Re: [OAUTH-WG] Type Metadata for SD-JWT VC
Pious Sutherland <sutherlandpious@gmail.com> Tue, 09 April 2024 11:22 UTC
Return-Path: <sutherlandpious@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D13A2C14F68D for <oauth@ietfa.amsl.com>; Tue, 9 Apr 2024 04:22:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.084
X-Spam-Level:
X-Spam-Status: No, score=-2.084 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DK5FtGfoXGlo for <oauth@ietfa.amsl.com>; Tue, 9 Apr 2024 04:22:32 -0700 (PDT)
Received: from mail-ej1-x630.google.com (mail-ej1-x630.google.com [IPv6:2a00:1450:4864:20::630]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3367BC14F614 for <oauth@ietf.org>; Tue, 9 Apr 2024 04:22:32 -0700 (PDT)
Received: by mail-ej1-x630.google.com with SMTP id a640c23a62f3a-a47385a4379so1195521166b.0 for <oauth@ietf.org>; Tue, 09 Apr 2024 04:22:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1712661750; x=1713266550; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=LtIgBfDD8MuYu5Kk6tbZgX4cbBxSB7W9QY8Rc0/GkKw=; b=TKhdHLcOUboqCwFk1OOhrLOrUZpT0yxC/rFzoaTt7E72bcGHPeNXsSNE1IhKXI/Hyx BR6GSyNr7EQwIB+Pt0RKCRpaxcZOE/CT8BW7arbKsnn3yB/7QdpEovjZ0C5O/5VveaGo ASe85ZH2L0XeLuSS/lN+9k5uK5ZefE0du61Gcxv8bSfzaBLKDLrv9wkVzF4JR5lpxiqB APsyF5Ce65UHZ8xsKRp4XzbEENIH73RSXcTtYsoYRWVPHySuWbMHccJUEhgx3953O7iU I7Sr02HB7xrVQ9LQt88IhQhDbn2RZ7s/fVVqFdjWk8Lb2SJnjfEFHDlAIgtNoWRNR6mx BfTA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712661750; x=1713266550; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=LtIgBfDD8MuYu5Kk6tbZgX4cbBxSB7W9QY8Rc0/GkKw=; b=ZLfCqR1tCyrWDKwxoTALYZM8OLX4ioBVmEzwVE8f6A0CRAMt/jHru9XyGeI3dfiPSP oJqzJdH/wYWCRWIFpET3piyGulsTk+q7aMV7cWgAd09D4G136X71QgV2JBJHQv47d5Jq 3BMwPu1YJvB1XAIQlumupHCL6SenuUUl1ggpGa98Q5e2+TcvDlUoSGZEQ+JTnw+Gfx6T DRElILqPhwcq0609DsaxGTr5oZ9W4s6Ged61zonZbDKy9t/j8EL/82cV/G8SGAf2cYdG fGSTizH5RBESQTontrNFZS3KapXNK8TTAqS77Y/4uDEFM2g94kCRiRx6SWLR2DhhflpR WdUg==
X-Forwarded-Encrypted: i=1; AJvYcCX5lG5KHAzTPDqlw/JL6dVh+/InZMdGH9l2aMD/wtuDBoeGXrqBAtt4qmalH5QWva8VVyWWAM0GcB+EQE1yCg==
X-Gm-Message-State: AOJu0YyjRruURvNqMJHi1M0TCQZDIkPcUKJnxVN7ciqj6Q2mVDFRwhUl 6Dm+AxFix++Dljoq8nHGlkQMJkGq5VHm7Ji5Wq/f6uHhrz4/AvfEozj6Gj92zBU9/dp4E67Q8vK PzaAjmSRPULCouiomErWXchz3cdJgF+rAaPv4IYc=
X-Google-Smtp-Source: AGHT+IEkSTh95B5e0Wo11tysAp/bNnAnkPPi3s0drnas8o1drI7/A4cff+URcefGo8UHG18sEXiR19ChF5SmOx4j0xg=
X-Received: by 2002:a17:906:3598:b0:a51:9d24:6fbb with SMTP id o24-20020a170906359800b00a519d246fbbmr2132245ejb.14.1712661749651; Tue, 09 Apr 2024 04:22:29 -0700 (PDT)
MIME-Version: 1.0
References: <680b1aac-3845-461d-a063-09f7a7db9dd9@danielfett.de> <CAGDGPRZy3vP2J=YUExqGr4_gcMZuD9-6ytWHdihHsyAJNdAgfA@mail.gmail.com> <ME3P282MB13474BDC956C24377317471AF0072@ME3P282MB1347.AUSP282.PROD.OUTLOOK.COM>
In-Reply-To: <ME3P282MB13474BDC956C24377317471AF0072@ME3P282MB1347.AUSP282.PROD.OUTLOOK.COM>
From: Pious Sutherland <sutherlandpious@gmail.com>
Date: Tue, 09 Apr 2024 13:22:18 +0200
Message-ID: <CAN4PuKdWmrU8yU71PXdY7FyOkr_Yf3xRNW=YCXLPmJwm89PHeQ@mail.gmail.com>
To: Oliver Terbu <oliver.terbu=40mattr.global@dmarc.ietf.org>
Cc: Jacob Ward <jacob.ward@spruceid.com>, Daniel Fett <mail=40danielfett.de@dmarc.ietf.org>, oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000003560350615a82334"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/OVqzGJlGiLuF6JufAaOu594JUD4>
Subject: Re: [OAUTH-WG] Type Metadata for SD-JWT VC
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Apr 2024 11:38:15 -0000
Hi Was I supposed to be CC'd into this email? On Tue, Apr 9, 2024 at 12:23 PM Oliver Terbu <oliver.terbu= 40mattr.global@dmarc.ietf.org> wrote: > Jacob, I believe we can always create a CDDL and support other media types > in the same way as > https://datatracker.ietf.org/doc/draft-ietf-oauth-status-list/ supports > CBOR/JSON if this is required in the future. > <https://datatracker.ietf.org/doc/draft-ietf-oauth-status-list/> > Token Status List > <https://datatracker.ietf.org/doc/draft-ietf-oauth-status-list/> > This specification defines status list data structures and processing > rules for representing the status of tokens secured by JSON Object Signing > and Encryption (JOSE) or CBOR Object Signing and Encryption(COSE), such as > JSON Web Tokens (JWTs), CBOR Web Tokens (CWTs) and ISO mdoc. The status > list token data structures themselves are also represented as JWTs or CWTs. > datatracker.ietf.org > > ------------------------------ > *From:* OAuth <oauth-bounces@ietf.org> on behalf of Jacob Ward < > jacob.ward@spruceid.com> > *Sent:* Wednesday, April 3, 2024 8:08 PM > *To:* Daniel Fett <mail=40danielfett.de@dmarc.ietf.org> > *Cc:* oauth <oauth@ietf.org> > *Subject:* Re: [OAUTH-WG] Type Metadata for SD-JWT VC > > EXTERNAL EMAIL: This email originated outside of our organisation. Do not > click links or open attachments unless you recognise the sender and know > the content is safe. > > Hi Daniel, > > I'm not sure anyone has published a draft yet, but given that there is a > draft for SD-CWT I wouldn't be surprised if SD-CWT VC appears at some > point. With that in mind, has there been any discussion on having an > encoding-agnostic specification of this metadata, rather than JSON specific? > > Thanks, Jacob > > On Wed, Apr 3, 2024 at 8:22 AM Daniel Fett <mail= > 40danielfett.de@dmarc.ietf.org> wrote: > > Hi all, > > as discussed during IETF 119, we would like to introduce what we call Type > Metadata to SD-JWT VC. > > For a bit of context, the intention is to provide a mechanism to provide > information about credential types (e.g., a JSON schema, display/rendering > information, a name and description to be used by developers, etc.). Type > Metadata can be organized in a hierarchical structure using "extends" > relationships. > > The need for such a mechanism developed from discussions around the 'vct' > (Verifiable Credentials Type) identifier > <https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/181> in SD-JWT VC and > again in the context of the EUDI Wallet > <https://github.com/danielfett/sd-jwt-vc-dm>. > > I drafted a first tentative design in this specification > <https://vcstuff.github.io/sd-jwt-vc-types/draft-fett-oauth-sd-jwt-vc-types.html> > and we now want to revisit that and start moving pieces of that over to > SD-JWT VC. > > The first PR <https://github.com/oauth-wg/oauth-sd-jwt-vc/pull/220> > introduces the basic Type Metadata structures including the extension and > integrity protection mechanisms. It lacks many of the features we would > like to see in an MVP, so we plan to release a new draft only after > introducing a few more features > <https://github.com/oauth-wg/oauth-sd-jwt-vc/issues/224> in follow-on PRs. > > We would like to invite you to review the PR and let us know if there is > any feedback! I also plan to discuss this in more detail at an unconference > session at the OAuth Security Workshop. > > -Daniel, Brian, Oliver > > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth >
- [OAUTH-WG] Type Metadata for SD-JWT VC Daniel Fett
- Re: [OAUTH-WG] Type Metadata for SD-JWT VC Tom Jones
- Re: [OAUTH-WG] Type Metadata for SD-JWT VC Jacob Ward
- Re: [OAUTH-WG] Type Metadata for SD-JWT VC Oliver Terbu
- Re: [OAUTH-WG] Type Metadata for SD-JWT VC Pious Sutherland