Consider how to sign TDs in a directory service #24
Labels
DID
JSON-LD
Security
security-tracker
Group bringing to attention of security, or tracked by the security Group but not needing response.
Comments
|
We also need to design directories so that signed TDs do not have their source signatures invalidated. That means directories can't add or remove things from source-signed TDs. |
|
I created a PR to add an LD-PROOF section to TDs (see w3c/wot-thing-description#943) but we should discuss with DID to know when/if that spec will make it to REC status. |
mmccool
added
Security
security-tracker
|
waiting for JSON-LD and RDF signatures, so have to defer this |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
See discussion here: w3c/wot-security#166
If TDs are not internally signed, we may still want to "envelope" them when we return them from a directory service.
The text was updated successfully, but these errors were encountered: