[OpenID-Specs-eKYC-IDA] Issue #1218: Match by hashed value (openid/ekyc-ida)
Kosuke Koiwai
issues-reply at bitbucket.org
Tue Oct 27 09:26:05 UTC 2020
New issue 1218: Match by hashed value
https://bitbucket.org/openid/ekyc-ida/issues/1218/match-by-hashed-value
Kosuke Koiwai:
The following issue was raised during a discussion at OIDF-Japan WG.
An IdP in Japan provides KYC services with “fill-in” \(IdP provides claims\) API and “match” \(RP gives values and IdP returns just true/false\) API in their menu.
There are effort going on by Alberto to provide conditional claims in #1186, but machino of a few generic claims \(name, birthdate, etc\) can be included to the ekyc core spec as well as age verification claims \(#1172\) if a wide range of IdP is willing to provide “match” functions.
Also, there was an occasion where both IdP and RP were reluctant to provide their customer data to the other party, and they wanted to conduct matching through hashed values.
MobileConnect already has specs to mach by hashed values.
[https://developer.mobileconnect.io/kyc-claims](https://developer.mobileconnect.io/kyc-claims)
Although prone to brute-forth attack of the hashed data, I think it is still worth considering together.
More information about the Openid-specs-ekyc-ida
mailing list