| 2 | Contributions from Identity Foundations (e.g., OpenID Foundation, DIF, Trust Over IP) | - JSON Web Tokens (JWT), JSON-LD, CBOR, and SD-JWT (IETF): Used for secure, verifiable, and compact digital identity assertions.
- Decentralized Identity Foundation (DIF) Standards (DIF): Works on interoperability solutions such as DIDComm and secure messaging.
- ARF (EU commission)
- OIDC
- OIDC4VC (OpenID Connect for Verifiable Credentials) is an extension of OpenID Connect (OIDC) designed to support the issuance, presentation, and verification of Verifiable Credentials (VCs) within decentralized identity ecosystems. It bridges traditional authentication systems (like OAuth 2.0 and OpenID Connect) with Self-Sovereign Identity (SSI) principles by leveraging existing identity protocols to issue, present, and verify Verifiable Credentials (VCs) in a decentralized and user-centric manner.
- OIDC4CI(OpenID Connect for Credential Issuance) is an extension of OpenID Connect (OIDC) that enables the issuance of Verifiable Credentials (VCs) in a decentralized and interoperable way. It is designed to allow identity providers to issue credentials directly to users' digital wallets, bridging the gap between traditional authentication systems and Self-Sovereign Identity (SSI) principles.OIDC4CI follows a process similar to traditional OIDC authentication flows, but instead of issuing an ID token, it issues Verifiable Credentials (VCs).
- Self-Issued OpenID Provider (SIOP v2) (OIDF): Extends OIDC for user-controlled identities without relying on a central identity provider.
- EU/EEA Trusted List Browser
|
|
| |
|
| 3 | Standardization (W3C, ETSI, ISO) | - ISO/IEC 18013-5:2021 establishes interface specifications for the implementation of a driving licence in association with a mobile device. It also specifies the interface between the mDL and mDL reader and the interface between the mDL reader and the issuing authority infrastructure.
- ETSI (European Telecommunications Standards Institute) is an independent, non-profit standards organization that develops globally applicable standards for telecommunications, broadcasting, and IT in Europe.
- W3C DID Core Specification (W3C): Defines a format and methods for Decentralized Identifiers (DIDs), allowing for cryptographic proofs and verifiable control without centralized authorities.
- W3C Verifiable Credentials (VC) Data Model (W3C): Specifies a model for issuing, presenting, and verifying credentials in a decentralized manner.
- GNAP (Grant Negotiation and Authorization Protocol): A modern alternative to OAuth 2.0, designed to offer more flexibility, including decentralized architectures. It can work with DIDs (Decentralized Identifiers) and Verifiable Credentials, making it a better fit for distributed identity models.
|
|
|
|
|
