universal-wallet-interop-spec icon indicating copy to clipboard operation
universal-wallet-interop-spec copied to clipboard

Published 20 hours ago verified publisher icon w3c-ccg

Data Sanitization

Open OR13 opened this issue 5 years ago • 3 comments

It should be possible to "show your wallet contents" to another party, without loosing any controlling authority that comes from any secret (private) information in wallet contents.

Doing so will of course allow that party to track you everywhere you use any public components of the content, but that party should not be able to impersonate you, or decrypt messages intended for you.

OR13 avatar Oct 07 '20 14:10 OR13

Can you explain the purpose behind such a feature?

TelegramSam avatar Oct 08 '20 14:10 TelegramSam

@TelegramSam yep, essentially "keypairs" have private keys, but showing them is dangerous... what if you could automatically ask for data models that are "safe to share" in that they reveal correlation, but don't lead to compromise.

This could be accomplished by being smarter about the security context associated with certain members, such as privateKeyBase58 or mnemonic.value

OR13 avatar Oct 09 '20 16:10 OR13

JSON Schema for type matching would help identify content that should be filtered properly.

OR13 avatar May 05 '21 15:05 OR13