FEP-521a: Representing actor’s public keys

by silverpill silverpill@firemail.cc submited on 2023-07-08

Summary

This proposal describes how to represent public keys associated with ActivityPub actors.

Rationale

Historically, Fediverse services used publicKey property to represent actor’s public key. Implementations usually allow only one key per actor, therefore a new approach is needed to support use cases where additional keys are required.

Furthermore, publicKey property is marked as deprecated in the latest version of Security Vocabulary.

Requirements

The key words “MUST”, “MUST NOT”, “REQUIRED”, “SHALL”, “SHALL NOT”, “SHOULD”, “SHOULD NOT”, “RECOMMENDED”, “MAY”, and “OPTIONAL” in this document are to be interpreted as described in RFC-2119.

Multikey

Actor’s key MUST be represented as an object with Multikey type and properties id, controller and publicKeyMultibase, as defined in section 2.1.1 Multikey of EdDSA Cryptosuite v2022 specification.

The value of controller property MUST match actor ID.

Key types

Implementers can use cryptographic keys of any type for which Multicodec prefix is registered.

Key purposes

If the key is intended to be used for signing ActivityPub objects, it MUST be added to the assertionMethod property of actor object.

If the key is intended to be used for authentication, it MUST be added to the authentication property of actor object.

Other use cases are currently out of scope of this proposal.

Example

{
    "@context": [
        "https://www.w3.org/ns/activitystreams",
        "https://w3id.org/security/data-integrity/v1",
        "https://w3id.org/security/multikey/v1"
    ],
    "type": "Person",
    "id": "https://server.example/users/alice",
    "inbox": "https://server.example/users/alice/inbox",
    "outbox": "https://server.example/users/alice/outbox",
    "assertionMethod": [
        {
            "id": "https://server.example/users/alice#ed25519-key",
            "type": "Multikey",
            "controller": "https://server.example/users/alice",
            "publicKeyMultibase": "z6MkrJVnaZkeFzdQyMZu1cgjg7k1pZZ6pvBQ7XJPt4swbTQ2"
        }
    ]
}

Difference between this proposal and FEP-c390

FEP-c390 describes how to link external identities to ActivityPub actor. Valid identity proof implies that actor and proof’s subject are controlled by the same entity.

This proposal describes how to represent actor’s public keys. The corresponding private keys are controlled by the server.

References

• [ActivityPub] Christine Lemmer Webber, Jessica Tallon, ActivityPub, 2018
• [Security Vocabulary] Ivan Herman, Manu Sporny, Dave Longley Security Vocabulary, 2023
• [RFC-2119] S. Bradner, Key words for use in RFCs to Indicate Requirement Levels, 1997
• [EdDSA Cryptosuite v2022] Dave Longley, Manu Sporny, EdDSA Cryptosuite v2022, 2023
• [Multicodec] Protocol Labs, Multicodec

Copyright

CC0 1.0 Universal (CC0 1.0) Public Domain Dedication

To the extent possible under law, the authors of this Fediverse Enhancement Proposal have waived all copyright and related or neighboring rights to this work.