Comments (7)
jandrieu
commented on May 29, 2024
Another use case for issuer's TOS, from the mailing list:
Claimants present claims. That's simple. Authentication, delegation, and proving right to use, are external to the claim.
There is one exception that I can see, where an issuer includes a TOS clause that explicitly affords the right to be a claimant to a specific entity--which may or may not be the subject. In fact, I think that's a fairly useful TOS: this claim only applicable when presented by the subject as authenticated by procedure X.
from vc-data-model.
David-Chadwick
commented on May 29, 2024
I see two different 'terms of use'. The first is the policy of the issuer. This states the restrictions on the use of the VC by the subject, and the inspector should honour this policy. If the inspector disregards this policy then the issuer will take no responsibility for this i.e. the risk from use of the VC is entirely upon the inspector.
The second 'terms of use' is that of the holder when he/she presents the VC to the inspector. An example might be 'I want you to use my address in the VC in order to post me the item that I have just purchased but not to subsequently send me any marketing literature or other junk mail'.
This latter terms of use probably does not need to be in the VC, and could be in the protocol between the holder and the inspector
from vc-data-model.
riannella
commented on May 29, 2024
Hi all, have you looked at:
ODRL Information Model https://www.w3.org/TR/odrl-model/
ODRL Vocabulary & Expression https://www.w3.org/TR/odrl-vocab/
(now entering CR)
The POE WG (listed on your Charter under Liaisons) would be happy to chat more and look into the use case(s) ;-)
from vc-data-model.
msporny
commented on May 29, 2024
@riannella Would you be able to join the VCWG to give a background on POE and ODRL and how we may be able to use it to express things like "consent", "terms of use", and "policy" for Verifiable Credentials?
from vc-data-model.
riannella
commented on May 29, 2024
Yes, that would be fine. What times is the VCWG call? (I am in Brisbane, AU) #41
from vc-data-model.
David-Chadwick
commented on May 29, 2024
I think this issue can be closed now since we have a terms of use section in the latest VC Data Model document
from vc-data-model.
msporny
commented on May 29, 2024
Closing, per @David-Chadwick's observation. We will continue to discuss exactly how to express terms of use using ODRL in another issue.
from vc-data-model.
Related Issues (20)
- Specify that it is important to validate the `issuer` value HOT 8
- Specify what kind of processing is safe on a returned document HOT 21
- Ensure `credentialStatus` `id` field is optional HOT 5
- Verifying a VC should return the same credential regardless of the verification method HOT 3
- Clarify embedded proof extension point HOT 3
- phrasing and/or punctuation for input "inputBytes or inputDocument and inputMediaType" needs work HOT 4
- reconsider `@id` for `mediaType` term HOT 17
- Does the specification need a normative "Credential Type Specifications" section? HOT 5
- (editorial) "bitstring" vs "bit string" HOT 1
- `Type-Specific Credential Processing` is better phrasing than `Credential Type-Specific Processing` HOT 2
- Backtick characters in Internationalization / Language examples HOT 2
- typo in Terms of Use HOT 2
- Support of SHACL Schema in Version 2.0 HOT 4
- "โฆ" as a term name in the context file? HOT 2
- Unnecessary direction attribute? HOT 12
- EnvelopedVerifiablePresentation missing in data model HOT 5
- first example contains an http url identifying a credential HOT 5
- Remove at risk issue markers for property extension points. HOT 1
- What does the hash values in ยงB.2 mean? HOT 4
- Proposal: remove ambiguity and asymmetry as it relates to subject identifiers HOT 7
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from vc-data-model.