SID-TRUST-03 — Issuer and Verifier Trust Gating

Property	Value
Owner	platform
Category	technical
CSF Function	protect
Group	Trust Evaluation Controls

Description

Mandatory trust evaluation before credential acceptance (issuance) and before credential disclosure (presentation). In OID4VCI: issuer signed_metadata JWT verified, key material evaluated via AuthZEN. In OID4VP: verifier request JWT x5c/jwk extracted and evaluated before disclosing any credentials. Untrusted entities rejected with user-facing error.

Components

Wallet Backend (Go)
Trust Service (AuthZEN)

Source References

go-wallet-backend/oid4vci.go
go-wallet-backend/oid4vp.go
go-wallet-backend/trust.go

Framework Requirements

EUDI Security Requirements: WUP-8.2.3-Fun-01, WUP-8.2.3-Fun-02, WUP-8.2.3-Fun-03, WUH-8.3.2-Sec-03, WUH-8.3.3-Sec-02, WIN-8.4.2-Sec-02

FitCEM Wallet Instance: FIT-AU-13, FIT-AU-17

Description​

Components​

Source References​

Framework Requirements​

Description

Components

Source References

Framework Requirements