Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Should the OBv3 Data model and Badges API be in the same specification? #499

Closed
jischr opened this issue Nov 18, 2022 · 3 comments
Closed

Should the OBv3 Data model and Badges API be in the same specification? #499

jischr opened this issue Nov 18, 2022 · 3 comments
Labels
3p0

Comments

@jischr
Copy link
Contributor

jischr commented Nov 18, 2022
edited
Loading

I created this issue to start a conversation about the unnecessary coupling of OB3 Data Model and Badges API in the same specification. Specifically, in order to achieve OBv3 conformance, the Badges API needs to be implemented:
https://imsglobal.org/spec/ob/v3p0/draft#conformance-and-certification-guide

There should be a path to OBv3 conformance without the Badges API as forcing the Badges API will decrease OBv3 adoption. An implementer may want to use their existing methods for Verifiable Credential issuance/verification (such as OpenID4VC (#493) or DIDComm (https://identity.foundation/didcomm-messaging/spec/) or the vc api (https://w3c-ccg.github.io/vc-api/) but issue badges as VCs.

How can we change / adjust OBv3 conformance to support these implementations?
@jischr jischr changed the title Should the OB3 Data model and Badges API be in the same specification? Should the OBv3 Data model and Badges API be in the same specification? Nov 18, 2022
@kayaelle
Copy link
Contributor

+1 to this suggestion. One of the primary reasons for the proposal of the OBv3 charter was interoperability with other credentials that will be issued as VCs to applications that understand VCs.

VC wallets could decide to also operate as backpacks and accept Open Badges 2.0 using the 2.1 badgeconnect API but those badges will not have the same functionality as VCs since they won't be aligned with that model. Open Badges 3.0 are VCs and should work like VCs, not have their own proprietary API. Apps operating as backpacks could add VC protocols that @jischr listed above and serve as VC wallets.

VC verifiers will be expecting Open Badges 3.0 to be presented using VC protocols that require cryptographic methodologies that BadgeConnect does not provide. And essentially, the VC protocols & wallet apps replace the concept of federated backpacks since the standards and protocols make it possible for holders to move their data from one to another already.

@xaviaracil xaviaracil added the 3p0 label Nov 21, 2022
@xaviaracil
Copy link
Collaborator

Initial conformance and certification requirements describes three types of certification:

  • Issuer: issues and sends OBv3 credentials.
  • Displayer: displays and verifies OBv3 credentials.
  • Host: import / export and receive / send OBv3 credentials.

Currently, only Issuer and Host require to conform to some of (or all) the OBv3 API.

One possibilty is to make the API conformance of Issuer optional, so it's not required for certification. Another option is to split Issuer in two, moving the API conformance to a new type of certification. We can also move this API conformance to the Host certification type.

Let's see what the working group have to say.

@xaviaracil
Copy link
Collaborator

API conformance is optional in the Issuer certification.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
3p0
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@xaviaracil @kayaelle @jischr