Initial example Web-Of-Trust Verified Claims?

Question

Initial example Web-Of-Trust Verified Claims?

kimdhamilton opened this issue 7 years ago · comments

Kim Hamilton Duffy commented 7 years ago

From @ChristopherA on June 30, 2017 7:46

There was some discussion on this at w3c/vc-data-model#32

I would love it if we at least be able by end of the hackathon be as good as PGP able be able to claim that Alice's pseudo-anonymous DID knows Bob's pseudo-anonymous ID (which is basically all that PGP does).

If we are also able to all one party to PROVE that the other party holds the control key for their DID, even better (PGP doesn't do this).

Publishing some local nyms/local names could also be powerful (see: https://github.com/WebOfTrustInfo/rebooting-the-web-of-trust/blob/master/topics-and-advance-readings/linked-local-names.md & https://github.com/WebOfTrustInfo/rebooting-the-web-of-trust-spring2017/blob/master/topics-and-advance-readings/did-names.md )

Finally, maybe some other statements like "is-a-natural-person" would be useful without moving into territory of personally identifiable information.

I'd also like to set a precendence for DID:BTCR that that all such claims that are not counter-signed/acknowledged by the subject are not considered to conform to fully self-sovereign IDs between natural persons. This may be controversial.

Copied from original issue: WebOfTrustInfo/btcr-hackathon-2017#10

Kim Hamilton Duffy · Answer 1 · Sat Aug 12 2017 10:14:49 GMT+0800 (China Standard Time)

From @ChristopherA on June 30, 2017 19:58

A potential start for a template of a DID:BTCR based verifiable claim. Still some real problems here…

// This credential states that Alice knows Bob, and Bob has a public key X
{
"@context": [ "https://w3id.org/identity/v1" ],
"id": "DID:BTCR:TX1RJK0U5NG4JSFMC#??????",  
                 // What should the ID for a BTCR claim be? In particular if it
                 // co-signed and resides in the issuers DDO?
"type": ["Credential", "WoTRelationshipCredential"],
"issuer": "DID:BTCR:TX1RJK0U5NG4JSFMC", // Alice's bitcoin DID
"claim": {
  "id": "DID:BTCR:TX1RJK0U5NG4JSFMC",  
  "knows": {
    "id": "did::Bob" // Alice is claiming that she knows Bob
    "publicKey": {
      "type": "EcdsaKoblitzPublicKey",
      // Alice is claiming that Bob's public key is
      "EcdsaKoblitzPublicKey": "25FE3932D9...8B9316" 
    }
  }
},
"signature": {
  "type": "EcdsaKoblitzSignature2016",
  "created": "2016-12-13T19:24:12Z",
  // presumably this is Alice's public key. We may want to change this to did::Alice#key-1
  "creator": "ecdsa-koblitz-pubkey:02c490e19e936efab022bd9fc12833db082706473fd96cec14c4a8dac058a0dbee",
  "signatureValue": "HwMjpgikyk6htrUATmj6r5XXxBFZ/gvaRD9Ti6LNC7YRdluYVX0Tz1fiXFQLtpNNl0umDkINUNf7l+ByH2SloKc="
}

Kim Hamilton Duffy · Answer 2 · Sat Aug 12 2017 10:14:49 GMT+0800 (China Standard Time)

needs claims accepted and claims issued (for DDO) (2 different variants inside)
need issuer key section
may require Dave Longley

entity linked data object

Kim Hamilton Duffy · Answer 3 · Sat Aug 12 2017 10:14:50 GMT+0800 (China Standard Time)

all keys in one section
all proofs in one section