docs: Layer 1 — HPKE-sealed vouch grants via bio post
Replace DM-wrapped VouchGrant with HPKE (RFC 9180) per-recipient wrappers in the voucher's bio post. Recipient anonymity via HPKE key privacy; readers trial-decrypt per persona. 48B per wrapper, one ephemeral pubkey per batch. Scan gated to follows + manual gesture. Bucket padding + per-publish shuffle for size/position opacity. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
Scott Reimers
parent
1fdf9a94cc
commit
b8b38a6f03
3 changed files with 209 additions and 58 deletions
30
sessions.md
30
sessions.md
|
|
@ -6,6 +6,36 @@ See `CONTRIBUTING.md` for the protocol. See `AGENTS.md` for the Claude-specific
|
|||
|
||||
---
|
||||
|
||||
## 2026-04-24 — primary Claude (Lead) — `docs/fof-spec-layer1-bio-grants`
|
||||
|
||||
**Started**: April 24 UTC
|
||||
**Instance**: Scott's primary Claude (Lead)
|
||||
**Issue**: none (spec refinement)
|
||||
**Branch**: `docs/fof-spec-layer1-bio-grants`
|
||||
**Scope**: Fold Scott + Opus's Layer 1 design answer into the spec. Vouch distribution moves from DM-wrapped `VouchGrant` to HPKE-sealed per-recipient wrappers carried in the voucher's bio post, leveraging existing bio-post CDN propagation and HPKE (RFC 9180) key privacy for recipient anonymity.
|
||||
|
||||
**Key design commitments added to Layer 1**:
|
||||
- HPKE RFC 9180 (DHKEM X25519 + HKDF-SHA256 + ChaCha20Poly1305) for per-recipient wrappers; one ephemeral pubkey per batch; 48B per wrapper.
|
||||
- HKDF `info = "itsgoin/vouch-grant/v1/" || bio_post_id` — recipient-free (non-negotiable for key privacy).
|
||||
- No prefilter tag on grants (no prior shared secret); full X25519 trial at ~60µs per wrapper per persona is tolerable (≤90ms even at 512×3 worst case).
|
||||
- Scan policy: auto-scan bio posts of followed personas; manual "check bio" gesture for non-followed; scan cache keyed by `(scanner_persona, bio_author, bio_epoch)`.
|
||||
- Bucket-padding (64/128/256/512) and per-publish wrapper shuffle for size/position opacity.
|
||||
- No separate `vouches_issued` table on the wire; bio post IS the authoritative record. Local-only `own_vouch_targets` tracks what the persona has granted.
|
||||
- Incremental grant-as-comment path (Scott's suggestion for avoiding full republish) deferred; v1 ships with full republish per change.
|
||||
|
||||
**Completed**:
|
||||
- Rewrote `docs/fof-spec/layer-1-vouch-primitive.md` end-to-end.
|
||||
- README updated: Layer 1 scope line + added bio-post integration bullet.
|
||||
- Self-merged to master.
|
||||
|
||||
**Pending**:
|
||||
- Opus confirmation passes still open on other layers (WrapSlot byte layout, AEAD choice for body, padding schemes).
|
||||
- Layer 2–6 untouched in this pass.
|
||||
|
||||
**Stopping point**: merged to master; branch deleted.
|
||||
|
||||
---
|
||||
|
||||
## 2026-04-23 — primary Claude (Lead) — `docs/fof-spec-skeleton`
|
||||
|
||||
**Started**: late April 23 UTC
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue