2023-04-11 ACDC Meeting Notes

Attendees:

Sam Smith 

Philip Feairheller 

Kevin Griffin 

Kent Bull 

Henk van Cann 

Ruth Choueka 

Lance Byrd 

Click here for → Meeting Recording

Agenda

• Announcements
  • Waiting for IIW!
  • Provenant continues issue vLEIs!
• Reports
  • vLEI
    • https://github.com/w3c/vc-data-model/issues/1048
    • https://github.com/w3c/vc-specs-dir/pull/14
  • ToIP spanning layer
    • work shop this week
• Discussion Items
  • How to bind an AID to other key material (RSA Key)
    • Add a seal to the KEL point to the new key matieral or
    • Create a TEL to manage the state of the new key material or
    • Use BADA (Best Available Data Acceptance) policy, mechanism for signing data that inputs the key state of the signer as part of the state for replay attack detection
    • any recipient of a signed statement needs to know if it's a replay attack include key state
  • How would you do this in keripy?
    • Anchoring is easy, do an IXN event using the `kli`
    • No generic mechanism for TELs in keripy (we accept PRs)
    • Reply messages same ^^ (see end point code in keripy)
  • BADA (Best Available Data Acceptance) RUN (Read Update Nullify) articles
    • https://github.com/WebOfTrustInfo/rwot11-the-hague/blob/master/final-documents/taking-out-the-crud-five-fabulous-did-attacks.pdf
    • https://hackmd.io/@SamuelMSmith/Sy_g84sDK
    • https://github.com/trustoverip/acdc/wiki/best-available-data-acceptance-mechanism this is one the HackMDs?
    • https://weboftrust.github.io/ietf-oobi/draft-ssmith-oobi.html
  • IIW
    • - IIW Topics Sessions
              - KERI 101 Session - Nuttawut/Phil Introducing KERI
                  - Fit into the IIW 101 Series they hold every session
    • KERI for Dummies
      • Stable Identifiers with underlying Dynamic Key State 
    •         - KERI 201 Session - Kent (an accelerated developer introduction to KERI and ACDC)
                  - Possibly move to demo hour
              - Qui Identity - demo hour
                  - Break out hour on getting KERI / decentralization adopted.
              - RootID participating in DIDComm 2 hack-a-thon - chat, issuance
              - did:keri - Watcher variant
              - Logging into SSH with KERI
              - CESRide/Parside/Signifide white boarding session
              - VC-ACDC talk around how to create other Proof Formats for W3C VCs
              - Sam possibly doing talk about SPAC Paper / ESSR (Meta-Cryptographic Systems)
              - Randy (Provenant) doing vLEI in Telecom, cross boarder KYC problems.
                  - Binding actors to actions, making communications authentic
              - Salty Nonce drinking game
              - Signify / KERIA planning session (third day session)
              - Create a Google sheet for planning sessions - Phil
              - Sam session on reputation how to use AI against AI
    •    So you want to be a QVI (GLEIF) 
  • ACDC Privacy Mechanisms
    • https://github.com/SmithSamuelM/Papers/blob/master/whitepapers/SPAC_Message.md
    • https://weboftrust.github.io/ietf-acdc/draft-ssmith-acdc.html#name-unpermissioned-exploitation