Thanks for pointing out the potential dependencies and collisions on the horizon. As a co-author on a couple of the documents mentioned and a general media type novice, I have a couple of observations and questions.
The https://datatracker.ietf.org/doc/draft-ietf-oauth-selective-disclosure-jwt/ document does plan to request registration of a "+sd-jwt" structured syntax suffix. I believe (hope is perhaps a better word) that the draft is nearing WGLC and it could all happen this year. The https://datatracker.ietf.org/doc/draft-ietf-oauth-sd-jwt-vc/ document, which builds on the aforementioned document, plans on requesting registration of an "application/vc+sd-jwt" media type. That draft is less mature overall and not expected to be "finished" anytime soon. However, the "application/vc+sd-jwt" media type is already being used in implementations as well as downstream specifications and profiles. Would it be useful in avoidance of dependencies to request early or provisional registration of that structured syntax suffix and media type? Please forgive my ignorance of the process but is early or provisional registration even possible? On Mon, Jun 10, 2024 at 10:58 AM Orie Steele <orie@transmute.industries> wrote: > [ as an individual ] > > +sd-jwt is requested to be registered in this document: > > > https://datatracker.ietf.org/doc/html/draft-ietf-oauth-selective-disclosure-jwt-08#name-structured-syntax-suffix-re > > +cwt is requested to registered in this document: > > > https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-media-type-07#name-cwt-structured-syntax-suffi > > Both drafts are still work in progress, but for the W3C Verifiable > Credentials use case, only +sd-jwt might be relevant, since +cwt is for > claimsets that are CBOR maps where the map keys come from > https://www.iana.org/assignments/cwt/cwt.xhtml > > Based on the comments I've seen here, I would expect to see requests for > the following: > > application/vc > application/vc+jwt > application/vc+cose > application/vc+sd-jwt (depends on the draft above) > > application/vp > application/vp+jwt > application/vp+cose > application/vp+sd-jwt (depends on the draft above) > > Perhaps it is worth asking now if application/vc+sd-jwt will be rejected, > since it is currently already being requested here: > > > https://datatracker.ietf.org/doc/html/draft-ietf-oauth-sd-jwt-vc-03#name-application-vcsd-jwt > > Including OAuth for awareness. > > Regards, > > OS > > > > On Mon, Jun 10, 2024 at 10:33 AM Manu Sporny <mspo...@digitalbazaar.com> > wrote: > >> On Mon, Jun 10, 2024 at 10:22 AM Alexey Melnikov >> <alexey.melni...@isode.com> wrote: >> > Yes, I can confirm that the registration is currently denied due to >> > unclear rules about multiple structured suffixes, as well as lack of any >> > conlusion on how to proceed on the mailing list. >> >> Thank you, Alexey, much appreciated, that helps the VCWG move forward. >> >> We'll update our specs and send in another set of registrations that >> will fall more in line w/ the current accepted practices at IANA. >> >> -- manu >> >> -- >> Manu Sporny - https://www.linkedin.com/in/manusporny/ >> Founder/CEO - Digital Bazaar, Inc. >> https://www.digitalbazaar.com/ >> >> _______________________________________________ >> media-types mailing list -- media-ty...@ietf.org >> To unsubscribe send an email to media-types-le...@ietf.org >> > > > -- > > > ORIE STEELE > Chief Technology Officer > www.transmute.industries > > <https://transmute.industries> > _______________________________________________ > OAuth mailing list -- oauth@ietf.org > To unsubscribe send an email to oauth-le...@ietf.org > -- _CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited. If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you._
_______________________________________________ OAuth mailing list -- oauth@ietf.org To unsubscribe send an email to oauth-le...@ietf.org
