SD-JWT Verifier: Verify Holder Binding #3471

sandrask · 2023-01-11T18:37:09Z

If Holder Binding is required, verify that the Holder Binding JWT is signed by the Holder and valid.

Validation steps:

If Holder Binding JWT is not provided, the Verifier MUST reject the Presentation.
Determine the public key for the Holder from the SD-JWT.
Ensure that a signing algorithm was used that was deemed secure for the application. Refer to [RFC8725], Sections 3.1 and 3.2 for details. The none algorithm MUST NOT be accepted.
Validate the signature over the Holder Binding JWT.
Check that the Holder Binding JWT is valid using nbf, iat, and exp claims, if provided in the Holder Binding JWT.
Determine that the Holder Binding JWT is bound to the current transaction and was created for this Verifier (replay protection). This is usually achieved by a nonce and aud field within the Holder Binding JWT.

If Holder Binding is required, verify that the Holder Binding JWT is signed by the Holder and valid. Closes hyperledger-archives#3471 Signed-off-by: Sandra Vrtikapa <[email protected]>

sandrask self-assigned this Jan 11, 2023

sandrask added the enhancement New feature or request label Jan 11, 2023

sandrask added this to Aries Go Jan 11, 2023

sandrask moved this to Todo in Aries Go Jan 11, 2023

sandrask added this to the 0.1.7 milestone Jan 11, 2023

sandrask mentioned this issue Jan 11, 2023

Implement Selective Disclosure (SD-JWT) #3443

Open

sandrask mentioned this issue Jan 13, 2023

feat: SD-JWT Verifier: Verify Holder Binding #3475

Merged

fqutishat closed this as completed in bc844c2 Jan 16, 2023

github-project-automation bot moved this from Todo to Done in Aries Go Jan 16, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SD-JWT Verifier: Verify Holder Binding #3471

SD-JWT Verifier: Verify Holder Binding #3471

sandrask commented Jan 11, 2023

SD-JWT Verifier: Verify Holder Binding #3471

SD-JWT Verifier: Verify Holder Binding #3471

Comments

sandrask commented Jan 11, 2023