Open erichfi opened 1 year ago
Responses below for each of the raised points:
DataConnectors
, which are interfaces that allow integration with arbitrary API calls, private credential handling, and callback logic, for each of the OAuth platforms that it wants to support. This should be very simple with our Rust-based SDK. Alternatively, Clique can also do the implementation and create public PRs for Gitcoin to review.DataConnector
extension. Clique is willing to do the code migration here if necessary. The logic around concurrent processes (if there is any) might need further adaptations to better fit the enclave architecture.
Describe the spike This research aims to explore the feasibility, implications, and estimated scope of work required to integrate Clique's identity oracle solutions into Passport's identity verification system. The focus is specifically on improving the security and privacy of the verification process for Web2 OAuth stamps through the use of Clique's cryptographically secure environment.
Why is this needed While Passport's current identity verification system is robust, there is an opportunity to further enhance the security and privacy of the process, particularly when verifying user attributes on Web2 platforms. Implementing Clique's solutions could provide a heightened level of certainty that user data remains absolutely private during verification. Understanding the technical and strategic scope of implementing such a solution is critical for effective project planning, resource allocation, and risk mitigation.
Deliverable By the end of this spike, we should have clear answers to the following questions:
The deliverable will be a comprehensive report that provides answers to these questions, estimates the scope of work, and outlines a preliminary implementation roadmap, if feasible. This report should inform decision-making regarding the potential integration of Clique into Passport's verification process.