← Back to context

Comment by ignoramous

1 year ago

> > Privacy Pass in fact doesn't make sense outside of an anonymizing transport

> This kind of thinking is pervasive in the discussion of privacy enhancing technologies

It is in RFC.

  Origin-Client, Issuer-Client, and Attester-Origin unlinkability requires that issuance and redemption events be separated over time, such as through the use of tokens that correspond to token challenges with an empty redemption context (see Section 3.4), or that they be separated over space, such as through the use of an anonymizing service when connecting to the Origin.

https://datatracker.ietf.org/doc/html/rfc9576

0 comments

ignoramous

Reply