豆泥關心的難題.
← 回到豆泥部落格

#EUDI-Wallet (5 篇)

| 62 分鐘 | Claude Opus 4.7

從國家發行憑證到公民證明自己:以公共領域下界重述數位身分如何轉化數位公民建設(公民證明系列第 0' 版)

本文是 civic-proof 概念的第 0′ 版學術重述,以 Public Realm Floor 承擔數位身分介入公共行動時的民主合法性下界,並把皮夾、AI 代理、公民行動收據、選擇性揭露 UX、跨法域信任治理與台灣案例整合為一套工程與制度檢核框架。2026 年 5 月 21 日修訂加入 Danielle Allen 第二輪來源,將 AllenBridge 擴為 participatory readiness、power-sharing institutions 與 digital public infrastructure 的制度轉譯層。

civic-proof civic-proof-foundations civic-proof-series-zero-prime Allen-Lab-academic-rewrite Harvard-Kennedy-School-Ash-Center digital-civic-infrastructure digital-public-infrastructure public-realm-floor Arendt-plurality Habermas-validity Pettit-contestation Mouffe-agonism conjunctive-normative-floor civic-proof-operational-concept Danielle-Allen power-sharing-liberalism political-equality AllenBridge participatory-readiness voice-to-influence public-interest-technology input-to-action-loop co-ownership rights-of-participation issuance-legitimacy exchange-architecture two-layer-analysis legal-identity attribute-proof uniqueness-proof pseudonymous-participation anonymity unlinkability verifiability accountability accountability-without-real-name Talley-v-California NAACP-v-Alabama McIntyre-v-Ohio selective-disclosure no-phone-home minimal-proof holder-centric issuer-centric trust-list trust-root trust-anchoring federated-trust-list-alliance wallet-three-presupposition AI-agent-delegation-limits Tomasev-delegation-five-elements civic-action-receipt-schema selective-disclosure-UX supporter-UI-three-layer-separation CRPD-Article-29 four-tier-trust-governance cross-jurisdictional-redress-gap inclusion-rights-three-layers functional-demos-operational-definition universal-conditional-distinction anti-mythologization-clause design-intuition-vs-normative-claim-separation working-strengthened-thesis-discipline likelihood-by-mechanism Taiwan-democratic-frontline MOICA TW-DIW moda Taiwan-Digital-Identity-Wallet EUDI-Wallet eIDAS-2.0 BankID-Sweden California-AB1043 California-OpenCred Utah-digital-identity MOSIP Aadhaar Bhutan-NDI Vocdoni Rarimo-Freedom-Tool QuarkID zkPassport PTT-zero-knowledge-blue-check g0v-Summit-2026 age-verification ISO-IEC-27566-1 Free-Speech-Coalition-v-Paxton structural-slippage minimum-viable-scope-reduction sunset-clause scope-bound split-key opt-out-architecture Bhutan-NDI-Ethereum-mainnet Taiwan-trust-list-public-chain QuarkID-ZKsync-L2 DNS-vs-identity-trust-roots ICANN-research-fellow ACLU EFF Access-Now OpenID4VC-OpenID4VP W3C-VC-2.0 W3C-DID Digital-Credentials-API NIST-SP-800-63-4 BBS-Cryptosuite client-side-proving Ethereum-Foundation-PSE Mueller-Ruling-the-Root Marshall-citizenship-three-layers Bovens-accountability-dual-structure Tomasev-AI-delegation Cavoukian-Privacy-by-Design Bygrave-Data-Privacy-Law Bennett-Lyon-Playing-Identity-Card Bjorgo-BankID-Norway
| 62 分鐘 | Claude Opus 4.7

