Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Should the spec have an opinion on the use of "old keys" and their use for verification #134

Open
swcurran opened this issue Nov 22, 2024 · 0 comments
Open

Should the spec have an opinion on the use of "old keys" and their use for verification #134

swcurran opened this issue Nov 22, 2024 · 0 comments

Comments

@swcurran
Copy link
Collaborator

At the 2024-11-21 the topic of the use of "old" keys from early versions of the DIDDoc.

  1. Should the DID Method take a position on their use?
  2. Is anything needed in the spec to enable making access to "old keys" easy in implementations of the resolver?

For example, should a fragment like <did>#key1 deliberately return a key from the not-current version of the DIDDoc, including metadata to indicate that the key is not in the current DIDDoc? What guidance can we get from the DID Core spec to provide useful support? With a mechanism like that, implementers could use key reference fragments in long-lasting verifiable credentials, confident that the signature is verifiable after a key rotation, without having to reissue all of the VCs.

To be discussed at the next Work Item meeting.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@swcurran