 15, 2023
This was referenced Sep 15, 2023
Closed
Merged
@msporny
Copy link
Member Author

msporny commented Sep 15, 2023

PR #199 has been raised to address this issue. This issue will be closed once PR #199 has been merged.

@msporny msporny added the pr exists A pull request exists to address this issue. label Sep 15, 2023
@msporny
Copy link
Member Author

msporny commented Sep 28, 2023

PR #199 has been merged, closing.

@msporny msporny closed this as completed Sep 28, 2023
This was referenced Jan 28, 2024
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
before CR This issue needs to be resolved before the Candidate Recommendation phase. pr exists A pull request exists to address this issue. privacy-needs-resolution Issue the Privacy Group has raised and looks for a response on. security-needs-resolution Issue the security Group has raised and looks for a response on.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@msporny