IETF Logo Mail Archive

[OAUTH-WG] SD-JWT and Unlinkability

Dick Hardt <dick.hardt@gmail.com> Sat, 21 September 2024 04:42 UTC

Return-Path: <dick.hardt@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F1734C180B66 for <oauth@ietfa.amsl.com>; Fri, 20 Sep 2024 21:42:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l8DiXa_DB-3d for <oauth@ietfa.amsl.com>; Fri, 20 Sep 2024 21:42:38 -0700 (PDT)
Received: from mail-yb1-xb32.google.com (mail-yb1-xb32.google.com [IPv6:2607:f8b0:4864:20::b32]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9686BC169428 for <oauth@ietf.org>; Fri, 20 Sep 2024 21:42:38 -0700 (PDT)
Received: by mail-yb1-xb32.google.com with SMTP id 3f1490d57ef6-e1a74ee4c75so2462701276.3 for <oauth@ietf.org>; Fri, 20 Sep 2024 21:42:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1726893758; x=1727498558; darn=ietf.org; h=cc:to:subject:message-id:date:from:reply-to:mime-version:from:to:cc :subject:date:message-id:reply-to; bh=pwoFZsMnxuj7xC4XJI+9p/lDtTXGV1H4Xz5sAddCyQI=; b=Htja3UVCtcyXzic6A/P+VWUw5p7xqUCZtL+7agpdgH1uuwU1p6asliV2qFS5KD0kB3 nIhegybS8Ejh3em+i0tB1qCNAX1gVMsdIDHe7SxjoUTu2B6glI3SeAbHNXT/A45UZvVK TNuTgnIdpr4HjUpRwB6evSQHbksNs5JHkbAyFCXXUFqFz9HxGAqVoxiPN7/V4Qc3fBQT aYSaJFypzYebabtuhfkNng5y2Fw6nCUptCUYBQTHzdNdFuxA3aTyUZ8nj++Np2E69vUH Y+ekL+XbB4qRPUoAwEOaGvqc3MB8CoMApqht2Oy7cMA06SfeOXLHblgrP7493V3xRGmg qzuw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1726893758; x=1727498558; h=cc:to:subject:message-id:date:from:reply-to:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=pwoFZsMnxuj7xC4XJI+9p/lDtTXGV1H4Xz5sAddCyQI=; b=PM84lXgsGc5G/gK1uslQuPspE4y66jQiaxZmK6l6KN2LF2JKFYCSLXC8vnk/irFgvZ OzNJ9Q+MoHOWVkC5AbnO+kYLhhPZjhLjasy4IMFxzVam1GYQSoChm6rI2e2yCW3XLdH0 WdGHTueAHnFqlEoU4cVGN1EUnpTo97wm6AHT6zYIivrP7TCP5iA7r8XwNtnk3SCq1hbD TAsTO3eJyXAhIr/niO/ZvETqGO2qBJ/9B1UhnfgukZV/I7TVA+mNJjOsSO0y+C6NDmJs xD9CQosJcPkbZzq6fZAL/uY9tMqWW9c2rthcLPsSm6C+RxjQtJAgZzgGy5f9sljs2H35 rROw==
X-Gm-Message-State: AOJu0Yzi0ukjVQzT7q2YnFZzFq522SU0wduwL3oKD0eeL49trqTNvmvp YeQMKiLP8dMtXx+JH0rUCO+VVNLcmTWOWNg6Mv2YMAhLUl3ekNH2Xd42NAM9rX3pVg/PbqseZRT 7D/8B+auMyGKD1lonmCQURi0S2XgmFmmj0mE=
X-Google-Smtp-Source: AGHT+IEeP7A9m4qXoMpICpTEb97mSVu7aLn7dB7PHgoD62kd2XzcGYFFjFswa4XuZywWGn69ou0k4xI3caNBY9sADJ4=
X-Received: by 2002:a05:6902:2782:b0:e13:83fd:cf01 with SMTP id 3f1490d57ef6-e2250cc9357mr4141986276.49.1726893757613; Fri, 20 Sep 2024 21:42:37 -0700 (PDT)
MIME-Version: 1.0
From: Dick Hardt <dick.hardt@gmail.com>
Date: Sat, 21 Sep 2024 06:42:01 +0200
Message-ID: <CAD9ie-s_gFmkCC8uKXQXC0W1u_zcaktvvNV6wEC4RtJQMarnng@mail.gmail.com>
To: oauth@ietf.org
Content-Type: multipart/alternative; boundary="000000000000fccf45062299c85c"
Message-ID-Hash: 7WA3YBCFAXNKR7U4XNGNFF7HK3IBZYWZ
X-Message-ID-Hash: 7WA3YBCFAXNKR7U4XNGNFF7HK3IBZYWZ
X-MailFrom: dick.hardt@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: kristina@sfc.keio.ac.jp
X-Mailman-Version: 3.3.9rc4
Precedence: list
Reply-To: Dick.Hardt@gmail.com
Subject: [OAUTH-WG] SD-JWT and Unlinkability
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/SL3ZDUQlc5_f4wu1p3fFL0b8th4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>

Is it really going to be practical to batch issue claims, and have the
holder randomly choose between them on presentation?

As an implementer, what is the right number of claims to be in a batch?

This section of the draft reads as a hack to add a new capability
(unlinkability) to a mechanism that did not have that as a design objective.

This is going to be like the "alg":"null" for SD-JWT. :-)

v2.29.0 | Report a Bug | By Email | System Status