Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Should this method have an easy solution to "Right to be forgotten"? #161

Open
brianorwhatever opened this issue Dec 19, 2024 · 6 comments
Open

Should this method have an easy solution to "Right to be forgotten"? #161

brianorwhatever opened this issue Dec 19, 2024 · 6 comments

Comments

@brianorwhatever
Copy link
Contributor

Currently the deactivate method still returns a DID and the log still exists. Should we make this more robust and delete the log or something along those lines?
@Reccetech
Copy link

Reccetech commented Dec 19, 2024
edited
Loading

In the conversation @swcurran mentioned that a 3rd party operator handling a "right to be forgotten" request could just delete the relevant DID log and then anyone trying to resolve the DID would get a 404. I think this is a satisfactory solution. Maybe a description of this flow can be added to the spec under "Security and Privacy Considerations"

@ankurdotb
Copy link

There are valid reasons why someone might want to resolve (and receive) a DID Document for a deactivated DID. See discussion on W3C: w3c/did-resolution#5

Example I used is if I had a degree certificate issued as a credential from a university 10 years ago, but that DID has been deactivated (for whatever operational reason). As a holder of this degree, would still want someone to be able to validate that it was valid at that time

@swcurran
Copy link
Collaborator

swcurran commented Feb 6, 2025

@ankurdotb — I think you are describing a different concern from why this issue was raised. In this issue, the concern is the desire to delete a DID, because I’m the DID Controller and I want it removed. Perhaps it is on a service like Bluesky, represents me as a DID Controller, and I want it removed.

You are looking at the other side of long lasting DID resolution — being able to resolve a DID after it “disappears” because the DID Controller has disappeared or removed it. Obviously, a DID Controller can choose to remove a DID, but that leaves those holding verifiable credentials (signatures) unable to have them verified. For that, the best answer is a Watcher that (independent of the DID Controller) monitors and maintains DIDs so that they can be resolved and used to verify signatures. Given a did:webvh DID Log from any source, and a reference in a verifiable credential to that DID, the DID Log can be verified, and the relevant key in the DIDDoc used to verify the verifiable credential.

@ankurdotb
Copy link

That makes sense, thanks for the clarification!

@swcurran
Copy link
Collaborator

Do we need to add anything to the spec on this? It's not a technical change, but perhaps a clarification.

@ankurdotb
Copy link

I think so, yes. The current specification only has text about deactivation but not deletion (unless I've missed it)?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@ankurdotb @swcurran @brianorwhatever @Reccetech