SID-TRANS-02 — OpenID4VCI Credential Issuance Protocol
| Property | Value |
|---|---|
| Status | verified |
| Owner | platform |
| Category | technical |
| CSF Function | protect |
| Group | Transport Security Controls |
Description
Full OID4VCI flow: credential offer parsing → metadata fetch → issuer trust evaluation via AuthZEN → OAuth token exchange → credential request with proof. Proof types: JWT, DI-VP, attestation. Algorithm 'none' rejected. Private keys in headers rejected.
Components
- Wallet Backend (Go)
- VC Issuer/Verifier
Source References
Audit Findings
| Finding | Severity | Status |
|---|---|---|
| EN-S-4 — Partial wallet unit security and lifecycle | medium | in progress |