Comment by myrion

3 days ago

There's no dynamic analysis done, necessarily. In the Swiss design, fex, SD-JWTs are used for selective disclosure. For those, any information that you can disclose is pre-hashed and included in the signed credential. So `over_18: true` is provided as one of those hashes and I just show this to the verifier.

The verifier gets no other information than the strictly necessary (issuer, expiry, that kind of thing) and the over 18 bit, but can trust that it's from a real credential.

That's not strictly a zero knowledge proof based system, though, but it is prvacy-preserving.

3 comments

myrion

Reply
phanimahesh  3 days ago

The issuer knows everything and can help track if the wish to. The issue here is lack of trust in any corporate or government entity.

  • myrion  2 days ago

    Well, yes, if they use something completely different to what's published and designed.

    But no, we're not talking about the case where there's no trust at all in the government, because then you don't get verifiable credentials at all. We're talking about building privacy-preserving credentials that actually have a use.