Digital credentials are an identity innovation facilitating user control and choice. But there’s many representations of digital credentials, many ways of establishing that they are from a trusted source, many protocols and APIs for using them, many kinds of wallets for holding them, and a multiplicity of interdependencies among these choices! And many of them are works in progress.
Heck, the industry can’t even agree on what to call them: Digital Credentials, Verifiable Credentials, …? Take your pick!
This session will dive into the different credential options available, with the goal of providing clarity as to which make sense in what contexts. Credential formats discussed will include ISO mDoc (and ISO mDL), W3C Verifiable Credentials (in their many forms), IETF Selective Disclosure JWT (both SD-JWT and SD-JWT VC), IETF Selective Disclosure CWT (SD-CWT), and IETF JSON Web Proof (JWP).
We’ll also investigate the many ways that applications can decide to trust (or not trust) credentials, including trust lists, X.509 certificate chains, and federations.
Finally, we’ll look at the multiple ways that credentials can be issued and presented in both in-person and online contexts, including APIs and protocols – probing into how not all choices work with all credential formats and trust models.
