Skip to content

Commit

Permalink
Clean up some subject/holder markup in status message section.
Browse files Browse the repository at this point in the history
  • Loading branch information
@msporny
msporny committed Mar 30, 2024
1 parent a288b7e commit 837e500
Showing 1 changed file with 14 additions and 14 deletions.
28 changes: 14 additions & 14 deletions index.html
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1253,23 +1253,23 @@ <h3>Alteration of Status Messages</h3>
</p>

<p>
This feature creates a potential privacy violation where a <a>holder</a> or
<a>subject</a> of the
<a>verifiable credential</a> might be associated with additional status
information that was not present when the original <a>verifiable credential</a>
was issued. For example, initial status messages might convey "delayed" and
"canceled", but additional status messages might be added by the <a>issuer</a>
to convey "delayed due to non-payment" and "canceled due to illegal activity".
This change would not be apparent to the <a>holder</a> unless there was
monitoring software operating on their behalf that would warn them that
the <a>issuer</a> intends to expose additional information about their activity.
This feature creates a potential privacy violation where the
<a>subject</a> or <a>holder</a> of the <a>verifiable credential</a> might be
associated with additional status information that was not present when the
original <a>verifiable credential</a> was issued. For example, initial status
messages might convey "delayed" and "canceled", but additional status messages
might be added by the <a>issuer</a> to convey "delayed due to non-payment" and
"canceled due to illegal activity". This change would not be apparent to the
<a>subject</a> or <a>holder</a> unless there was monitoring software operating
on their behalf that would warn them that the <a>issuer</a> intends to expose
additional information about their activity.
</p>

<p>
Holder software can provide features to <a>holders</a> that warn them about
the level of <a>holder</a> and/or <a>subject</a> information exposure when using <a>verifiable credentials</a>
that are associated with status messages, and warn them when the level of
information exposure changes.
Holder software can provide features to <a>holders</a> that warn them about the
level of <a>holder</a> and/or <a>subject</a> information exposure when using
<a>verifiable credentials</a> that are associated with status messages, and warn
them when the level of information exposure changes.
</p>
</section>

Expand Down

0 comments on commit 837e500

Please sign in to comment.