Versions Compared

Old Version 15

changes.mady.by.user Rounak Nayak

Saved on

compared with

New Version Current

changes.mady.by.user kadio.kassy

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Tip

Use Case

Robert applies for health insurance with XYZ Insurance. Upon verifying his details, XYZ Insurance issues the policy and sends it to Robert via email. The email contains a QR code. When Robert scans the QR code with his mobile phone, the wallet app prompts him to enter the policy ID and date of birth for security. Upon entering the details, Robert receives the Policy Credential in the wallet.

Info

1.2. Secure Storage of Credentials in Wallet

...

  1. Ordering of credentials in the wallet

  2. Ability to categorise the credentials based on type

  3. Ability to give a name to the credential

1.4. Remove a Credential from the Wallet

The wallet must allow the holder the ability to remove credentials from the wallet.

...

To enhance privacy, the holder should be able to choose and share specific attributes of a credential without revealing unnecessary details, giving them control over the information disclosed.

Tip

Hari, a 19-year-old, was riding his bike when he was stopped by a Traffic Police officer. Observing Hari's youthful appearance, the officer decided to verify Hari's age since the country has a minimum age limit of 18 for individuals to ride a vehicle.

The officer requested Hari to show his credentials for age verification. In response, Hari accessed his mobile wallet, while the police officer opened his verification application. The officer then initiated an authorization request to Hari's device.

Hari's wallet retrieved the request object, which requested for the claim "ageOver18" from his driving license to be shared. The wallet informed Hari that the Police Officer was seeking confirmation of whether the age is over 18 or not. Considering that his driving license credential contained the claim "ageOver18," Hari authorized the sharing of this information with the police officer.

Info

Reference:

Info

Selective Disclosure Signatures

2.3. Mode of Sharing

The wallet should provide a mechanism for the holder to share the credentials in a secure and standardised manner using standard protocols.

...

5. Administation

5.1. Governance

The importance of this

5.1.1. Creation of a Wallet Registry

In the context of the system's administration and governance in a country, the creation of a Wallet Registry could be needed. This registry serves the purpose of recording and managing wallets authorized to store credentials that are issued within the country. The primary objective is to establish a controlled environment where issuers can verify the authenticity of a wallet before transferring or sharing credentials to it.

5.1.2. Creation of a Sectorial Issuer Registry

In the governance framework of the system, a Sectorial Issuer Registry can be established. This registry is intended to systematically record and manage information about issuers operating within specific sectors. The goal is to provide a structured approach for overseeing and verifying the legitimacy of issuers before they participate in the issuance and sharing of credentials. This registry can be used by wallets or verifiers to verify by the

5.1.3. Workflow Management for Registration

Should provide a configurable workflow to perform review of the application shared by a wallet solution or Issuer to register into the respective trust registry.

5.2. Issuer Side Administrator

5.

...

2.1. Issuance of Credentials into Registry

  1. Should be able to register a credentials

  2. Should be able to

...

As part of the administrative capabilities on the issuer side, the Issuer Side Administrator should have the functionality to add credentials into the registry.

5.2.2. Revocation of Issued Credential

...

Should be able to revoke a credential

...

The system should facilitate the revocation and potential reversal of issued credentials by administrators.

5.

...

2.3. Ledger Management

...

Issuer Side Administrators should have the capability to trace

...

and monitor changes made

...

to a credential using a ledger.

5.

...

2.4. Controls by Issuers

  1. The format of the credential to be Issued

  2. The type of the credential to be issued

  3. The authentication methods for issuing a credential

  4. The authentication methods to share a credential from a wallet

...

6.

...

Wallet Usage

This section will detail the usage of wallet once the credentials are onboarded on the wallet.

6.1. Credentials for Authentication

This feature allows credential holders to authenticate themselves using selected credentials stored in the wallet, leveraging diverse authentication mechanisms available within the wallet's functionality.

5.1. Authentication Methods

The wallet should be able to support multiple authentication methods, including but not limited to biometrics (fingerprint, facial recognition), PIN, and passphrase. This would enable the holder to have the flexibility to choose and configure their preferred authentication method.

5.2. Secure Authentication Protocols

The wallet should have robust and secure authentication protocols, ensuring the confidentiality and integrity of authentication processes. Industry-standard protocols such as OAuth or OpenID Connect should be used for secure interactions.The type of authentication methods supported by a credential can be defined by the issuer.

6.2. Using Wallet for Signing Documents

This feature allows the user to take a document as input and sign it using the user’s key present in the user’s device which is bounded to a specific credential.

6.2. Using Wallet for storing and sharing Documents

The user can use his wallet like a Personal Vault.

This feature allows the user to save and share personals documents (eg passport, birth certificate, diploma,…)