OpenID4VCI icon indicating copy to clipboard operation
OpenID4VCI copied to clipboard
verified publisher icon openid

The wallet attestation is a signed attestation that can be used in the client authentication mechanisms

Open peppelinux opened this issue 1 year ago • 1 comments

Technically the wallet attestation is a signed attestation that can be used in the client authentication mechanisms, as outlined in my previous comment.

if agreed, I can therefore purpose a rewording also here

Originally posted by @peppelinux in https://github.com/openid/OpenID4VCI/pull/408#discussion_r1874985300

peppelinux avatar Dec 12 '24 15:12 peppelinux

not sure i remember the context, but wallet attestation is indeed already being used for client authentication at the token and PAR endpoints, right?

Sakurann avatar Jan 24 '25 21:01 Sakurann

Even after reading the context, I'm not sure what is suggested to change here and why?

Wallet Attestation as defined in the VCI spec is specifically for client authentication. It's an extension of an OAuth specification for client authentication. It would I could actually be actively dangerous to suggest that a Wallet Attestation (as defined in the VCI spec currently) is used for anything other than client authentication.

I'd suggest we close unless anyone (@peppelinux ?) can clarify?

jogu avatar Jun 22 '25 14:06 jogu