w3c / vc-data-integrity

W3C Data Integrity Specification
https://w3c.github.io/vc-data-integrity/
Other
42 stars 19 forks source link

Add guidance on context and URL caching in general #172

Closed msporny closed 1 year ago

msporny commented 1 year ago

This PR attempts to address issue #170, raised by PING and security review, by adding guidance on context and URL caching, in general. It also adds a security consideration and a privacy consideration on network requests and network request fingerprinting.

/cc @kdenhartog


Preview | Diff

msporny commented 1 year ago

@TallTed wrote:

Note that context/s and vocabulary/ies are only capitalized in section titles in the JSON-LD spec, and I think that we should do the same.

Agreed, I have raised #183 to track this issue.

@kdenhartog wrote:

I'd suggest linking to https://github.com/ietf-wg-ohai/oblivious-http as one method to addressing privacy concerns when needing to resolve in production instances as well.

Added in https://github.com/w3c/vc-data-integrity/pull/172/commits/6eb08386692550e2e1cdfef95ba33bc823db7934.

msporny commented 1 year ago

Normative, multiple reviews, changes requested and made, no objections, merging.