discussion: The section should have a diamond trust model, with a 4 element as the trust registry/trust list, the "trust" actors in the system that either the issuer/holder/verifier go to to perform their trust verification tasks.
Could be a ToIP trust registry, a browser C2PA trust list, or a human doing manual trust verification based on the identifiers presented to them, if no list are available.
There are many instances of "when $actor$ trust other $actor$", it could reference the trust registry/list.
discussion: The section should have a diamond trust model, with a 4 element as the trust registry/trust list, the "trust" actors in the system that either the issuer/holder/verifier go to to perform their trust verification tasks.
Could be a ToIP trust registry, a browser C2PA trust list, or a human doing manual trust verification based on the identifiers presented to them, if no list are available.
There are many instances of "when $actor$ trust other $actor$", it could reference the trust registry/list.
For discussion