OpenID4VCI icon indicating copy to clipboard operation
OpenID4VCI copied to clipboard
verified publisher icon openid

Ambiguity in `batch_size`: maximum number of keys or proofs array size?

Open christol129 opened this issue 3 months ago • 2 comments

Section 12.2.4-2.9.1 of OpenID4VCI states:

batch_size: REQUIRED. Integer value specifying the maximum array size for the proofs parameter in a Credential Request. It MUST be 2 or greater.

Considering appendices F and D, which allow key attestations with multiple keys provided within a single JWT, batch_size should arguably define the maximum number of keys, and not the size of the proofs array.

christol129 avatar Sep 23 '25 08:09 christol129

Agreed; we should be able to fix this in 1.1 or perhaps in an errata.

jogu avatar Sep 23 '25 09:09 jogu

Please see issue https://github.com/openid/OpenID4VCI/issues/645 and the associated pull request https://github.com/openid/OpenID4VCI/pull/640. The issue and the pull request aim to introduce the Proven Key term and use it in the batch_size description and in other places. The suggested change in that pull request would fix the ambiguity raised in this issue:

  • batch_size: REQUIRED. Integer value specifying the maximum number of Proven Keys in the proofs parameter in a Credential Request. It MUST be 2 or greater.

joelposti avatar Oct 31 '25 12:10 joelposti