We present PhiSDP v2. 3 (Phi-Selective Disclosure Protocol), a role-controlled encrypted attribute release protocol combining holographic key derivation with asymmetric Key Encapsulation Mechanism (KEM). The user derives an internal state X = SHA-256 (Φ² ⊛ hᵣ), generates an attribute key Kₐttr = HKDF (X, nonce), encrypts the attribute under Kₐttr using AES-GCM, then encapsulates Kₐttr under the verifier's public key PKᵣ via KEM. The verifier decapsulates using their private key SKᵣ — the user never learns SKᵣ and cannot impersonate the verifier. v2. 3 fully separates concerns: attribute confidentiality requires SKᵣ (KEM security) ; attribute generation requires Φ² (Holographic Binding Hardness). Empirical evaluation confirms correctness (sim=1. 0000), zero decryption without SKᵣ (best sim=0. 000 over 1000 trials), and cross-role isolation (Cₖem verification fails for wrong role). Production deployment requires X25519-KEM or Kyber (post-quantum).
Maciej Mazur (Thu,) studied this question.