Open OR13 opened 4 years ago
We need this for secure data stores....
Can you link to more information on this?
@dlongley https://identity.foundation/secure-data-store/#datavaultconfiguration
https://github.com/digitalbazaar/edv-client/blob/master/tests/MockHmac.js#L6
How to represent the hmac key in JSON (in some ways related to the KeyPair vs VerificationKey debate)...
IMO, JSON-LD can and should be used for describing data models for things that are fully private... I know @msporny thinks privateKeyPem
was a mistake... but I don't agree... especially if we persist in the use of the name "VerificationKey"... I think we are implying an incomplete vocabulary, that requires a defintion of a "KeyPair"....
@tplooker and I discussed this as it related to JsonWebKey2020 and the BlsKeys....
Seems like we have 2 options:
"Ed25519KeyPair2020" -> contains -> "privateKeyBase58" + "publicKeyBase58" "Ed25519PublicKey2020" -> contains -> "publicKeyBase58" "JsonWebKeyPair2020" -> contains -> "privateKeyJwk" + "publicKeyJwk" "JsonWebPublicKey2020" -> contains -> "publicKeyJwk" "Sha256HmacKey2019" -> contains -> "privateKeyBase58" (is there public representation of an Hmac, like a salted hash of the key?)
"Ed25519VerificationKey2018" -> contains -> "privateKeyBase58" + "publicKeyBase58" "JsonWebKey2020" -> contains -> "privateKeyJwk" + "publicKeyJwk" "Sha256HmacKey2019" -> contains -> "privateKeyBase58"
Write spec text noting that all verification methods never contain "privateKeyBase58", or "privateKeyJwk", etc...
Perhaps support for hmac / symmetic keys should be defined in JSON-LD as well... see https://transmute-industries.github.io/universal-wallet/#Key
where id is sha256 of
privateValueBase58
....We need this for secure data stores....
@dlongley @dmitrizagidulin