Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

define where in mdoc presentation to include transaction data #259

Open
Sakurann opened this issue Sep 11, 2024 · 6 comments
Open

define where in mdoc presentation to include transaction data #259

Sakurann opened this issue Sep 11, 2024 · 6 comments
Labels
has-PR transaction data
Milestone
Final 1.0

Comments

@Sakurann
Copy link
Collaborator

for sd-jwt vc, it is in key binding jwt. for mdoc, is it session_transcript?
@Sakurann Sakurann mentioned this issue Sep 11, 2024
Merged
5 tasks
@c2bo
Copy link
Member

c2bo commented Sep 11, 2024

If I recall correctly, someone mentioned a week ago that this is already defined/proposed somewhere for mDoc? Might've been @martijnharing (sorry if I recalled and tagged you incorrectly)?

@jogu
Copy link
Collaborator

jogu commented Sep 12, 2024

does this issue overlap with #174 ? It seems like we can probably close one of them?

@Sakurann
Copy link
Collaborator Author

I was hoping to close #174 and few other issues with PR #197

@leecam
Copy link
Contributor

leecam commented Oct 10, 2024

for mdocs wouldn't it be in the device signed data?

@Sakurann Sakurann mentioned this issue Nov 19, 2024
Closed
@Sakurann Sakurann added the has-PR label Dec 5, 2024
@Sakurann Sakurann added this to the Final 1.0 milestone Dec 5, 2024
@babisRoutis
Copy link

Dear @Sakurann

Kindly requesting, to consider prioritizing the present issue.

EUDIW Ref. Impl. has to add support for transaction_data to the rQES use-cases.

Given that currently (ARF 1.5) defines PID only in mso_mdoc, our RSSP AS requires from the holder to present a PID in mso_mdoc to authorize the use of a signing key.

@sander sander mentioned this issue Mar 11, 2025
Merged
@sander
Copy link

sander commented Mar 11, 2025
edited
Loading

EUDIW Ref. Impl. has to add support for transaction_data to the rQES use-cases.

Given that currently (ARF 1.5) defines PID only in mso_mdoc, our RSSP AS requires from the holder to present a PID in mso_mdoc to authorize the use of a signing key.

@babisRoutis This is an important use case. See #421 for a first clarification. If this clarification is correct, the work is out of scope for OIDF and in scope for CSC and EC. In my interpretation, we need:

  • the CSC data model to specify:
    • a transaction data type https://cloudsignatureconsortium.org/2025/qes for authorizing the use of a signing key;
    • an mdoc NameSpace identifier
    • for each parameter in this transaction data type:
      • the DataElementIdentifier string value;
      • the DataElementValue CBOR type and encoding rules;
  • the PID rulebook to specify:
    • support for these device-signed (mdoc authenticated) attributes.

@riittapartala riittapartala mentioned this issue Mar 20, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
has-PR transaction data
Projects
None yet
Milestone
Final 1.0
Development

Successfully merging a pull request may close this issue.

define where in mdocs to include transaction_data_hashes openid/OpenID4VP
6 participants
@sander @jogu @c2bo @leecam @Sakurann @babisRoutis