Closed cobward closed 1 year ago
This has been solved in the recently merged PR #174. We did not, however, pull the sd hashes to the top level, as the structured approach encourages secure implementations (see "Verification by the Verifier" and "Manipulation of Disclosures" sections in the updated document).
In order to prevent the number of digests leaking any information, ISO-18013-5 suggests adding additional digests that do not correlate to any of the hidden elements. The recently suggested format of sd-jwt would mean you would have to add these at every level that hidden elements are defined:
This obviously adds a lot of bloat. A better alternative for this would be for all selective-disclosures to be defined in a top-level array.