Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add text clarifying where group controllers might be listed. #883

Open
wants to merge 2 commits into
base: main
Choose a base branch
from
Open

Add text clarifying where group controllers might be listed. #883

wants to merge 2 commits into from
+9 −1

Conversation

msporny
Copy link
Member

@msporny msporny commented Mar 3, 2025
edited by pr-preview bot
Loading

This PR is an attempt to address issue #839 by adding text clarifying where group controllers might be listed.

Preview | Diff

@msporny msporny requested a review from mccown as a code owner March 3, 2025 22:44
@msporny msporny mentioned this pull request Mar 3, 2025
Open
wip-abramson
wip-abramson reviewed Mar 4, 2025
View reviewed changes
wip-abramson
wip-abramson reviewed Mar 4, 2025
View reviewed changes
@wip-abramson
Copy link
Contributor

Reading over the section referenced in issue #839 - https://www.w3.org/TR/did-1.0/#group-control.

I think I would add another sentence:

Verification methods that require the combination of cryptographic operations from members of a group to produce a proof MAY be used to control the contents of a DID document, how this is realized is dependent on individual DID method specifications.

Just because a DID document expresses a verificationMethod, does not automatically mean that those who can create proofs associated with that verificationMethod have the ability to control the content of the DID document. Sometimes, even often, these are completely separated by the DID method.

@TallTed
Copy link
Member

TallTed commented Mar 5, 2025
edited
Loading

Maybe?
Verification methods that require a proof be produced by a combination of cryptographic operations performed by members of a group can be used to control the contents of a DID document; exactly how this is realized depends on individual DID method specifications.

TallTed
TallTed reviewed Mar 20, 2025
View reviewed changes
index.html
Section [[[#verification-methods]]] or can be an intrinsic part of the
verification material of the [=verification method=], where the number of [=DID controllers=] that
participated in the generation of a particular digital signature are hidden for
privacy reasons.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
privacy reasons.
privacy reasons. Verification methods that require a proof be produced by a combination of cryptographic operations performed by members of a group can be used to control the contents of a DID document; exactly how this is realized depends on individual DID method specifications.

@w3cbot
Copy link

w3cbot commented Mar 20, 2025

This was discussed during the #did meeting on 20 March 2025.

View the transcript

w3c/did#883

manu: merged Wip's changes. One last proposal on some language. Asks that we remove normative "may" word. We're requesting spec requirements but if "may" we won't enforce. Change "may" to "can" so it conveys the same thing without normative language which requires a test suite

wil: this requires a verification but it doesn't mean you can control the did doc with that verification method

<manu> +1 to what Will just said.

TallTed: has a modification which TallTed will make shortly

peacekeeper
peacekeeper approved these changes Mar 20, 2025
View reviewed changes
Copy link
Contributor

@peacekeeper peacekeeper left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I agree this is useful..

https://github.com/w3c-ccg/verifiable-conditions/ is an example where thresholds are expressed explicitly, and there are also other examples (such as KERI-based DID methods) where the the thresholds are expressed as part of the verification material.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TallTed TallTed TallTed left review comments

@wip-abramson wip-abramson wip-abramson left review comments

@peacekeeper peacekeeper peacekeeper approved these changes

@BigBlueHat BigBlueHat Awaiting requested review from BigBlueHat

@ChristopherA ChristopherA Awaiting requested review from ChristopherA ChristopherA is a code owner

@dlongley dlongley Awaiting requested review from dlongley

@jandrieu jandrieu Awaiting requested review from jandrieu

@pchampin pchampin Awaiting requested review from pchampin

@dmitrizagidulin dmitrizagidulin Awaiting requested review from dmitrizagidulin dmitrizagidulin is a code owner

@tminard tminard Awaiting requested review from tminard

@danpape danpape Awaiting requested review from danpape danpape is a code owner

@philarcher philarcher Awaiting requested review from philarcher

@KDean-Dolphin KDean-Dolphin Awaiting requested review from KDean-Dolphin

@kdenhartog kdenhartog Awaiting requested review from kdenhartog

@mccown mccown Awaiting requested review from mccown mccown is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@msporny @wip-abramson @TallTed @w3cbot @peacekeeper