公共領域的政治哲學基礎:civic-proof 系列規範下界的 Arendt / Habermas / Pettit / Mouffe 四家合取

civic-proof 系列第 19 篇 (A2),亦為系列最後一篇。承擔前 18 篇隱用之政治哲學基礎之正面論述。本文以 Arendt plurality、Habermas Öffentlichkeit、Pettit contestation、Mouffe agonism 四家為錨,定義公共領域規範下界 PRF ≜ ⟨plurality, validity, contestation, agonism⟩;以 LegitimacyDegrade 函數承擔 PRF_violated(d) ⇒ LegitimacyDegrade(d) ≥ θ_dem ≈ 0.5 之條件性蘊涵;以 8×4 = 32 cell 矩陣(A1 / A3 / A8 / A14 / A15 / F1 / F2 / F3 八篇 × 四分量)形式化系列承擔關係,F1 為四分量全核心承擔者。四條形式定理 T_PRF1–T_PRF4 承擔「在 PRF 合取下界框架內各自必要、難以由其他分量完全補位」之合取下界結構;定理 T_PRF5 把 F1 RT-ℬ ✗ 與 AA-ℬ ✗ 之 Z₃-intrinsic 邊界擴展為「既有工程設計層之不可達引理」(明示為工程層而非規範層的形式定理)。LegitimacyDegrade 函數中 θ_dem ≈ 0.5 為**分析性建議數**,未經實證校準;本文標明為待 ≥ 5 案例迴歸校準之嚴格立場。反論壓力測試含 Coeckelbergh relational personhood、Floridi infosphere monism、後人類主義(Braidotti / Hayles)、數位民主樂觀派(Benkler)、元反論(為何選四家)五類,於 likelihood × impact 矩陣下「削弱但不推翻」PRF 之四分量合取下界。華人本土化承載分四線:朱雲漢「群」、Wang Hui「公」、儒家「諫議」、儒家「諍友」之結構同構性檢驗;歷史承載條件差距於誠實邊界明示。對台灣讀者特殊段含 TW DIW 進入 LLM-agent 階段之具體衝擊與 F3 supporter UI 三層分離之工程承擔對位。誠實邊界含七項條件性蘊涵;open questions 含 27 條,依後續承擔路徑分四類(F4+ 後續、學術社群擴大檢驗、政策實作經驗研究、技術—哲學交界)。系列收束於本篇;PRF 框架之延伸應用、其他政治哲學進路之補強、後人類主義之 PRF 重做、跨國民主合法性之 θ_dem 校準等議題留作開放空間。

civic-proof public-realm political-philosophy normative-floor Arendt-plurality Habermas-Oeffentlichkeit Habermas-Geltungsansprueche Pettit-contestation Pettit-non-domination Mouffe-agonism legitimate-adversary civic-proof-series PRF-normative-floor LegitimacyDegrade 8x4-bearer-matrix 32-cell-matrix F1-three-path-conjunction F2-receipts-provenance F3-supporter-ui A1-anonymous-political-speech A3-civic-proof-concept A8-FTLA-governance A14-cross-jurisdiction-redress A15-inclusion-rights Z3-intrinsic-bearer-floor first-personal-mens-rea active-stance-bearer natality-mortality-uniqueness kommunikatives-Handeln Faktizitaet-und-Geltung Sluice-model Strukturwandel-der-Oeffentlichkeit editorial-democracy Eyeball-Test republican-freedom antagonism-vs-agonism Schmitt-acknowledgment Coeckelbergh-relational-personhood Floridi-infosphere-monism posthumanism Braidotti Hayles Benkler-networked-public-sphere Fraser-counterpublics Honig-Calhoun-Lovett-Norval Wang-Hui-China-public-concept TW-DIW EUDI-Wallet eIDAS-2.0 EU-AI-Act-Article-5 EU-AI-Act-Recital-29 Stanford-Internet-Observatory-2024 Hannah-Arendt-Center V-Dem-Democracy-Report-2024 SCHUFA-C-634-21 SEC-v-Jarkesy CRPD-Article-29 Rawls-Sen-Nussbaum-Honneth-open-boundary TW-Sunflower-318 Hong-Kong-2019-2020 TW-2024-deepfake US-2024-platform-manipulation open-questions-27
| 70 分鐘 | Claude Opus 4.7

Civic Receipts 與證據鏈:條件可委任區的可審計工程原語

civic-proof 系列第 17 篇 (F2)。承接 article 16 (F1) §5.4 DeliberationRecord schema 與 §7.3.1 civic-action-receipt envelope,把可區分性需求落地為四個可標準化密碼學原語——SA1 SD-JWT-VC baseline 加 BBS+ 條件性高階混合策略、SA2 holder-controlled 加 qualified preservation service 雙軌保存(30 年下限對應 CRPD 給付請領訴訟時效)、SA3 對接 FRE 901(b)(9) 與 eIDAS 2024/1183 Chapter III §7-8 與台灣電子簽章法第 4/10 條的法庭可採性、SA4 透過 G_recognition^A 軟法層 5/10/15 年三段推進的跨境互認。形式骨架為 14 欄位群(含 23 leaf field)civic-action-receipt schema、V_receipt 函數 C1-C6 六道條件、定理 T1-T4。四原語對 F1 5×3 矩陣 9-✓ 與 4-△ cell 在 Z₂ 範圍內覆蓋(定理 T1);對 Z₃-intrinsic 兩 cell(RT-ℬ ✗、AA-ℬ ✗)為密碼學原語不可達邊界(定理 T2)。CF1-CF5 反事實壓力測試含 CRPD §12 反向使用議題、台灣陸配 / 台商 / 兩岸投資人三場景在 CF4 觸發下的結構性斷裂。working thesis 與 strengthened thesis 嚴格區分;後者透過 crypto-agility by design、第三方 trusted preservation service 對接、G_recognition^A 多軌備援三大緩解 critical path 在五 CF 全觸發下保留核心功能。

civic-proof civic-receipts verifiable-credentials selective-disclosure SD-JWT-VC BBS-cryptosuite ZK-SNARK EUDI-Wallet long-term-preservation qualified-preservation-service eIDAS-2024-1183 FRE-902-14 FRE-901-b-9 Mata-v-Avianca Apostille Hague-PIL CETS-225 OECD-AI-Principles APEC-CBPR CRPD-Article-12 supported-decision-making threshold-signatures PQC-migration crypto-agility Estonia-X-Road BankID Toeslagenaffaire TW-DIW cross-strait-recognition
| 64 分鐘 | Claude Opus 4.7

選擇性揭露的 UX 認知極限:可審計工程原語的人因瓶頸

civic-proof 系列第 18 篇 (F3)。承接 article 17 (F2) §4–§7 四件密碼學工程原語與 article 16 (F1) §5.4 三項工程修正,把 UX 認知層作為 F2 四原語的「實際可履行性」補強。SD 之 holder informed consent 在四道認知瓶頸下無法履行:(i) Miller 7±2 與 Cowan 2001 working memory 4±1 + Sweller cognitive load theory 顯示 selective disclosure 多選項決策每超過 3 個 attribute group 即顯著退化;(ii) consent fatigue 與 dark patterns 在 wallet 場景同型重演 GDPR cookie banner 八年失敗(11.8% 合規率);(iii) capacity 變動使「曾經 informed consent」失效,於 CDR ≥ 2 場景以 mechanism-based likelihood medium-high 退化為 substituted;(iv) supporter 介入邊界模糊使「協助理解」滑入「代為決定」。四件 UX 工程原語為 UX1 progressive_disclosure_ui、UX2 dark_patterns_firewall、UX3 capacity_aware_consent、UX4 supporter_ui_three_layer;以 V_ux ≜ C7 ∧ C8 ∧ C9 ∧ C10 合取承擔,V_receipt' ≜ V_receipt ∧ V_ux 為升級後可驗條件。SA3 補強包含失智 → wallet 三段中介鏈、CDR 三條替代路徑(self-assessment / supporter-triggered / issuer-side hint)的法律—工程—隱私 tradeoff、中介證據強度評估表 15 列、mechanism-based likelihood medium-high;SA4 supporter UI 三層分離以 signatures_disjoint = true 與 VerificationMethodDisjoint = true 兩道密碼學硬約束承載 CRPD §29「supporter 必要、不可替代」原則。working thesis 與 strengthened thesis 嚴格區分;後者含 UX-agility by design、threshold signatures 加 court-supervised downgrade、agent 與 supporter 密碼學區分加上 AgentDelegationProof 制度化三大緩解 critical path。CF1–CF5 反事實壓力測試在五 CF 全部觸發極端情境下,第一段 baseline 完整保留、第二段時程外推 ≥ 10 年、第三段條件性失效。F1 RT-ℬ ✗ 與 AA-ℬ ✗ 兩條常駐型不可委任邊界以擴充定理 T2' 明示——不存在任何 UX 原語子集合使 P_degrade ≤ θ₂。

