[Openid-specs-ab] Issue #1499: Clarify how SIOP/Open4VP can be used to present credentials offline (openid/connect)
Kristina Yasuda
issues-reply at bitbucket.org
Wed May 18 23:17:39 UTC 2022
New issue 1499: Clarify how SIOP/Open4VP can be used to present credentials offline
https://bitbucket.org/openid/connect/issues/1499/clarify-how-siop-open4vp-can-be-used-to
Kristina Yasuda:
There has been a lot of questions wrt offline use of SIOP/OpenID4VP. My current understanding is…
Both the wallet and the verifier have to authenticate the other party using the other party’s public key. For offline use:
1. The wallet has to obtain the verifier’s public key beforehand \(registration would be needed / or use client\_id=redirect\_uri\)
2. The verifier does not have to obtain the wallet’s SIOP public key beforehand, if the key is passed by value \(`sub_jwk`\).
Would be good for a WG to align
More information about the Openid-specs-ab
mailing list