[Openid-dcp] DCP WG America call agenda

Jin Wen jwen at noknok.com
Wed Jun 18 02:32:39 UTC 2025 

Digital Credentials Working Group Meeting Minutes
Date: June 17, 2025
 Meeting Type: APAC-friendly call
 Host: Joseph Heenan
 Note Taker: Jin Wen

Meeting Overview
The Digital Credentials Protocol Working Group convened to focus primarily on VCI (Verifiable Credentials Issuance) 1.0 pull requests and issues, with the goal of preparing for Working Group Last Call.

Attendees
Present: Joseph Heenan (Host), Christian, Paul, Daniel, Torsten, Bjorn Hjelm, David Zeuthen (Google LLC), Dima Postnikov, Elizabeth Garber, Gareth Oliver, Hicham Lozi, Lee Campbell, Lenah Chacha, Lukasz Jaromin (Raidiam), Martijn, Robert Gallagher (Mastercard), Michael Jones, Oliver Terbu, Peter Sorotokin, Rajvardhan Deshmukh (Cisco), Andrew Regenscheid (NIST), Ryan Galluzzo (NIST ACD), Tobias Looker (MATTR), Tor E Hagemann, Victor Lu, Jin Wen

New Attendee: Tor E Hagemann introduced himself as a former J.P. Morgan employee now working at a startup in SF, interested in high assurance profile protocols and has previous VCI/VP implementation experience.

Action Items
Martijn: Review signed metadata PR (#520)

Daniel F.: Update presentation during issuance PR (#509) by tomorrow

Gareth Oliver: Review presentation during issuance PR (#509) on Thursday

Paul: Update signed metadata (#520) PR by tomorrow

Gareth: Finalize request encryption PR updates (#505)

Christian: Respond to Andres's comment on credential metadata PR (#500)

Rajvardhan: Review c_nonce cleanup PR (#525)

Tobias Looker: Create PR for deferred issuance error handling clarification (#532)

Key Updates
VP Final Vote
VP final vote scheduled to start next week (Tuesday or Wednesday)

Formal decision to be made at working group meeting on June 24th

Conformance Testing
VP draft 29 conformance tests now available for wallets and verifiers: https://openid.net/certification/conformance-testing-for-openid-for-verifiable-presentations/

 <https://openid.net/certification/conformance-testing-for-openid-for-verifiable-presentations/>
Complete conformance testing suite available at OpenID Foundation certification page

Current tests for VP draft 29 have mdoc session transcript issues, expected to be fixed soon

Interoperability Updates
Morning interop session achieved 67% pass rate with good understanding of remaining issues

New implementer (Ping) participated, with two more expected in afternoon session

No material concerns or feedback on underlying specs or tests


Pull Request Reviews
Presentation During Issuance (#509 <https://github.com/openid/OpenID4VCI/pull/509>)
Status: Needs updates from Daniel F. 
 Key Features:

Builds on OAuth first party apps draft

Provides mechanism for wallet to handle authorization natively without web view

Supports VP presentation requests and extensible for other authorization methods

Generic callback functionality during authorization flow


Discussion Outcomes:

General agreement on direction, focus on OpenID4VP implementation
Extension point available for future use cases
Security considerations to reference OpenID4VP standards
Presenting during issuance using DC API can come in a later version of VCI once we have implementation experience.
Gareth Oliver volunteered to review after Daniel's updates


Signed Metadata (#520 <https://github.com/openid/OpenID4VCI/pull/520>)
Status: Pending review from Martijn
 Discussion Points:

Four approvals received, awaiting final review

Tobias raised interoperability concerns about mandatory vs. optional JSON metadata support

Consensus that JSON metadata should be the common denominator for reliability

Paul committed to updates by tomorrow

Integrity of the JWK used for Credential Response encryption - Option 1 (#522) - Closed
Add Support for request encryption (#505 <https://github.com/openid/OpenID4VCI/pull/505>)
Status: Ready for final updates from Gareth
 Decisions Made:

Always require credential response encryption for valid responses

No encryption required for error responses

If response encryption is used, request encryption becomes mandatory

Approach focuses on preventing accidental PII exposure rather than guaranteeing full integrity


Integrity of the JWK used for Credential Response encryption - Option 2 (#540 <https://github.com/openid/OpenID4VCI/pull/540>) - Closed

Credential Metadata Decoupling (#500 <https://github.com/openid/OpenID4VCI/pull/500>)
Status: Pending Christian's response to Andres's comment
 Action: Christian to review and respond to recent comment before merge

c_nonce Cleanup (#525 <https://github.com/openid/OpenID4VCI/pull/525>)
Status: Needs 1-2 more approvals
 Changes:

