[OID4VCI] CWT proof requirements

Issue #1932 resolved

Takahiko Kawasaki created an issue 2023-05-16

Regarding the proof in a credential request defined in OID4VCI. The "Proof Types" section in the current snapshot of the specification lists JWT proof requirements and CWT proof requirements as follows.

JWT proof requirements:

typ
alg
kid
jwk
x5c
iss
aud
iat
nonce

CWT proof requirements:

Label 1 (alg)
Label 3 (content type)
Label COSE_Key
Label 33 (x5chain)
Claim Key 3 (aud)
Claim Key 6 (iat)
Claim Key 10 (Nonce)

The CWT proof does not have requirements that correspond to kid and iss requirements for the JWT proof. Is this difference intentional?

Comments (8)

Torsten Lodderstedt
Thanks for raising this issue. I’m not an CWT expert but here are my thoughts:
- iss (Claim Key 1) should be added
- kid (Label 4) could also be added. However, I’m not sure the kid makes a lot of sense for a proof of possession. I would assume it makes sense of the proof is signed with a key associated with a DID. In all other cases, I would assume the key is kept by the sender and cannot be discovered using a key distribution mechanism, like jwks_uri. That holds true for JWT based proofs as well.
‌
- 2023-05-16T14:01:58+00:00
Takahiko Kawasaki reporter
If the value of kid is not a DID URL, the implementation of the credential issuer may try to search the JWK Set of the client for the key identified by the kid. This is possible when the access token presented at the credential endpoint is associated with a client. The JWK Set of the client can be (1) the value of the jwks client metadata, (2) the resource pointed to by the jwks_uri client metadata, or (3) the resource pointed to by the signed_jwks_uri client metadata (OIDC Federation).
- 2023-05-16T14:57:09+00:00
Torsten Lodderstedt
The proof type is about prof of possession for key material controlled by the user(holder. I’m not sure we want to use client keys for this kind of proof of possession as this would mean a client could do proof of possession (and credential presentations) with the same key for different users. My feeling is the key will always be send with the request (with the only exception of DIDs),
- 2023-05-16T20:24:02+00:00
Takahiko Kawasaki reporter
@Torsten Lodderstedt Thank you. I confused the key of the holder with the key of the client application. But, maybe I’m not alone. User, Holder, Wallet, OAuth/OIDC Client, DID subject, DID controller are easily confused. Holder sometimes means User, sometimes means Wallet, … I should use the terms carefully. I’ll need to read specifications again carefully.
- 2023-05-17T15:02:24+00:00
Kristina Yasuda
- changed status to open
05182023 looks like we need to add these 2 claims
- 2023-05-18T15:59:13+00:00
Kristina Yasuda
PR #523 for iss. (did not do for kid because did not look like there was an agreement)
- 2023-05-22T20:15:27+00:00
Kristina Yasuda
PR merged. is there agreement not to add kid to a CWT proof type and close the issue? or do we want to keep this issue open and potentially add kid? (closing if no response in a week)
- 2023-06-08T16:51:36+00:00
Mark Haine
- changed status to resolved
Migrated to GitHub

https://github.com/openid/OpenID4VCI
- 2023-09-01T16:47:55+00:00
Log in to comment

Assignee: –

Type: bug

Priority: major

Status: resolved

Component: Credential Issuance

Milestone: –

Version: –

Votes: 0

Watchers: 1