DRK3
commented
3 years ago Discussed on July 8, 2021 WG call:
Do we need the ID in a structured document?
- Clients may want to use ID for indexing/caching
- Could meta be used for these purposes?
- Is the ID being in a structured document an artifact of a specific implementation?
- Use case: relating structured doc to encrypted doc
- Mandate that Structured Doc ID is identical to the encrypted doc ID.
- Maybe structured document should also have the sequence number from encrypted document?
- Document migration: Do IDs change?
- Update spec to say that you only encrypt the meta, content and stream (if applicable) fields. An implementation may provide fields like id in the structured document that match what's in the encrypted document
- Implementations may augment the structured document on their end.
- First few examples could include only required fields, and then an example with those augmented fields.
dmitrizagidulin
dlongley
Why not just encode your data as an JWE and directly put it in an
EncryptedDocumentinstead of wrapping it in aStructuredDocumentfirst, seeing as how the server never sees theStructuredDocument. AStructuredDocumentare already a very general object.Now... assuming that Structured Documents are here to stay... I find the ID constraint strange. In the description for the
StructuredDocumentidproperty, it says:Seeing as a
StructuredDocumentis encrypted before being put in anEncryptedDocumentwhat is the need for the format constraint on theidproperty? Why does aStructuredDocumenthave an ID anyway?