AccessControlPolicy (ACP) specification

[cygnusv]

{
    "version": "x.y.z",
    "publicKey": "VGhyZWUgc3F1YXJlcz8gWW91IGNhbuKAmXQgc3BhcmUgdGhyZWUgc3F1YXJlcz8=",  // base64 
    "accessCondition": {
        "version": "x.y.z",
        "condition": { ... }
    },
    "authorization": {
        "evidence": "WW91IGtub3csIEkgYWx3YXlzIHdhbnRlZCB0byBwcmV0ZW5kIEkgd2FzIGFuIGFyY2hpdGVjdC4=",  // base64 
    }   
}

(h/t to @KPrasch @derekpierre for bringing this ideas forward)

Related notes:

• MessageKit = FerveoCiphertext + ACP
• FerveoCiphertext's AAD should not include the whole ACP, but some components of it, specifically the publicKey and accessConditions
• This is not a formal specification yet, just a discussion & implementation starter.

[derekpierre]

Some outstanding questions thus far based on work done in #3194 :

• Should ritualId be included in the ACP

  • Implications here are that Enrico will need to take the ritualId as a parameter in its constructor (in addition to the public key) which is weird/redundant, UNLESS we could ask the contract for the ritual id associated with a provided public key eg. getRitualIdForPublicKey(publicKey).

• How does the authorization value here in the ACP:

"authorization": {
        "evidence": "WW91IGtub3csIEkgYWx3YXlzIHdhbnRlZCB0byBwcmV0ZW5kIEkgd2FzIGFuIGFyY2hpdGVjdC4=",  // base64 
    }  

translate into the values for evidence and digest needed for the following contract call in nucypher/nucypher-contracts#89?

    function isAuthorized(
        uint32 ritualID,
        bytes memory evidence, // signature
        bytes memory digest   // signed message hash
    ) external view returns(bool);
}

• Would we ever want to define what values were used for the AAD in the ACP? Currently we only use access_conditions, but what if we use something in addition to that. Should we have an "aad" entry in the ACP?

We could do something like this for defining what was used for the aad.

{
    "version": "x.y.z",
    "publicKey": "VGhyZWUgc3F1YXJlcz8gWW91IGNhbuKAmXQgc3BhcmUgdGhyZWUgc3F1YXJlcz8=",  // base64 
    "aad": {
        "accessCondition": {
            "version": "x.y.z",
            "condition": { ... }
        },
        ...
    },
    "authorization": {
        "evidence": "WW91IGtub3csIEkgYWx3YXlzIHdhbnRlZCB0byBwcmV0ZW5kIEkgd2FzIGFuIGFyY2hpdGVjdC4=",  // base64 
    }   
}

However, because the "aad" can include entries that are needed by other mechanisms it could lead to duplicated entries. So you could do something like:

{
    "version": "x.y.z",
    "publicKey": "VGhyZWUgc3F1YXJlcz8gWW91IGNhbuKAmXQgc3BhcmUgdGhyZWUgc3F1YXJlcz8=",  // base64 
    "accessCondition": {
        "version": "x.y.z",
        "condition": { ... }
    },
    "authorization": {
        "evidence": "WW91IGtub3csIEkgYWx3YXlzIHdhbnRlZCB0byBwcmV0ZW5kIEkgd2FzIGFuIGFyY2hpdGVjdC4=",  // base64 
    },  
    "aad": [
       // keys used for aad - conditions and public key (just as an example)
       "accessCondition",
       "publicKey"
    ]
}

Maybe... 🤷 ... ?

[cygnusv]

• Should ritualId be included in the ACP

  Implications here are that Enrico will need to take the ritualId as a parameter in its constructor (in addition to the public key) which is weird/redundant, UNLESS we could ask the contract for the ritual id associated with a provided public key eg. getRitualIdForPublicKey(publicKey).

Right, we're going to add bidirectional mappings for ritualIDs and public keys.

• How does the authorization value here in the ACP:

Great question, I just covered that here: #3050 (comment)

• Would we ever want to define what values were used for the AAD in the ACP? Currently we only use access_conditions, but what if we use something in addition to that. Should we have an "aad" entry in the ACP?

Good question too. I think we want to keep it as simple and reduced as possible. The original intention was to use the AAD to bind a ciphertext to conditions, nothing more. So I'd leave as what we defined a couple of weeks ago, which is the access conditions and, if we want, the public key (but this would be redundant, and I'd lean towards not include it).

[derekpierre]

Great question, I just covered that here: #3050 (comment)

👍 so it could look something like this - 6de67f1. Of course at the moment I'm just generalizing "ciphertext" since there isn't any "thin ciphertext" available currently.

[cygnusv]

From recent discussions:

• Let's not add the aad field to the ACP, and instead, the logic for what's used as AAD is version-dependent.
• For the first version, the aad is the conditions and the public key.

[derekpierre]

Closed via:

• ACP/ThresholdMessageKit Work nucypher-core#74
• AccessControlPolicy (ACP) and ThresholdMessageKit #3194