Dave Longley
Dave Longley
@brownoxford, > I am a fan of the idea that a "conflict" error can help identify whether or not VCs were issued in the case of a network (or similar)...
Thanks! I agree -- closing.
Data Integrity does not consider encrypted VCs/VPs -- and, IMO, JWE should be used to handle encryption of Data Integrity protected payloads. The kind of design trade offs that Data...
@decentralgabe, > Would folks be open to adding text that clarifies that if multiple subjects are specified, all claims in the VC apply to both subjects? Yes, I would be...
@NuSkooler -- saw this issue come in, just swamped at the moment and can't look into it. If there's no way to add custom attributes, we want to make sure...
@NuSkooler -- I have to look into it, I thought we had something similar somewhere else and I'd like to keep the naming consistent.
+1, we should update the default to SHA-256, but we'll have to do a major version release (where "major" is `0.8` at this point since we're still under `1.0`.)
@jbenet, > I'm assuming forge does not implement TLS 1.3, because i couldn't find mentions on it. Is this high in the priority queue? i know the team has LOTS...
The presence of "ECB" in "RSA/ECB/OAEPWithSHA-256AndMGF1Padding" doesn't make any sense. "ECB" is a symmetric cipher mode and RSA-OAEP is an asymmetric cipher. So "ECB" has no effect whatsoever ... I...
@davidlehn, also, if we do want to accept this PR, I recommend we should reconsider adding the URL itself (or at least the beginning of it if it's huge) to...