Clarifying “Verifiable”
Apparently Ian Grigg is troubled by the word.
Mind you, Ben claims that x.509 is not suitable because “standard X.509 statements are verifiable, but not minimal nor unlinkable.” I’m troubled by that word “verifiable.” Either an x.509 cert points to somewhere else and therefore it in itself is not verifiable, just a reliable pointer to somewhere else, or the somewhere else is included in which case we are no longer talking about x.509.
By “verifiable” I mean you can check the signature, nothing deeper.