Sender Initiated Reference ID Exchange (#186)

sunmilee · web-flow · commit fb6e9d222081 · 2021-06-25T16:37:51.000-07:00
* Sender Initiated Reference ID Exchange

* Address comments

* Rename reference ID objects

* More details on ref ID uniqueness

* Link fixes
diff --git a/dips/dip-183.md b/dips/dip-183.md
@@ -0,0 +1,104 @@
+---
+dip: 183
+title: Sender Initiated Reference ID Exchange
+authors: Sunmi Lee (@sunmilee), David Wolinsky (@davidiw)
+status: Draft
+type: Informational
+created: 06/08/2021
+last_updated: 06/08/2021
+issue: https://github.com/diem/dip/issues/183
+---
+
+import useBaseUrl from '@docusaurus/useBaseUrl';
+
+# Summary
+
+This DIP describes a protocol standard for sender initialized pre-flight exchange using reference IDs to form payment transactions.
+
+A reference ID is used as a unique identifier for an on-chain peer-to-peer transaction between VASPs without revealing on-chain any information about the peers involved.
+In this protocol, the sender already knows the recipient VASP address and an identifier for the recipient at their VASP. The sender VASP contacts the recipient VASP and shares the sender's identifier, a reference ID, and the recipient's identifier.
+In response, the receiver VASP shares its on-chain account as the destination for the transaction.
+Upon receiving the receiver's on-chain account, the sender VASP transmits to the blockchain a transaction with the reference ID, completing the protocol without revealing any potentially identifiable user information of either the sender or receiver on-chain.
+
+Reference IDs are unique between a pair of VASPs, `VASP A` and `VASP B`,  so if a reference ID `r` was used in a previous transaction between the two VASPs, regardless of which one initiated it, `r` cannot be reused for any future transactions between `VASP A` and `VASP B`. 
+However, the same `r` value can be used between a different VASP pair, `VASP A` and `VASP C`. VASPs may choose to keep reference IDs globally unique across all VASPs as well. 
+
+# Off-Chain Preflight Protocol
+The sender VASP initiates the off-chain preflight with the command, following the off-chain protocol conventions defined in [DIP-1](https://github.com/diem/dip/blob/main/dips/dip-1.mdx):
+
+```
+{
+   "_ObjectType": "CommandRequestObject",
+    "command_type": "SenderInitiatedReferenceIDExchange",
+    "command": {
+	    "_ObjectType": "SenderInitiatedReferenceIDExchange",
+	    "sender": "alice",
+	    "sender_address": "dm1pptdxvfjck4jyw3rkfnm2mnd2t5qqqqqqqqqqqqq305frg",
+	    "receiver": "bob",
+	    "reference_id": "5b8403c9-86f5-3fe0-7230-1fe950d030cb", 
+    },
+    "cid": "12ce83f6-6d18-0d6e-08b6-c00fdbbf085a",
+}
+```
+
+**CommandRequestObject:**
+
+| Field 	    | Type 	     | Required? 	| Description 	           |
+|-------	    |------	     |-----------	|-------------	           |
+| _ObjectType   | str        | Y | Fixed value: `CommandRequestObject`|
+| command_type  | str        | Y | Fixed value: `SenderInitiatedReferenceIDExchange`|
+| command       | Command object | Y | The Command to request. In this DIP, refers to SenderInitiatedReferenceIDExchangeObject |
+| cid           | str         | Y            | A unique identifier for the Command. Should be a UUID according to [RFC4122](https://tools.ietf.org/html/rfc4122) with "-"'s included. |
+
+**SenderInitiatedReferenceIDExchangeObject:**
+
+| Field 	    | Type 	     | Required? 	| Description 	           |
+|-------	    |------	     |-----------	|-------------	           |
+| _ObjectType   | str    | Y | Fixed value: `SenderInitiatedReferenceIDExchange`|
+| sender        | str          | Y            | Sender's full DiemID |
+| sender_address| str          | Y            | Sender's onchain [account identifier](https://github.com/diem/dip/blob/main/dips/dip-5.md) with subaddress set to `None` or the zero subaddress|
+| receiver     | str          | Y            | Receiver's full DiemID |
+| reference_id  | str          | Y            | Reference ID of this transaction to be included into payment metadata |
+
+
+The format of the success response is:
+```
+{
+   "_ObjectType": "CommandResponseObject",
+    "status": "success",
+    "result": {
+	    "_ObjectType": "SenderInitiatedReferenceIDExchangeResponse",
+	    "receiver_address": "dm1p7ujcndcl7nudzwt8fglhx6wxn08kgs5tm6mz4us2vfufk",
+    },
+    "cid": "12ce83f6-6d18-0d6e-08b6-c00fdbbf085a",
+}
+```
+
+**ReferenceIDCommandResultObject:**
+
+| Field 	    | Type 	     | Required? 	| Description 	           |
+|-------	    |------	     |-----------	|-------------	           |
+| _ObjectType   | str        | Y | Fixed value: `SenderInitiatedReferenceIDExchangeResponse`|
+| receiver_address       | str | Y | Receiver's onchain [account identifier](https://github.com/diem/dip/blob/main/dips/dip-5.md) with subaddress set to `None` or the zero subaddress |
+
+## Error Codes
+This protocol introduces several new error codes to the [DIP-1 set of error codes](https://github.com/diem/dip/blob/main/dips/dip-1.mdx#list-of-error-codes):
+
+`duplicate_reference_id`: Duplicate reference ID was rejected by the receiving end
+
+`invalid_receiver`: Receiving end could not find the user with the given user_identifier
+
+`invalid_field_value`: Reference ID is in the wrong format. See more details in [DIP-1 `invalid_field_value` error code](https://github.com/diem/dip/blob/main/dips/dip-1.mdx#request-object-validation-error-codes)
+
+## On-Chain Transaction Settlement
+Transactions with PaymentMetadata require a reference ID in order to submit the transaction on-chain. PaymentMetadata reveals nothing about either the sender or receiver and do not create linkability between the sender or receiver across payments.
+
+```
+enum PaymentMetadata {
+    PaymentMetadataV0(ReferenceId),
+}
+type ReferenceId = [u8, 16];
+```
+
+If the amount is below the travel rule limit, the sending VASP can send a p2p transaction with PaymentMetadata and the `reference_id` VASPs agreed on to settle the transaction.
+If the amount is at or above the travel rule limit, VASPs must perform an off-chain identity exchange. The same `reference_id` must be used to perform a travel rule exchange as described in [DIP-1](https://github.com/diem/dip/blob/master/dips/dip-1.md).
