Emerald Community Engagement Champion
Credentials on the web
By Simone Onofri, Senior Principal Security Specialist
A demo of digital credentials on a mobile phone.
Video
Transcript
So we are working on the digital credentials API which is probably an important component in the digital credentials ecosystem.
This is from a phone. We can see there was a request of specific information.
There was a first ‘do you do trust your website for this data?’. Then there was a connection with the wallet to understand the data. Then also for continuing the authentication part also for the wallet.
So if there are biometric things, that can be enabled. Some interesting places in which we can put for example an alert. And when we are happy to share with ‘digital-credentials.dev’ all of our information, we can just share, get the biometric authentication and this information are presented in a verified way to to our website.
This is one of the two flows we can have with digital credentials APIs.
Just to summarize: We have the first step when there was a presentation request that arrives to the browser. There was a first step like trusting the origin which is in this case, ‘digital-credentials.dev’, that you can test also by yourself. (If you need some information for testing, just drop me a message.)
Then, there was this modal window in which there are, for example, this driving license inside the bullet and because the presentation request contains also the specific attributes or claims that are requested, then there was the latest window before the biometric authentication.
So, if finally, we would like to share with this website from this wallet this specific credential, the driver license, and these properties, attributes and claims about this credential.
There's also maybe an interesting discussion in particular because we are thinking a little about this problem by government issued credential. If this verifier, so the website, is in a specific list and at the end after pressing the button share and authenticating with the wallet, we can just send this kind of data to the website.
(Tsutomu
Nakauchi Foundation)