@@ -1251,35 +1251,48 @@ <h3>Semantic Interoperability</h3>
12511251 < section >
12521252 < h2 > Terms of Use</ h2 >
12531253
1254- < p > Terms of use can be utilized by an < a > issuer</ a > , a < a > subject</ a > , or a
1255- < a > holder</ a > to constrain the use of information expressed by the Verifiable
1256- Credentials Data Model. The < a > issuer</ a > places their terms of use inside
1257- the < a > credential</ a > before it is converted into a < a > verifiable credential</ a > .
1258- The < a > holder</ a > places holder terms of use inside a < a > presentation</ a > .
1254+ < p >
1255+ Terms of use describe policy describing how a
1256+ < a > verifiable credential</ a > should be used or distributed.
1257+ For example, terms of use can be added to declare that a credential
1258+ should not be stored to a database or shared by a holder to another
1259+ entity.
1260+ </ p >
1261+
1262+ < p class ="note ">
1263+ From an information copying perspective, once information is shared
1264+ with a holder in an unconfined environment, it will always be
1265+ technically possible for that entity to share information, even
1266+ contrary to the intent expressed in the terms of use policy.
1267+ However, terms of use are still useful as an expression of what
1268+ policy participating parties are consenting to.
1269+ Well-behaving entities can use terms of use information to inform
1270+ their own behavior in regard to the information found in the
1271+ verifiable credential.
1272+ Enforcement can happen externally to an entity found in violation
1273+ of the terms of use: relationships or contracts could be severed,
1274+ trust could be lost, and in some cases legal action could be taken.
12591275 </ p >
12601276
1261- < p class ="note "> it is for further study how a subject who is not a
1262- holder places terms of
1263- use on his or her verifiable credentials. One way could be for the subject to
1264- request the issuer to place them inside the issued verifiable credentials. Another
1265- way could be by the subject delegating a verifiable credential to a holder and
1266- placing terms of use restrictions on the delegated verifiable credential.
1267- </ p >
1268- < p > The expression of
1269- terms of use may be performed via the following < a > property</ a > :
1277+ < p >
1278+ The expression of terms of use may be performed via the following
1279+ < a > property</ a > :
12701280 </ p >
12711281
12721282 < dl >
12731283 < dt > < var > termsOfUse</ var > </ dt >
1274- < dd > The value of this property MUST be one or more terms of use
1275- that tell the < a > verifier</ a > what actions it MUST perform if it is to
1276- accept the verifiable credential or verifiable presentation.
1277- If the verifier is not willing to accept these terms of use then it MUST reject
1278- the verifiable credential or verifiable presentation.
1279- Each < code > termsOfUse</ code > comprises its type,
1280- for example, < code > IssuerPolicy</ code > , and
1281- optionally its instance id. The precise contents of each term of use is
1282- determined by the specific < code > TermsOfUse</ code > type definition.
1284+ < dd >
1285+ The value of this property is one or more terms of use that tell
1286+ the < a > holder</ a > or < a > verifier</ a > what policy it should comply
1287+ with if it is to accept the verifiable credential or verifiable
1288+ presentation.
1289+ If the verifier is not willing to accept or does not understand
1290+ these terms of use or then it SHOULD reject the verifiable
1291+ credential or verifiable presentation.
1292+ Each < code > termsOfUse</ code > value MUST have a type (for example,
1293+ < code > IssuerPolicy</ code > ).
1294+ The precise contents of each term of use is determined by the
1295+ specific < code > type</ code > definition.
12831296 </ dd >
12841297 </ dl >
12851298
0 commit comments