Clarifies reuse of challenge values is acceptable for short periods

Requires new challenge values to be unpredictable

Addresses nonce endpoint usage requirements

Rajvardhan (Raj) volunteered to review

Recent Issues Discussion
https://github.com/openid/OpenID4VCI/issues?q=is%3Aissue state%3Aopen milestone%3A"Final 1.0" -label%3Ahas-PR -label%3Aafter-wglc <https://github.com/openid/OpenID4VCI/issues?q=is%3Aissue%20state%3Aopen%20milestone%3A%22Final%201.0%22%20-label%3Ahas-PR%20-label%3Aafter-wglc>
Deferred Issuance Error Handling (#532 <https://github.com/openid/OpenID4VCI/issues/532>)
Problem: No clear mechanism for issuer to indicate it will no longer issue a credential for a given transaction ID
 Solution: One option is to use existing "credential_request_denied" error with clarification that it represents an unrecoverable error
 Action: Tobias Looker to create PR adding explanatory text

Issues Moved to Version 1.1
Proof data provision (#544) - lacks implementation experience

Display metadata in credential response - non-breaking extension

Additional security considerations (#539) - non-normative changes

Next Steps
Working Group Last Call preparation continues with focus on merging normative changes

Two calls scheduled for Thursday: APAC-friendly and EU afternoon sessions

Goal to have major PRs ready for Thursday discussion and potential merge decisions

Meeting Logistics
Zoom Link: https://zoom.us/j/94085567252?pwd=cHNFMExFalhlM2MrOFhoN3J6eDRuZz09
 <https://zoom.us/j/94085567252?pwd=cHNFMExFalhlM2MrOFhoN3J6eDRuZz09> Antitrust Policy: OpenID Foundation antitrust policy applies (www.openid.net/antitrust <http://www.openid.net/antitrust>)
 IPR Reminder: Standard intellectual property rights reminder provided


Best,
Jin

Jin Wen | Solutions Architect | jwen at noknok.com | (510)842-7841
Nok Nok Labs, Inc. | 2890 Zanker Road, Suite 203, San Jose, CA 95134

> On Jun 17, 2025, at 11:38, Joseph Heenan via Openid-specs-digital-credentials-protocols <openid-specs-digital-credentials-protocols at lists.openid.net> wrote:
> 
> Hi all
> 
> Proposed agenda for the APAC friendly call in 20 minutes time on the usual zoom, https://zoom.us/j/94085567252?pwd=cHNFMExFalhlM2MrOFhoN3J6eDRuZz09
> 
> OIDF Antitrust Policy at www.openid.net/antitrust applies / IPR reminder
> Note-taking
> Updates
> VP final vote
> Conformance tests - VP draft 29 tests available
> Interop updates - VP ID 29 / final, VCI
> Review / merge open VCI 1.0 PRs: https://github.com/openid/OpenID4VCI/pulls <https://www.google.com/url?q=https://github.com/openid/OpenID4VCI/pulls&source=gmail-imap&ust=1750790333000000&usg=AOvVaw0d7r2QiN77Z7FKJQqsqsIi>
> Presentation during issuance
> Signed metadata
> Others needing reviews
> Remaining VCI 1.0 issues: https://github.com/openid/OpenID4VCI/issues?q=is%3Aissue state%3Aopen milestone%3A"Final 1.0" -label%3Ahas-PR -label%3Aafter-wglc <https://www.google.com/url?q=https://github.com/openid/OpenID4VCI/issues?q%3Dis%253Aissue+state%253Aopen+milestone%253A%22Final+1.0%22+-label%253Ahas-PR+-label%253Aafter-wglc&source=gmail-imap&ust=1750790333000000&usg=AOvVaw2SCtB3bJ_AHo0D_0BAIdjJ>
> 
> If anyone has any specific topics they’d like to cover please reply to this email or ask at the start of the call.
> 
> Thanks
> 
> Joseph
> 
> -- 
> Openid-specs-digital-credentials-protocols mailing list
> Openid-specs-digital-credentials-protocols at lists.openid.net
> https://www.google.com/url?q=https://lists.openid.net/mailman/listinfo/openid-specs-digital-credentials-protocols&source=gmail-imap&ust=1750790333000000&usg=AOvVaw1iS58YItSJm5UcZIJbajIM

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-digital-credentials-protocols/attachments/20250617/22676130/attachment-0001.htm>

More information about the Openid-specs-digital-credentials-protocols mailing list