Specification references

The following is a non-exhaustive list of references to specifications used in this project:

Protocols

• OpenID4VCI - OpenID for Verifiable Credential Issuance

  • OpenID Connect - OpenID Connect Core

  • OAuth - The OAuth 2.0 Authorization Framework

  • Oauth-BearerToken - The OAuth 2.0 Authorization Framework: Bearer Token Usage

  • PKCE - Proof Key for Code Exchange by OAuth Public Clients

  • DPoP - OAuth 2.0 Demonstrating Proof of Possession (DPoP)

• OpenID4VP - OpenID for Verifiable Presentations

  • DCQL - Digital Credentials Query Language

  • JAR - JWT-Secured Authorization Request (JAR)

  • JARM - JWT Secured Authorization Response Mode for OAuth 2.0

• HAIP - OpenID4VC High Assurance Interoperability Profile

Attestation formats

• ISO mdoc - ISO mobile document

• SD-JWT - Selective Disclosure for JWTs

• SD-JWT VC - SD-JWT-based Verifiable Credentials

Cryptography

• COSE - CBOR Object Signing and Encryption (COSE)

• JWS - JSON Web Signatures

• JWT - JSON Web Token

• JWE - JSON Web Encryption (JWE)

• PoP - Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)

Other

• PID Rulebook - Person Identification Data (PID) Rulebook

• RFC 7807 - Problem Details for HTTP APIs