[Openid-dcp] Request for technical proposals ahead of joint meeting between ISO WG 10/DCP members

Tue Dec 23 11:24:02 UTC 2025

Hi all

Please see below proposal submitted by Lee.

Thanks

Joseph

—————————————

Combine 18013-5 2nd Edition DeviceRequest/Response and OpenID4VP’s Authorization Request into a new single unified specification.
This will allow future editions of 18013-5 and OpenID4VP to reference this common specification, reducing fragmentation in the ecosystem going forward. 

This new specification will only define the presentation request and response. It will not cover the transports and engagement layers or credential formats. 

Conceptually this spec will define what is contained in the payloads that are passed over the DC API today.

Features provided by this specification:
A single specification defining the request and response payloads for both the online and in-person use-cases (the DC API and 18013-5 transports respectively).
Provides an expressive query language for requesting one of more digital credentials.
Support for multiple credential presentation formats
Efficiently encoded for low bandwidth transports
Designed to be processed in resource constrained environments, such as secure elements.
Supports Verifier authentication and signed requests
Support for encrypted responses.
Support for transaction data signing
Provides support for man-in-the-middle attack resistance if the underlying transport provides an ‘origin’ (origin being a more generalized meaning of origin, not a web origin)

————————————————

> On 18 Dec 2025, at 18:42, Joseph Heenan <joseph at authlete.com> wrote:
> 
> Hi all
> 
> As was agreed in the first joint meeting, at the next meeting (on the 23rd December 13:00 – 14:00 UTC, the invite was sent to this mailing list earlier today) the group wanted to get into discussion about the form of the technical solution at the high level.
> 
> After discussion between the ISO convenor & the DCP co-chairs we believe the best way to proceed would be if people could submit outlines of how they envisage the harmonised protocol looking. These outlines should be short, either concise text or a diagram, definitely under 1 page.
> 
> The expectation would be that these high level proposals select various parts of the existing ISO 18013 / OID4VC protocols and combine them in a way that produces a "best of breed" solution.
> 
> We’d encourage people that believe they might submit similar proposals to work together wherever possible to keep the number of proposals received to a minimum and hence use the meeting time in the most effective way.
> 
> Please submit proposals ASAP (and prior to the 23rd Dec meeting) as a response to this message (with Loffie CCed so they can be distributed to ISO members too). We suggest we then quickly review the proposals at the meeting, and the group selects the least disliked proposal as a starting point that we then have detailed discussions about.
> 
> Many thanks
> 
> Joseph
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-digital-credentials-protocols/attachments/20251223/3a17cc44/attachment-0001.htm>