Update Procedures related to Optional Features #182
Conversation
| @@ -878,7 +878,7 @@ <h4>createDisclosureData</h4> | |||
| </li> | |||
| <li> | |||
| If |featureOption| equals `"anonymous_holder_binding"`, | |||
| set `bbsProof` to the value computed by the `ProofGen` procedure from | |||
| set `bbsProof` to the value computed by the `BlindProofGen` procedure from | |||
There was a problem hiding this comment.
There's an inconsistency here between referring to the function name from the appropriate BBS spec or referring to the title of the procedure section in that spec. Here we use the function name (BlindProofGen) and below we use the section title Calculate Pseudonym and Hidden PID Proof Generation with Pseudonym. We should pick one of these and me consistent.
There was a problem hiding this comment.
@dlongley yes, when the draft IETF specs didn't have a function name (pseudonym signing) I used section names. Then I dropped the parenthesis after function names, i.e., BlindProofGen() is actually a function that is defined. Ideas/preferences for consistency?
There was a problem hiding this comment.
I think I'd prefer the function name (and the parenthesis can be omitted) because it's shorter and more specific for implementers. I can live with full titles as well if people want that.
There was a problem hiding this comment.
Bumping on this -- it can be handled in another PR if necessary, but we should get consistency at some point.
There was a problem hiding this comment.
Consistency is good. Clarity is better.
Is BlindProofGen a function or a procedure?
Is Calculate Pseudonym a procedure or a function?
I believe I've seen both procedures and functions (elsewhere) named with Pascal case. I think I've only seen multi-word names on procedures, not functions.
I think including the () helps clarify that the thing being discussed is a function, as I don't think I've ever seen a () suffix on a procedure name.
All of which to say — I would prefer to keep the () and use Pascal- or camel-case to name functions, and to use multi-word names for procedures, and to always be explicit about function calls vs procedure runs.
There was a problem hiding this comment.
@Wind4Greg have @TallTed's issues been addressed? I'd like to merge this PR, but not until we've addressed @TallTed's concerns.
There was a problem hiding this comment.
There was a problem hiding this comment.
We need to be consistent with what we call these things. As someone not familiar with some of this new text, I'd question what the difference is between a "function" and a "procedure". I'd be worried that I am missing something important when seeing those words if they're used interchangeably. IOW, we should pick one and be consistent in its usage. I suggest we use the word "algorithm" throughout all of the specifications as I believe that's what we do throughout the other specifications.
I try to avoid the use of the word "function" because some developers believe it to be referring to a software library call.
I avoid the word "procedure" because readers believe it's a loosely defined set of tasks where the implementation details are unimportant.
I use the word algorithm because it doesn't have the same connotations as "function" nor "procedure" -- it is more abstract than a function but less abstract than a procedure.
Can we update ALL of the references to refer to "algorithms" and NOT use the () notation because that implies a concrete function (which the IETF specifications are not).
index.html
Outdated
| @@ -953,7 +958,7 @@ <h4>createDisclosureData</h4> | |||
| </li> | |||
| <li> | |||
| Return an object with properties matching |bbsProof|, "verifierLabelMap" for |labelMap|, | |||
| |mandatoryIndexes|, |selectiveIndexes|, |revealDocument|, and |pseudonym|, if | |||
| |mandatoryIndexes|, |selectiveIndexes|, |revealDocument|, |pseudonym|, and |L| if | |||
There was a problem hiding this comment.
We should use a better semantic name than L even if we want to say that it maps to L in a low-level BBS spec. The letter L itself can be confused with other symbols -- but at least this is less likely with an upper-case L.
There was a problem hiding this comment.
Hi @dlongley, L is the number of issuer signed BBS messages. Or in W3C VC-DI-BBS speak the number of non-mandatory n-quads. When working with Blind BBS and Pseudonym BBS proofs (W3C derived proofs) this is a new parameter that is needed during verification since we separated out the "group generators" for the blinded (holder) messages from the issuer messages to simplify indexing and to unify pseudonym proof verification. I'll take any suggestions for naming!
index.html
Outdated
| |bbsProof|, |compressedLabelMap|, |mandatoryIndexes|, |selectiveIndexes|, | ||
| |presentationHeader|, and |pseudonym|. | ||
| |presentationHeader| and |L|. |
There was a problem hiding this comment.
