Closed fmarino-ipzs closed 7 months ago
My opinion:
for version 0.6.0:
evidence
can be selectively disclosed (it's obfuscated in the jwt)evidence
's subfields cannot be selectively disclosedevidence
field so we nudge Issuers to use only proper datafor next versions:
evidence
fieldevidence
's subfieldsevidence
's subfields to be selectively disclosableI agree with the notion that evidence's
subfield should not be selectively disclosed.
To that I would like to add that one has to weigh the benefit of being able to enable nested/recursive selective disclosures against the increased complexity it will bring to the implementations.
Over the past few weeks, my team has addressed the following:
To overcome these limitations, we've decided to:
Below I share a pull request that introduces this "feature" within the OpenID4VCI metadata (and divides AS metadata from OpenID4VCI metadata as well). A subsequent pull request will modify the PID data model.
In the current version of the Credential data model, we have a selective disclosable
evidence
field. We need to clarify the sub-claims included in theevidence
. We don't enable nested SDs. Then the Holder can selectively disclosure the entireevidence
, and it is not allowed to selectively disclose only a subset of the claims contained in theevidence
.