giving capabilities in ClaimChains #47
Comments
|
@carmelatroncoso, your substitution captures exactly what i meant. Thanks. For the capabilities for oneself @misaakidis recently implemented a 'shortcut' that allows the owner of the chain to read all claims. I think this is based on the knowledge of the private keys for the vrf and encryption. The coresponding commit is here: claimchain/claimchain-core@d94bb9b |
|
One related thing comes to my mind... Right now we are not removing the capabilities when we construct new blocks. Fixing this is captured in this issue: nextleap-project/muacryptcc#20 |
|
@azul I understood that this "always" keeping capabilities was your way to avoid equivocation accross blocks. It has the problem of revealing key updates, but so far we do not have other way of doing that in a privacy preserving way |
|
@carmelatroncoso Yes. If I have a claim about your key I should also always add a capability for you to check it. If you notice my claim changed that should have no privacy implications as there are two ways for me to update your key:
However right now we are also keeping the capabilities for others that i gossiped your key to. There's no need for that. Holger does not need to check if i start claiming that you have a new key. And this in fact would have privacy implications. |
The text used to read:
It is not clear what are "all" those claims. I substituted by:
"Then, if they did not exist already, the client will grant capabilities to the recipients for the claims concerning those recipients. In other words, it will provide the recipients with enough information to learn each other keys and ClaimChain heads." but I do not know if this fits your idea/implementation
For the capabilities to one-self, how is the DH key defined?
The text was updated successfully, but these errors were encountered: