Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Need to write DID:BTCR Best Practices vs Reasonable Practices Docs #20

Closed
ChristopherA opened this issue Jul 8, 2017 · 3 comments
Closed

Need to write DID:BTCR Best Practices vs Reasonable Practices Docs #20

ChristopherA opened this issue Jul 8, 2017 · 3 comments

Comments

@ChristopherA
Copy link
Member

At some point we need to write up some best practices vs reasonable practices documentation.

For instance, ideally you should treat your keys like you do with bitcoin — you use your root key to sign your transaction and immediately sign a few other objects with it (such as the DDO), and you never use it again. If you need ongoing signing keys, put them in the DDO and expire them regularly.

For a high-value pseudo-anonymous identity, you should treat your keys like glacier does for high-value bitcoin transactions, with raw transactions and air-gapped computers: https://glacierprotocol.org/

Clearly the DDO itself should not be centralized, so services like IPFS

As a different kind of example, in my first personal DDO at https://raw.githubusercontent.com/ChristopherA/self/master/ddo.jsonld, I do some things that are not recommended for a pseudo-anonymous identity (as it is clearly not anonymous). However, my choices there are reasonable. First, my DDO is centralized (it is a DNS URL, and it is hosted on github), but my commit of my DDO is signed by my PGP key there. Both are mirrored in a variety of places. When we later can add timestamping it will have more provenance.

Even though in my personal DDO example I'm not trying to be pseudo-anonymous, I also plan to try to not reveal information about others. So I might say I "know" another DID, but I will only do so if they have accepted it as a counter-claim (i.e. they "know" my DID). There is no technological way to force this, but as a social practice we should encourage it.
@ChristopherA ChristopherA mentioned this issue Jul 11, 2017
Closed
@ChristopherA
Copy link
Member Author

A first pass at some quick definitions:

  • Reasonable Practices (see Demo of DID:BTCR / DDO based on reasonable practices #32) — basically secure but not for truly pseudo-anonymous identities. Low cost in both establishing and maintaining identity in skills, $ and time.

  • Pragmatic Practices — more secure for persistent pseudo-anonymous identities, but more to avoid attacks by black hats or corporate attackers. Higher cost in skills, $ and time.

  • Best Practices — the most secure for pseudo-anonymous identity (i.e. it is possible that have short term persistence, like Satoshi (a few years) or Tom Elvis Jedusor (1 day). Presumes a greater need to avoid attacks by nation state actors and large consortia (aka miners). Censorship resistance and avoiding traffic attacks and other correlation a priority. Highest cost is skils, $ and time.

@kimdhamilton
Copy link
Collaborator

assign to Christopher

@kimdhamilton kimdhamilton mentioned this issue Aug 12, 2017
Open
@kimdhamilton
Copy link
Collaborator

This issue was moved to WebOfTrustInfo/rwot5-boston#28

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ChristopherA @kimdhamilton