[OAUTH-WG] Re: Reminder: Alternative text for sd-jwt privacy considerations.

Dean Saxe <dean.saxe@beyondidentity.com> Thu, 09 January 2025 18:30 UTC

Return-Path: <dean.saxe@beyondidentity.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 94D9CC06EEF3 for <oauth@ietfa.amsl.com>; Thu, 9 Jan 2025 10:30:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=beyondidentity.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vEqS9C8HIhkP for <oauth@ietfa.amsl.com>; Thu, 9 Jan 2025 10:30:05 -0800 (PST)
Received: from mail-lj1-x236.google.com (mail-lj1-x236.google.com [IPv6:2a00:1450:4864:20::236]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 78901C1F5896 for <oauth@ietf.org>; Thu, 9 Jan 2025 10:29:56 -0800 (PST)
Received: by mail-lj1-x236.google.com with SMTP id 38308e7fff4ca-306007227d3so7148361fa.0 for <oauth@ietf.org>; Thu, 09 Jan 2025 10:29:56 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=beyondidentity.com; s=google-bid; t=1736447395; x=1737052195; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=jXhc1Sv8ohuH8/hJQQ1RZmu4t6tcqbQv9g9TkIFKw1o=; b=mQkjXNKkFGBGZhYBkIGUaVdCaASFhwqkdHaIPrW9wIEabYXwwytEp8l5ZYxn7JEJLM CImxqHkxvhT3LxK2lVIy3e/PXmfoar9jBnHqo1QfJo6o0PEdkbYFfk5eCG1pdtWrezv7 Ghb2fkHdC25+Fv68Nc4AyOgaXN9Sgy3zF+utnSuZq7bgkTPET4Yx0lowO5SPt5OZplPr HFxIphi8aJk7LCceUV9+AOQffNMHxBZi+5MqjfrOx3yj5uBI+/DTyydsQX/bPjkAm55d FgdUC9m5WuAng08uLPAZd4iEFpc0Rc/UIkNMBdOYPFWJK57W7z8SiLDCABeIKvEUajX5 64GA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1736447395; x=1737052195; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=jXhc1Sv8ohuH8/hJQQ1RZmu4t6tcqbQv9g9TkIFKw1o=; b=qHr/X4ST7DTq4DxF+Hj42YuxXWzVtHph+MOEl5jbbgsmTpjr3VkUrtNXFP+GKpJm6g Kfmv7YnAMB2hA/CUGxJFbg+wf4b6AILH5FjOocwbQllVbf7fsAr/p2En/SfYVojmp7Ui iUpbnO/GNF7Co09MXljEtnaUPmAGfwS8sVxK8y6189emcla9ETWuEw5a9EpezmRY538R 4OC2db+u2dkoN1xw/1J1X0l4LfDHZOAVBeti9r9OOozK1fcErDCHXut25egHs8GA9gQv YhP9ZL4ItrmkXJkLeYqVH7TSP4+i6cmT55JULQrH+TpxNYuwoKRSwsMasg3UlVIssG+F r53g==
X-Gm-Message-State: AOJu0YzkyzRxfoOr6mfNIsBjW1YvFJ9NRguqHnsLXHw5A87GnSewa8q0 CotA+ELAxC4HwF6B9lNHhm5GlxHOZAkutkhHN+PzgrJNze6hCjLiLGpu6Gj6gTnIV9IDKFR7gti WHnekZy7/ipU1z+W3brieYofg6sSW+caTe0XVOg==
X-Gm-Gg: ASbGnct1lR1NOS/gip/Ef8RG+1Pnk7CZF2/4114B8o2vwRZCm1+JEnL+noPKz5tLIiw kdJFlvYbt9+hu+bXg8WCDNOp8aiwhwN6B4lBroas=
X-Google-Smtp-Source: AGHT+IEckErdBQmz1ZqjTfEyXjsjbyGqS9rR02adnlBaa0uMOyDyL/0+LImxtfxGPrn39DUcWQwKl3CnwXBsAt2Mlko=
X-Received: by 2002:a05:651c:4cb:b0:2fb:8c9a:fe3f with SMTP id 38308e7fff4ca-305f459ab0amr25611301fa.22.1736447394605; Thu, 09 Jan 2025 10:29:54 -0800 (PST)
Received: from 1064022179695 named unknown by gmailapi.google.com with HTTPREST; Thu, 9 Jan 2025 18:29:54 +0000
Received: from 1064022179695 named unknown by gmailapi.google.com with HTTPREST; Thu, 9 Jan 2025 13:29:51 -0500
MIME-Version: 1.0 (Mimestream 1.5.0)
References: <CACsn0ck9pHXtLc7dgMME8nzLh2dV+__5tJm=mbRPpBqJq8YLzA@mail.gmail.com> <CH3PR13MB674772CE395C23E30B7F35D9E1132@CH3PR13MB6747.namprd13.prod.outlook.com> <CACsn0cndtkJm4mgQi=aD4uWDjzPY-CGZ589ORb_=3WGHnoA3Bg@mail.gmail.com> <da6da4a8-07ac-4e8e-93da-cede2834120c@posteo.de>
In-Reply-To: <da6da4a8-07ac-4e8e-93da-cede2834120c@posteo.de>
From: Dean Saxe <dean.saxe@beyondidentity.com>
Date: Thu, 09 Jan 2025 18:29:54 +0000
X-Gm-Features: AbW1kvaoE9yF-cUpSvF6njaDlZQS3Z2dh8foU1KOtdVj3GS6rzr1Eq2Jigh1CnY
Message-ID: <CALH0CC3k4Me+AvgTz+0QRBRA_mmVEy4iJ9GfHyrv4ddU=9==mQ@mail.gmail.com>
To: Paul Bastian <paul.bastian@posteo.de>
Content-Type: multipart/alternative; boundary="0000000000002081b7062b4a2a8e"
Message-ID-Hash: URF6SVBAINFA2636TVUUKNFBOSO6O53D
X-Message-ID-Hash: URF6SVBAINFA2636TVUUKNFBOSO6O53D
X-MailFrom: dean.saxe@beyondidentity.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: oauth@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [OAUTH-WG] Re: Reminder: Alternative text for sd-jwt privacy considerations.
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/RSCfTK8iRrsDedmRO7wF0DkP_Es>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>

 I’m struggling with the same thing.  If there’s somewhere that this is
described/documented it should be linked from the text.  I added the same
comment to the PR.

https://github.com/oauth-wg/oauth-selective-disclosure-jwt/pull/535#issuecomment-2580990520

-dhs
--
Dean H. Saxe, CIDPRO <https://idpro.org/cidpro/>
Principal Engineer
Office of the CTO
Beyond Identity
dean.saxe@beyondidentity.com




On Jan 9, 2025 at 10:20:56 AM, Paul Bastian <paul.bastian@posteo.de> wrote:

> Hi Watson,
>
> Could you please link the standard security notation for anonymous
> credentials that you are referring to?
>
> Best, Paul
> _______________________________________________
> OAuth mailing list -- oauth@ietf.org
> To unsubscribe send an email to oauth-leave@ietf.org
>