Section 4.3 should be improved to suggest utilization of OHTTP to prevent correlation #80
Comments
msporny
added
the
during-CR
|
I understand the preference for OHTTP, but |
|
Just a non-normative reference in a privacy considerations section is all I had in mind since I believe those sections are non-normative anyways. I agree that this definitely should not be a normative requirement. In fact, OHTTP is just one way to solve this problem of preventing correlation. Other options are to use a simple proxy service with a trusted intermediary. For example, instead of a wallet calling directly to the status list it calls to a wallets backend proxy service which fetches the content on behalf of the wallet. This aligns pretty well with the trust boundaries of the wallet service anyways so there's in theory nothing wrong with that approach. If we did normatively require this that seems bad right now anyways. That effectively means everyone has to use privacy gateway since AFAIK they're the only company offering the intermediary service so far. I believe Apple offers it as well to only apple customers via private relay service too. Hopefully in the future all of the big CDNs and cloud providers will also use this to prevent IP correlation more regularly. |
|
This issue should be closed, the PR was merged. The current text contradicts the JWT BCP. |
|
PR #107 has been merged, closing. |
While content networks can be useful there's an inherent trust on the third party CDN to behave and not provide access to the information. Now that OHTTP is more mature, resolution should be encouraged over an OHTTP channel to prevent linking the verifier of the list to an IP address. This prevents correlation of the IP address to the resolution of the credential improving privacy.
https://ietf-wg-ohai.github.io/oblivious-http/draft-ietf-ohai-ohttp.html
The text was updated successfully, but these errors were encountered: