Hello SD-JWT Enthusiasts, We've encountered some challenges in applying SD-JWT to support W3C Verifiable Credentials 2.0.
The problem is that W3C defines a JSON-LD data model for a "presentation", and SD-JWT defines a JWT data model for an "Issuer Signed JWT with disclosures and key binding". These terms and definitions don't mix well, in ways that could lead to serious authentication problems. https://github.com/oauth-wg/oauth-selective-disclosure-jwt/issues/395 Since the topic is detailed, I create a dedicated repository to address it: https://github.com/transmute-industries/audacious-presentations Feel free to file issues or open PRs to make corrections. I will provide a full implementation PoC, in the same repo shortly. Regards, OS -- ORIE STEELE Chief Technology Officer www.transmute.industries <https://transmute.industries>
_______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
