Sakurann
commented
11 months ago making it clearer would be nice
Closed bc-pi closed 6 months ago
Sakurann
commented
11 months ago making it clearer would be nice
paulbastian
commented
10 months ago In batch issued credentials it might make sense to also think about iat/exp dates Either these should be:
Sakurann
commented
6 months ago PR merged
It might be obvious to some/many but I think it's worth mentioning that the key binding key needs to be unique per SD-JWT when using batch issuance to try and get verifier/verifier unthinkably. I feel like I've seen it come up in a few discussions recently and sometimes stated like it was a new discovery. Having just a mention of it in the draft could be helpful guidance/reminder and also preempt criticism that it was somehow not known.
Maybe just a few words in https://www.ietf.org/archive/id/draft-ietf-oauth-selective-disclosure-jwt-05.html#name-unlinkability