Do a security pass on the ocap URL design and implementation #623
Description
The ocap URL design (https://github.com/MetaMask/ocap-kernel/wiki/Notes-on-ocap-urls) incorporates various bits of cryptography and other security machinery to ensure that published remote object references aren't subject to spoofing and other kinds of mischief. However, neither this design nor its implementation have yet been validated by competent cryptography experts. We need to bring some proper expertise to bear on this matter, and then, if necessary, incorporate any critical feedback into both the design and its implementation.
Note that I can readily imagine the result of such a review ending up anywhere on the spectrum from "this is fine, ship it as is" to "this needs to be replaced wholesale with something completely different".