[Openid-specs-ab] Issue #1711: OID4VCI - Passing Key instead of Key URL (openid/connect)
David W Chadwick
issues-reply at bitbucket.org
Wed Nov 2 20:05:54 UTC 2022
New issue 1711: OID4VCI - Passing Key instead of Key URL
https://bitbucket.org/openid/connect/issues/1711/oid4vci-passing-key-instead-of-key-url
David W Chadwick:
The current text states
`kid`: CONDITIONAL. JWT header containing the key ID. If the Credential shall be bound to a DID, the `kid` refers to a DID URL which identifies a particular key in the DID Document that the Credential shall be bound to.
However if the DID is did:key or did:jwk then the kid is the key itself, rather than a key ID. Thus there is no need to refer to a DID URL. Can we add the following note
Note. If the DID is a direct encoding of a key e.g. did:key or did:jwk, then the kid refers to the key itself.
More information about the Openid-specs-ab
mailing list