An interesting capability use case
0 views
Skip to first unread message
Alan Karp
Nov 25, 2025, 1:19:59 PM (2 days ago) Nov 25
to <friam@googlegroups.com>, cap-...@googlegroups.com
I'm reviewing https://github.com/ngallo/dif-notes/blob/main/work-items/2025-11-25-did-based-trust-chain-concept.md, which presents a use case I don't think we've covered in our discussions. It involves a break in the delegation chain.
Say that Alice sends a message via a broker, such as Kafka. She doesn't know who will pick up the message but wants to delegate to whatever entity does. She could delegate to the broker and have the broker delegate, but that's giving the broker permissions it doesn't need.
Have any of you implemented something like this use case?
--------------
Alan Karp
Mike Stay
Nov 25, 2025, 2:20:26 PM (2 days ago) Nov 25
to fr...@googlegroups.com, cap-...@googlegroups.com
On Tue, Nov 25, 2025 at 11:19 AM Alan Karp <alan...@gmail.com> wrote:
>
> I'm reviewing https://github.com/ngallo/dif-notes/blob/main/work-items/2025-11-25-did-based-trust-chain-concept.md, which presents a use case I don't think we've covered in our discussions. It involves a break in the delegation chain.
>
> Say that Alice sends a message via a broker, such as Kafka. She doesn't know who will pick up the message but wants to delegate to whatever entity does. She could delegate to the broker and have the broker delegate, but that's giving the broker permissions it doesn't need.
If anyone can pick it up, it might be that the broker picks it up. So
>
> I'm reviewing https://github.com/ngallo/dif-notes/blob/main/work-items/2025-11-25-did-based-trust-chain-concept.md, which presents a use case I don't think we've covered in our discussions. It involves a break in the delegation chain.
>
> Say that Alice sends a message via a broker, such as Kafka. She doesn't know who will pick up the message but wants to delegate to whatever entity does. She could delegate to the broker and have the broker delegate, but that's giving the broker permissions it doesn't need.
in a sense she's already delegating to the broker.
I guess Alice could restrict that with some kind of rights
amplification pattern where she has delegated an unsealer to some set
of potential receivers not including the broker, and only these can
open her message to get the authority.
>
> Have any of you implemented something like this use case?
>
> --------------
> Alan Karp
>
> You received this message because you are subscribed to the Google Groups "friam" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to friam+un...@googlegroups.com.
> To view this discussion visit https://groups.google.com/d/msgid/friam/CANpA1Z2%3D_Hs99sMA57%3DXcy65wsGgNxhR3bxW__c%3Dx7BD_vyMfA%40mail.gmail.com.
--
Mike Stay - meta...@gmail.com
https://math.ucr.edu/~mike
https://reperiendi.wordpress.com
Reply all
Reply to author
Forward
0 new messages