Keys for DPoP should be attested to be highly secure

openid / oid4vc-haip-sd-jwt-vc

High Assurance Profile of OID4VP and OID4VCI using SD-JWT VC and mdocs that is privacy preserving, secure, and meets regulatory requirements

29 stars 7 forks source link

Keys for DPoP should be attested to be highly secure #1

Open awoie opened 1 year ago

awoie commented 1 year ago

Let's make sure that keys we use for DPoP can be directly attested by the key attestation to be protected by the secure key store of the device (e.g. Secure Element, Secure Enclave etc.).

Sakurann commented 1 year ago

let's also make sure it is optimization and not a requirement in client attestation draft.

tlodderstedt commented 1 year ago

Would that be a DPoP extension?