Controllers Documents v1.0 2024-06-02 > 2024-09-02

[msporny]

The Verifiable Credentials Working Group is requesting a review of Controller Documents by the end of summer 2024 (ideally, sooner). Controller Documents are a generalization of DID Documents and some content from VC Data Integrity. All this to say, horizontal review has occurred for most of this content before when it was in DID Core, and then again when it was in Verifiable Credential Data Integrity. The Working Group recently decided that it would rather have this content in a separate specification than embed it in DID Core or VC Data Integrity, and that specification is Controller Documents v1.0.

• name of spec to be reviewed: Controller Documents v1.0

• URL of spec: https://w3c.github.io/controller-document/

• What and when is your next expected transition?

  • September 2024 (Candidate Recommendation)

• What has changed since any previous review?

  • 90%+ of previous content in DID Core and Data Integrity remains the same. Almost every normative statement remains the same (some language needed to be changed since it's being transplanted from VC Data Integrity).

• Does your document have an in-line Security Considerations section, ideally one separate from the Privacy Considerations?

  • Yes, although the Privacy Considerations section is effectively the same as in DID Core and Data Integrity (the parts of those specs that apply).

• Please point to the results of your own self-review

  • https://github.com/w3c/controller-document/issues/22

• Where and how to file issues arising?

  • https://github.com/w3c/controller-document/issues/

• Pointer to any explainer for the spec?

  • DID Core Explainer
  • Data Integrity Explainer
  • Let us know if you would like us to write another explainer for this spec: The spec is basically just "DID Documents, but you can now use other types of URLs in them (like HTTPS-based ones)". The spec exists so we can establish spec text, separate from DID Core and Data Integrity, that we can then normatively reference from other specs in the VCWG that don't have anything to do with DIDs, like generalized public key discovery algorithms.

Other comments:

None.

[brentzundel]

Howdy, just checking to see if there are any questions we might be able to answer for the reviewers and if there were an estimate for when we might be able to expect a response.

Most of the content for the document under review was pulled directly from VC JOSE COSE and VC Data Integrity, both of which were previously reviewed and are in Candidate Recommendation. We pulled some common language from both specs into a standalone specification so that it could be presented in a more logically consistent manner, but other than than have only made minimal changes.