SID-TRANS-03 — OpenID4VP Credential Presentation Protocol

Property	Value
Owner	platform
Category	technical
CSF Function	protect
Group	Transport Security Controls

Description

Full OID4VP flow: request parsing → request JWT verification (x5c/jwk) → verifier trust evaluation → credential matching (DCQL/Presentation Exchange) → user consent → VP submission via direct_post. client_id_scheme validated: x509_san_dns, x509_san_uri, did, verifier_attestation.

Components

• Wallet Backend (Go)
• VC Issuer/Verifier
• Wallet Frontend

Source References

• go-wallet-backend/oid4vp.go
• vc/openid4vp/

Framework Requirements

EUDI Security Requirements: CS-I.3-WUS

FitCEM Wallet Instance: FIT-AU-15

ISO 27001 Annex A: A.5.14