I see this changed from pseudonym to L ... I'm not checking this closely right now, but will do so during implementation.
There was a problem hiding this comment.
@dlongley both anonymous holder binding and pseudonyms features need the L parameter now. Pseudonyms still need pseudonyms ;-).
|
@TallTed (and @dlongley ) I updated to replace the L variable name with lengthBBSMessages and cleaned up its usage in the procedures related to verification. Note that the Anonymous Holder Binding feature needs the lengthBBSMessages (L) parameter, while both pseudonym features need the pseudonym and lengthBBSMessages (L) parameters. Hopefully I've gotten the conjunctions right for this. |
|
@TallTed and @dlongley I discovered an off by one error while updating on the optional feature test vectors. I put in a fix here. So asking for a re-review to be formal about things. Cheers @Wind4Greg |
|
Hi @dlongley and @TallTed, I added the updates test vectors to the optional features to this PR since it hasn't been merged yet and it would have been confusing to attach them elsewhere. Hence to keep our procedures sound I'm asking for a re-review. No text has been changed only the JSON test vector files that are imported via ReSpec. |
There was a problem hiding this comment.
Approving the additions with the same caveat that I haven't fully updated DB's implementation yet to run against them; I will do so in the near future and hopefully confirm interoperability. I bumped another comment around consistency in how we reference core BBS primitives that we will want to address at some point.
| @@ -878,7 +878,7 @@ <h4>createDisclosureData</h4> | |||
| </li> | |||
| <li> | |||
| If |featureOption| equals `"anonymous_holder_binding"`, | |||
| set `bbsProof` to the value computed by the `ProofGen` procedure from | |||
| set `bbsProof` to the value computed by the `BlindProofGen` procedure from | |||
There was a problem hiding this comment.
Bumping on this -- it can be handled in another PR if necessary, but we should get consistency at some point.
| @@ -878,7 +878,7 @@ <h4>createDisclosureData</h4> | |||
| </li> | |||
| <li> | |||
| If |featureOption| equals `"anonymous_holder_binding"`, | |||
| set `bbsProof` to the value computed by the `ProofGen` procedure from | |||
| set `bbsProof` to the value computed by the `BlindProofGen` procedure from | |||
There was a problem hiding this comment.
We need to be consistent with what we call these things. As someone not familiar with some of this new text, I'd question what the difference is between a "function" and a "procedure". I'd be worried that I am missing something important when seeing those words if they're used interchangeably. IOW, we should pick one and be consistent in its usage. I suggest we use the word "algorithm" throughout all of the specifications as I believe that's what we do throughout the other specifications.
I try to avoid the use of the word "function" because some developers believe it to be referring to a software library call.
I avoid the word "procedure" because readers believe it's a loosely defined set of tasks where the implementation details are unimportant.
I use the word algorithm because it doesn't have the same connotations as "function" nor "procedure" -- it is more abstract than a function but less abstract than a procedure.
Can we update ALL of the references to refer to "algorithms" and NOT use the () notation because that implies a concrete function (which the IETF specifications are not).
…on improvements. Co-authored-by: Ted Thibodeau Jr <[email protected]>
…age in verify derived proof procedures.
…on improvements. Co-authored-by: Ted Thibodeau Jr <[email protected]>
Co-authored-by: Ted Thibodeau Jr <[email protected]>
msporny
force-pushed
the
update-feature-procedures
branch
from
482fd48 to
b6e2835
Compare
|
Normative, multiple reviews, changes requested and made, no objections, merging. |
This PR addresses issue #180. In particular it takes into account the updated APIs/procedures in the drafts:
Sections 3.4.5 Base Proof Serialization (bbs-2023), 3.4.6 Add Derived Proof (bbs-2023), 3.4.7 Verify Derived Proof (bbs-2023) and some of their sub-procedures have been updated to use the the new APIs from these drafts. Importantly the two different flavors of pseudonyms now have a unified proof verification procedure which has resulted in simplified processing.
Preview | Diff