Skip to content
This repository has been archived by the owner on Mar 27, 2024. It is now read-only.

SD-JWT: Add Decoy Disclosures #3463

Closed
sandrask opened this issue Jan 6, 2023 · 0 comments · Fixed by #3466
Closed

SD-JWT: Add Decoy Disclosures #3463

sandrask opened this issue Jan 6, 2023 · 0 comments · Fixed by #3466
Assignees
@sandrask
Labels
enhancement New feature or request
Milestone
0.1.7

Comments

@sandrask
Copy link
Contributor

sandrask commented Jan 6, 2023

From: https://drafts.oauth.net/oauth-selective-disclosure-jwt/draft-ietf-oauth-selective-disclosure-jwt.html#name-decoy-digests

An Issuer MAY add additional digests to the SD-JWT that are not associated with any claim. The purpose of such "decoy" digests is to make it more difficult for an attacker to see the original number of claims contained in the SD-JWT. It is RECOMMENDED to create the decoy digests by hashing over a cryptographically secure random number. The bytes of the digest MUST then be base64url-encoded as above. The same digest function as for the Disclosures MUST be used.

For decoy digests, no Disclosure is sent to the Holder, i.e., the Holder will see digests that do not correspond to any Disclosure. See Section 9.2 for additional privacy considerations.
@sandrask sandrask self-assigned this Jan 6, 2023
@sandrask sandrask added the enhancement New feature or request label Jan 6, 2023
@sandrask sandrask added this to Aries Go Jan 6, 2023
@sandrask sandrask added this to the 0.1.7 milestone Jan 6, 2023
@sandrask sandrask moved this to In Progress in Aries Go Jan 6, 2023
sandrask added a commit to sandrask/aries-framework-go that referenced this issue Jan 9, 2023
@sandrask
feat: Add decoy digests to SD-JWT
a1bb1e1 
Add decoy digests to SD-JWT (if enabled)

Closes hyperledger-archives#3463

Signed-off-by: Sandra Vrtikapa <[email protected]>
sandrask added a commit to sandrask/aries-framework-go that referenced this issue Jan 9, 2023
@sandrask
feat: Add decoy digests to SD-JWT
da4c9b1 
Add decoy digests to SD-JWT (if enabled)

Closes hyperledger-archives#3463

Signed-off-by: Sandra Vrtikapa <[email protected]>
sandrask added a commit to sandrask/aries-framework-go that referenced this issue Jan 9, 2023
@sandrask
feat: Add decoy digests to SD-JWT
547385a 
Add decoy digests to SD-JWT (if enabled)

Closes hyperledger-archives#3463

Signed-off-by: Sandra Vrtikapa <[email protected]>
sandrask added a commit to sandrask/aries-framework-go that referenced this issue Jan 9, 2023
@sandrask
feat: Add decoy digests to SD-JWT
08b5d50 
Add decoy digests to SD-JWT (if enabled)

Closes hyperledger-archives#3463

Signed-off-by: Sandra Vrtikapa <[email protected]>
@sandrask sandrask mentioned this issue Jan 9, 2023
Merged
fqutishat pushed a commit that referenced this issue Jan 9, 2023
@sandrask
feat: Add decoy digests to SD-JWT (#3466)
e6c87c5 
Add decoy digests to SD-JWT (if enabled)

Closes #3463

Signed-off-by: Sandra Vrtikapa <[email protected]>

Signed-off-by: Sandra Vrtikapa <[email protected]>
@github-project-automation github-project-automation bot moved this from In Progress to Done in Aries Go Jan 9, 2023
@sandrask sandrask mentioned this issue Jan 9, 2023
Open
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@sandrask sandrask

Labels
enhancement New feature or request
Milestone
0.1.7
Development

Successfully merging a pull request may close this issue.

feat: Add decoy digests to SD-JWT sandrask/aries-framework-go
1 participant
@sandrask