Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DID Rotate Protocol #794

Merged
merged 9 commits into from
Dec 6, 2023
Merged

DID Rotate Protocol #794

Changes from 4 commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
9c41657
DID Rotate Protocol
TelegramSam Aug 29, 2023
5cb5473
number correction
TelegramSam Aug 29, 2023
3eaa780
PR suggested fixes
TelegramSam Aug 31, 2023
ba6f940
hangup message
TelegramSam Aug 31, 2023
ef543ef
Update features/0794-did-rotate/README.md
TelegramSam Sep 6, 2023
30eb05f
Fixes per Stephen's suggestions
TelegramSam Sep 7, 2023
d9fe480
Addition of a Doc Unsupported error
TelegramSam Sep 15, 2023
0aa4380
Merge branch 'main' into did_rotate
TelegramSam Nov 29, 2023
08975c1
Merge branch 'main' into did_rotate
swcurran Dec 6, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
137 changes: 137 additions & 0 deletions features/0794-did-rotate/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,137 @@
# Aries RFC 0794: DID Rotate 1.0

- Authors: [Sam Curren]([email protected])
- Status: [PROPOSED](/README.md#proposed)
- Since: 2023-08-29
- Status Note:
- Start Date: 2023-08-18
- Tags: [feature](/tags.md#feature), [protocol](/tags.md#protocol)
- URI: https://didcomm.org/did-rotate/1.0

## Summary

This protocol signals the change of DID in use between parties.

This protocol is only applicable to DIDComm v1 - in DIDComm v2 use the more efficient DID Rotation header.

## Motivation

This mechanism allows a party in a relationship to change the DID in use for the relationship. This may be used to switch DID methods,
swcurran marked this conversation as resolved.
Show resolved Hide resolved
but also to switch to a new DID within the same DID method. Inspired by (but different from) the DID rotation feature of the DIDComm Messaging (DIDComm v2) spec.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

“new DID within the same DID method” to “new DID within the same DID method, such as to update the mediator relationship in the DIDDoc.”

I think it would be helpful to include that example.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Super minor, and not necessary, but I realize there are other motivators for adding/using this protocol, and perhaps a list is needed:

  • change mediators
  • change the key in an non-updatable DID method.
  • hanging up
  • Switch from a deprecated DID Method, such as unqualified DIDs or did:peer numalogos 1 and 2/3 to did:peer:4


## Implications for Software Implementations

This protocol enables the identifiers used in a relationship to change. Implementations will need to consider how data related to the relationship is managed. If the relationship DIDs are used as identifiers, those identifiers may need to be updated during the rotation to maintain data integrity.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this comment is pretty subtle, and useful only for those “deep in the know”. I’m not sure this is any better, so take this with a grain of salt...

Implementations will need to consider how data (public keys, DIDs and the ID for the relationship) related to the relationship is managed. If the relationship DIDs are used as identifiers, those identifiers may need to be updated during the rotation to maintain data integrity. For example, both parties might have to retain and be able to use as identifiers for the relationship the existing DID and the rotated to DID, and their related keys for a period of time until the rotation is complete.


## Tutorial

### Name and Version

DID Rotate 1.0

URI: https://didcomm.org/did-rotate/1.0/<messageType>

### Roles

**rotating_party**: this party is rotating the DID in use for this relationship. They send the `rotate` message.

**observing_party**: this party is notified of the DID rotation

### Messages

#### Rotate

Message Type URI: https://didcomm.org/did-rotate/1.0/rotate

`to_did`: The new DID to be used to identify the **rotating_party**

```json
{
"@id": "123456780",
"@type": "https://didcomm.org/did-rotate/1.0/rotate",
"to_did": "did:example:newdid",

}
```

The **rotating_party** is expected to receive messages on both the existing and new DIDs and their associated keys for a reasonable period that MUST extend at least until the following `ack` message has been received.

This message MUST be sent using authcrypt or as a signed message in order to establish the provenance of the new DID. Proper provenance prevents injection attacks that seek to take over a relationship. Any rotate message received without being authcrypted or signed MUST be discarded and not processed.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would add something like so that readers unfamiliar with the DIDComm message handling will not go down a rabbit hole of trying to figure out if a message is AuthCrypt or not: “In Aries implementations, messages sent in the context of an existing relationship are by default sent using authcrypt.”


DIDComm v1 uses public keys as the outer message identifiers. This means that rotation to a new DID using the same public key will not result in a change for new inbound messages. The **observing_party** must not assume that the new DID uses the same keys as the existing relationship.

#### Ack

Message Type URI: https://didcomm.org/did-rotate/1.0/ack

This message is still sent to the prior DID to acknowledge the receipt of the rotation. Following messages will be sent to the new DID.

In order to correctly process out of order messages, the The **observing_party** may choose to receive messages from the old did for a reasonable period. This allows messages sent before rotation but received after rotation in the case of out of order message delivery.
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Consistency — “old did” —> “old DID"


In this message, the `thid` (Thread ID) MUST be included to allow the `rotating_party` to correlate it with the sent `rotate` message.

```json
{
"@id": "123456780",
"@type": "https://didcomm.org/did-rotate/1.0/ack",
"~thread" : {
"thid": "<id of rotate message>"
},

}
```

#### Problem Report

If the **observing_party** receives a `rotate` message with a DID that they cannot resolve, they MUST return a problem-report message.

The `description` `code` must be set to one of the following:
- **e.did.unresolvable** - used for a DID who's method is supported, but will not resolve
- **e.did.method_unsupported** - used for a DID method for which the `observing_party` does not support resolution.

Upon receiving this message, the `rotating_party` must not complete the rotation and resolve the issue. Further rotation attempts must happen in a new thread.

```json
{
"@type" : "https://didcomm.org/did-rotate/1.0/problem-report",
"@id" : "an identifier that can be used to discuss this error message",
"~thread" : {
"pthid": "<id of rotate message>"
},
"description" : { "en": "DID Unresolvable", "code": "e.did.unresolvable" },
"problem_items" : [ {"did": "<did_passed_in_rotate>"} ],
}
```

#### Hangup

Message Type URI: https://didcomm.org/did-rotate/1.0/hangup

This message is sent by the **rotating_party** to inform the **observing_party** that they are done with the relationship and will no longer be responding.

There is no response message.

Use of this message does not require or indicate that all data has been deleted by either party, just that interaction has ceased.

```json
{
"@id": "123456780",
"@type": "https://didcomm.org/did-rotate/1.0/hangup"
}
```

## Prior art

This protocol is inspired buy the rotation feature of DIDComm Messaging (DIDComm v2). The implementation differs in important ways.
TelegramSam marked this conversation as resolved.
Show resolved Hide resolved
The DIDComm v2 method is a _post rotate_ operation: the first message sent AFTER the rotation contains the prior DID and a signature authorizing the rotation. This is efficient, but requires the use of a message header and a higher level of integration with message processing.
This protocol is a _pre rotate_ operation: notifying the other party of the new DID in advance is a less efficient but simpler approach. This was done to minimize adoption pain. The pending move to DIDComm v2 will provide the efficiency.

## Implementations

The following lists the implementations (if any) of this RFC. Please do a pull request to add your implementation. If the implementation is open source, include a link to the repo or to the implementation within the repo. Please be consistent in the "Name" field so that a mechanical processing of the RFCs can generate a list of all RFCs supported by an Aries implementation.

*Implementation Notes* [may need to include a link to test results](/README.md#accepted).

Name / Link | Implementation Notes
--- | ---
|