agropper
commented
4 years ago The sentence: "Alice's records are held in trust by a community server operated through her local public library." is confusing.
The local public library does not operate any storage and keeps no copies of either Alice's or Bob's personal information. The library is merely a trusted proxy, as might be expected of a universal resolver service. The use of a trusted intermediary avoids either Alice or Alice's employer form having to install new software as long as they have a smartphone that receives SMS and/or QR codes with links to a web browser.
Longer version here: https://github.com/agropper/secure-data-store/raw/master/diagrams/Health_Report_Use_Case.png Feedback welcome-- not really sure which details to add or subtract for the purposes of making the authorization mechanics explicit enough to be useful in the layering debate/refinement process? Look ok, @agropper ?