Fergal

In last weeks dev call we discussed ESSR between Signify and KERIA. The cleanest solution suggested was to encrypt the entire HTTP request and embed it in the body of...

I'm currently investigating how to encrypt IPEX exn messages. It would also be good to encrypt any supporting events streamed when granting (e.g. TEL events) as this leaks information which...

Thanks @kentbull updated (and used a githash this time as I should've :P) Based on more recent [Discord convos](https://discord.com/channels/1148629222647148624/1148732741572112486/1225071351480717362), I actually think scanning for unapproved events vs using a notification...

**For dev tags:** I think something ad hoc like how it's done in keripy and KERIA make sense to me, at least right now. That way there isn't a flood...

@edeykholt The `0.3.0` branch was cut recently, so this will be on the next version anyway. Regarding web crypto, this is great to see but we need more than just...

This has diverged too much from main, so closing and opening a new one.

Fixed in 1.1.0 release. Please re-open if necessary

For the controller as it's signed at the edge. We have been using it for the `indexer` role for OOBI discovery, though from conversations with @lenkan that might need some...

Need to do some investigation but some cases may already be protected from replay attacks if KERIA does nothing with a request containing the same SAID. Might be wrong. May...

Right but that would require storing or caching the timestamps of previous calls, where it might be cleaner if our endpoints were designed to just be idempotent based on the...