WebOfTrust
Signing SAID's (`d` attr of any event) vs. signing the whole event
Hey,
since the cesr-proof and SAD path language is in place, would it make sense to sign just d attribute of any event rather than the whole event?
Then is CESR the serialized event along with signature would be:
{ event }
-JAB
5AABAA-d
...
Yes that makes sense. I think there is some code that would break in keripy to get there but there is a performance boost from signing only the said.
However keri events are quite small so its not a big boost. We have to be careful about what digests are allowed. As some are not as secure as the signatures. We don't really want to have to always CESR/Path event signatures as there is a lot more code that would have to change. So it would have to be an all or nother kind of thing.
So its a worthwhile suggestion and worthy of a discussion.
One way to make backwards compatible is to allow both. There is a lot of verification logic that is verifying signatures on the event not the said.
