publicly-verifiable macaroon implementations?
90 views
Skip to first unread message
Jason Axley
Aug 2, 2019, 4:05:37 PM8/2/19
to Macaroons
Has anyone implemented the publicly-verifiable macaroon approach documented in the original paper?
Or something similar for macaroons? Perhaps in a custom implementation or as part of the future tokens work?
-Jason
Tony Arcieri
Aug 2, 2019, 4:34:08 PM8/2/19
to maca...@googlegroups.com
If you're talking about the public key variants which are based on static Diffie-Hellman keys, I don't know of any public implementations of this offhand. This approach is nice in that it affords a public key extension of Macaroons with verification that is still fully symmetric.
On the other hand, if you're talking about Macaroon-like credentials based on digital signatures (ala Vanadium Authorization), Biscuit is probably the closest thing.
--
You received this message because you are subscribed to the Google Groups "Macaroons" group.
To unsubscribe from this group and stop receiving emails from it, send an email to macaroons+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/macaroons/a42efeca-b4eb-4120-b52f-389210dd0974%40googlegroups.com.
Tony Arcieri
Cameron Sajedi
Aug 3, 2019, 8:25:46 PM8/3/19
to maca...@googlegroups.com
Not to derail this thread, but after reading it I was intrigued by Biscuit. However due to the commonality of the word my Google-fu has failed me. @Tony can you share a link or provide me with a breadcrumb to find out more?
Much appreciated.
Cameron Sajedi
To view this discussion on the web visit https://groups.google.com/d/msgid/macaroons/CAHOTMVJO21Cro4JKQ4uJRhxQgX3y_ZJRn%2BACjsdZo471HY9AXw%40mail.gmail.com.
Evan Cordell
Aug 4, 2019, 8:35:14 AM8/4/19
to maca...@googlegroups.com
I implemented publicly-verifiable macaroons here:
It’s probably not something you should use, but I tried to make it readable.
And I think Tony was referring to:
To view this discussion on the web visit https://groups.google.com/d/msgid/macaroons/CAAFYv0g2p7DDcnc9KNgYaYORqJVrVkzUyc%3D2Y3UM-4oPDpPUTw%40mail.gmail.com.
Evan Cordell
Cameron Sajedi
Aug 5, 2019, 11:00:41 AM8/5/19
to maca...@googlegroups.com
Evan,
I've been exploring how to use Macaroons in a decentralized p2p system outside the cloud (ex Bitcoin, Bittorent) and I realize that there are some limitations stemming from the trust model that designed macaroons. Biscuit is a cool addition, so is watchstander. I don't think either will achieve what I want on their own, but studying them has already led to a better understanding of my problem space.
Thanks for the clarifications.
Cameron
To view this discussion on the web visit https://groups.google.com/d/msgid/macaroons/CAEfywoE-J9V7B1CJDqDqgpu1xmsV7WSsy7ewe1jiPNVfEuXZRA%40mail.gmail.com.
Tony Arcieri
Aug 5, 2019, 11:23:17 AM8/5/19
to maca...@googlegroups.com
Definitely look into Vanadium: it's something a bit closer to SPKI/SDSI, based on public-key cryptography, and created by some of the same people as Macaroons (e.g. Ankur Taly)
To view this discussion on the web visit https://groups.google.com/d/msgid/macaroons/CAAFYv0gxuhJOag%2BKmkVUrYoPfmQVrO0DM0D-kB1czcSdh8e%2BBQ%40mail.gmail.com.
Tony Arcieri
Reply all
Reply to author
Forward
0 new messages