-
Notifications
You must be signed in to change notification settings - Fork 180
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Review privacy concerns around error conditions #2132
Comments
I aim to do a thorough review of this by the 2024-09-11 WG meeting. |
Enumeration of errorsThe following errors may be thrown during During init:
During lifetimeTimer wait loop:
Rearranging this as a map of errors to causes of that error, and assigning numbers to each for easy reference:
Analysis
|
Enumeration of errorsThe following errors may be thrown during During init:
During lifetimeTimer wait loop:
Rearranging this as a map of errors to causes of that error, and assigning numbers to each for easy reference:
Analysis
|
The spec contains privacy concerns such as this in the final steps of §5.1.3. Create a New Credential and §5.1.4. Use an Existing Credential to Make an Assertion:
These privacy concerns were written for an architecture of these operations that is no longer relevant, and may in fact not have been relevant even at the time the privacy concerns were written (see: #2095 (comment)). We should review whether these privacy concerns are still valid, or if they can be shown to be redundant under the current specification of these operations and thus removed. This would simplify initiatives such as #2096 and #2095.
Proposed Change
Review the validity of these privacy concerns. If they can be shown redundant, delete the prohibition against returning certain errors due to these privacy concerns.
The text was updated successfully, but these errors were encountered: