Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

LDAP revocation & wallet #67

Open
9 of 31 tasks
bluesteens opened this issue Jul 11, 2023 · 4 comments
Open
9 of 31 tasks

LDAP revocation & wallet #67

bluesteens opened this issue Jul 11, 2023 · 4 comments
Assignees
@bluesteens
Labels
documentation Improvements or additions to documentation Steering - Review Proposal and Completed work must be reviewed by Steering.

Comments

@bluesteens
Copy link
Member

bluesteens commented Jul 11, 2023
edited by rceleste125
Loading

Steering: Proposal Summary

Used to propose a change or addition to Steering.
This is for the Steering work START approval step. Discuss the proposed work or change.
Section 4.1.10 Credential Revocation seems to mix issuer and wallet requirements. Suggest to sharpen the focus and clarify the wallet requirements.

Steering: Publication Summary

Used to present completed work to Steering for approval to publish.
Discuss the work that was completed in reference to the above proposal. Include any differences from the proposal and why.
use [GitHub Preview](https://htmlpreview.github.io/) to show final state of documents along with pull requests (if needed).

Detailed Description:

observation 1

Section 4.1.10 Credential Revocation says,

Digital Wallet Providers SHALL implement the OCI Directory Service (LDAP)-based mechanism for determining if a Verifiable Credential has been revoked (vc-status-2021-ldap).

This is not precise, as the issuer needs to run LDAP servers, the wallet just needs to be able to call them.
Suggest to reword to sth like,

wallet providers shall implement API calls to the LDAP server of the issuer and check the revocation status

observation 2

I'd also remove the intro sentence, as that's hypothetical and not relevant for audits or implementers. They only need to know what applies NOW.

OCI can potentially support multiple methods for communicating when a Credential has been revoked.

observation 3

Further, the para ends with,

Credential Issuer and Digital Identity providers SHALL implement LDAPS, which is LDAP secured by communication over Transport Layer Security (TLS) protocol.

The CI criteria do not belong in the wallet conformance document.

Triage:

  • Is Issue appropriate for OCI Architecture
  • Assign Size
  • Assign Priority
  • Assign Label (if needed)
  • OCI affected Artifacts Identified
  • Assign Triage - Artifact Version Target (v x.x.x Milestone)
  • Assign Triage - Interop Profile Version Target (v x.x.x Milestone)
  • Create sub-project (if needed)

Affected Parties (help determine Sunrise/Sunset):

  • Trading Partners
  • Issuers
  • Wallet Solutions
  • PI Verification Solutions

Affected OCI Artifact

  • Schema Document
  • Identity Schema
  • ATP Schema
  • Issuer Conformance Criteria
  • Wallet Conformance Criteria
  • VRS Solution Conformance Criteria
  • Wallet API Specification
  • Governance Document
  • Conformance Program
  • OCI Website
  • Internal Process

Change Category (Guides Steering Review)

- Steering/Industry Review

  • Business-Level (May affect business operations)
  • OCI Governance, Policy or website feature

- Steering/Industry Notification

  • Technical-Level (Does not affect business operations)
  • OCI Internal Process or Infrastructure

Communication

  • Website
  • Newsletter
  • email:
  • Other:
@bluesteens bluesteens self-assigned this Jul 11, 2023
@bluesteens bluesteens converted this from a draft issue Jul 11, 2023
@bluesteens bluesteens added the documentation Improvements or additions to documentation label Jul 11, 2023
@rceleste125 rceleste125 moved this from 🔖 Initial Triage to P&A Triage Review & Consensus in OCI Change Management Jul 12, 2023
@bluesteens
Copy link
Member Author

consider impact on issuer criteria @britpayson

@rceleste125 rceleste125 moved this from P&A Triage Review & Consensus to Steering Business Review in OCI Change Management Jul 13, 2023
@rceleste125 rceleste125 added the Steering - Review Proposal and Completed work must be reviewed by Steering. label Jul 17, 2023
@rceleste125 rceleste125 moved this from Steering Business Review to 📋 Ready for work in OCI Change Management Jul 17, 2023
@bluesteens bluesteens linked a pull request Aug 16, 2023 that will close this issue
revocation section reworded #84
Closed
@bluesteens bluesteens moved this from 📋 Ready for work to 👀 P&A Completed Work Approval in OCI Change Management Aug 16, 2023
@bluesteens
Copy link
Member Author

relates to #76

@bluesteens
Copy link
Member Author

hold until decision on PR #75

@bluesteens
Copy link
Member Author

PR & ticket closed, as merged into #76

@bluesteens bluesteens moved this from 👀 P&A Completed Work Approval to Done - Rejected in OCI Change Management Sep 25, 2023
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@bluesteens bluesteens

Labels
documentation Improvements or additions to documentation Steering - Review Proposal and Completed work must be reviewed by Steering.
Projects
OCI Change Management
Status: Done - Rejected
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

revocation section reworded Open-Credentialing-Initiative/Digital-Wallet-Conformance-Criteria
2 participants
@bluesteens @rceleste125