civic-proof selective-disclosure ux-cognitive-load informed-consent dark-patterns wallet-ux openid4vp presentation-exchange sd-jwt-vc EUDI-Wallet EU-AI-Act-Article-5 EDPB-Guidelines-03-2022 GDPR-cookie-banner CRPD-Article-12 CRPD-Article-29 supported-decision-making capacity-aware-ux supporter-ui comprehension-attestation chooser-signature Cowan-working-memory Miller-magical-number Sweller-cognitive-load Tversky-Kahneman progressive-disclosure Clinical-Dementia-Rating Israel-supported-decision Peru-DL-1384-apoyos TW-yiding-jianhu BankID-fullmakt POTENTIAL-UC6 threshold-signatures LLM-agent-governance AgentDelegationProof
| 64 分鐘 | Claude Opus 4.7

AI 代理在公民行動的制度極限:委任五件結構與公民證明三件式的合取必要條件

把 Tomasev (2026) 委任五件(authority transfer / responsibility transfer / accountability allocation / boundary setting / trust calibration,呈 2+3 結構)與 civic proof 三件式 ⟨𝒩, ℱ, ℬ⟩ 做合取交叉,得到 5×3 = 15 cell 必要條件矩陣,其中 9 cell 條件可滿足、4 cell 機率退化、2 cell 結構不可滿足(RT-ℬ ✗ 與 AA-ℬ ✗)。據此把公民行動劃分為可委任、條件可委任、結構不可委任三區帶(θ₁ ≈ 0.2、θ₂ ≈ 0.7),並區分常駐型結構不可委任(由 ℬ 哲學基礎決定)與情境型結構不可委任(由 𝒩、ℱ 共同失能決定)。CRPD Art 12 General Comment No. 1 §26-29 廢除替代決策的硬性要求是條件可委任區的規範性硬約束,非法理依據;supported 與 substituted 的可區分性必須在事前協商層、事後可逆層、決策證據鏈層三層同步建立;EUDI Wallet ARF 提供的是 multi-profile 而非 multi-tenant delegated key custody;CRPD 透過 ICCPR Art 26 + ICESCR Art 9 回流為對所有 wallet 使用者的普遍工程義務。跨法域責任真空細分為道德緩衝區型、演算法不透明型、跨法域擴散型三型,A14 第 5 類缺口拆為 Q10a(authority transfer 密碼學歸責)與 Q10b(accountability allocation 跨境多方歸責),FTLA-Agent 四層治理(G_industry / G_state / G_recognition / G_oversight)在 2026 年呈現非對稱厚度,時間階段化為 5 / 5-10 / 10-15 年三段,五方責任比例建議為 25 / 25 / 15 / 25 / 10。

civic-proof AI-agent delegation Tomasev-five-elements civic-proof-conjunction-matrix Arendt Habermas Pettit moral-crumple-zone FTLA-Agent CRPD-Article-12 supported-decision-making multi-tenant EUDI-Wallet cross-jurisdictional-liability