openid / connect / issues / #1988 - Checks in Section 11.2 — Bitbucket

Issue #1988 resolved

Fabian Hauck created an issue 2023-07-14

The Verifiable Credential Issuance spec says in section 11.2 that certain checks should be performed upon receipt of a credential offer. Since there is no list of checks and no reference to another section, I was wondering what kind of checks a wallet could do without knowing anything about the credential offer?

Comments (5)

Michael Jones
- changed status to new
Submitted -> New
- 2023-07-17T23:19:48+00:00
Kristina Yasuda
The Wallet MUST apply the same checks on the Credential Issuer that it would apply when the flow is started from the Wallet itself since the Credential Issuer is not trustworthy just because it sent the Credential Offer.

is this the text you are referring to? I think it is pretty clear that “checks are on the Credential Issuer” - getting Issuer metadata, checking if the Issuer is a trusted issuer or not, etc.

‌
- 2023-07-18T09:22:41+00:00
Kristina Yasuda
was the question answered..?
- 2023-08-11T04:36:31+00:00
Fabian Hauck reporter
Yes, thank you, but I think this is a little unclear in the spec.
- 2023-08-12T15:54:29+00:00
Mark Haine
- changed status to resolved
Migrated to GitHub

https://github.com/openid/OpenID4VCI
- 2023-09-01T16:39:44+00:00
Log in to comment

Assignee: –

Type: bug

Priority: minor

Status: resolved

Component: Credential Issuance

Milestone: –

Version: FINAL

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!