<div dir="auto">Hi David,<div dir="auto">Thanks for sharing your point of view and confirming some assumptions. I fully agree with you. The statement is not my opinion but was a quote from the current specification that did NOT refer to any verifiable credential but required JSON-LD processing for a metadata field and request parameter (see <a href="https://openid.net/specs/openid-4-verifiable-credential-issuance-1_0.html#server_metadata_ldp_vc">E.1.3.2</a> and <a href="https://openid.net/specs/openid-4-verifiable-credential-issuance-1_0.html#section-e.1.3.3">E.1.3.3</a> in Appendix E of the current draft). I also think, that metadata and protocol defined in OpenID4VCI should be pure JSON and not JSON-LD. Consequently, the requirements regarding JSON-LD processing for <span style="font-family:"Courier New"">credentials_supported</span> and <span style="font-family:"Courier New"">credential_definition</span> should be removed as those are part of the metadata and request respectively. They are not, once more, any credential (such can only be found in credential responses).<br></div><div dir="auto">Following that, any <font face="Courier New">@context</font>-field in an object that is NOT a credential, should be removed as well. I'll open an issue with suggested changes.</div><div dir="auto"><br></div>Regards, Judith <br><br><div class="gmail_quote" dir="auto"><div dir="ltr" class="gmail_attr">On Sat, Feb 18, 2023, 08:59 David Chadwick via Openid-specs-ab <<a href="mailto:openid-specs-ab@lists.openid.net" target="_blank" rel="noreferrer">openid-specs-ab@lists.openid.net</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div>
<p>Hi Judith</p>
<p>thankyou for your excellent response. I agree with most of what
you say, but not the following "This object MUST be processed
using full JSON-LD processing". It is my understanding that the
protocol and metadata are pure JSON and should not be referred to
as JSON-LD. Thus the current text is wrong if it either states or
implies this. OTOH, the retrieved object may be a W3C Conformant
VC (in which case it MUST contain the @context property) but this
does not mean that the wallet has to perform any JSON LD
processing on it. On the contrary pure JSON processing is
sufficient if the semantics of JSON-LD are not required and JWT
proofs are being used (I am not sure if the same is true for LD
proofs). Interworking between JSON-LD processing and pure JSON
processing issuers and wallets has already been adequately
demonstrated (in the JFF plugfest). So I do not believe having an
@context property in a credential is an issue that OID4VCI should
be concerned with. Personally I do not think that our protocol
should be supporting non-standard credential formats (i.e. any
type of JWT) and should only support ISO mdl and W3C VCs either
JWT or LD-proofed (but I think I am in a minority here). However,
the W3C VC F2F this week has now agreed that verifiable
credentials must have an @context property. Other serialisations
that do not contain an @context property may be specified, but
mapping rules from these to W3C VCs must be defined for them to be
accepted in the W3C VC v2 recommendation. The mapping may be one
way (from serialisation X to W3C VCs) or bi-directional and
lossless. However, no examples of serialisation X have been fully
specified so far, so until they are I do not think OID4VCI should
include them (which currently it does).</p>
<p>Kind regards</p>
<p>David</p></div>
</blockquote></div></div>