This is a "pre-draft" RFC (although we didn't specify what that actually means) to solve the following problems:
OpenID4VP/SIOP exchanges allow only 1 credential holder, while for Nuts exchanges there are 2: the end-user presenting their identity and the care organization. This RFCs describes how the end-user can mandate the care organization to use their identity in data exchanges.
Personal wallets (typically mobile devices) are cumbersome to use, when required to use multiple times per day (getting it out, opening app, entering PIN, scanning QR code, giving consent). And some work environments don't allow the use of (personal) mobile devices at all. The RFCs extends the mandate by allowing a secure hardware authentication device (e.g. WebAuthn fingerprint reader) to create the mandate.
This is a "pre-draft" RFC (although we didn't specify what that actually means) to solve the following problems: