You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: draft-ietf-oauth-sd-jwt-vc.md
+5-4Lines changed: 5 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -305,11 +305,11 @@ Examples of what presentations of SD-JWT VCs might look like are provided in (#p
305
305
## Verification and Processing {#vc-sd-jwt-verification-and-processing}
306
306
307
307
The recipient (Holder or Verifier) of an SD-JWT VC MUST process and verify an
308
-
SD-JWT VC as described in Section 8 of
308
+
SD-JWT VC as described in Section 7 of
309
309
[@!I-D.ietf-oauth-selective-disclosure-jwt].
310
310
311
311
If Key Binding is required (refer to the security considerations in Section 9.5 of [@!I-D.ietf-oauth-selective-disclosure-jwt]), the Verifier MUST verify the KB-JWT
312
-
according to Section 7 of [@!I-D.ietf-oauth-selective-disclosure-jwt]. To verify
312
+
according to Section 7.3 of [@!I-D.ietf-oauth-selective-disclosure-jwt]. To verify
313
313
the KB-JWT, the `cnf` claim of the SD-JWT MUST be used.
314
314
315
315
Furthermore, the recipient of the SD-JWT VC MUST validate the public verification key
@@ -736,8 +736,8 @@ Note that `iss` and `vct` are always required by this specification.
736
736
737
737
### Schema Validation {#schema-validation}
738
738
739
-
If a `schema` or `schema_uri` property is present, a Consumer MUST validate the JSON document resulting from the SD-JWT verification algorithm
740
-
(as defined in Section 7 of [@!I-D.ietf-oauth-selective-disclosure-jwt]) against the JSON Schema document provided by the `schema` or `schema_uri` property.
739
+
If a `schema` or `schema_uri` property is present, a Consumer MUST validate the Processed SD-JWT Payload JSON document resulting from the SD-JWT verification algorithm
740
+
(as defined in Section 7.3 of [@!I-D.ietf-oauth-selective-disclosure-jwt]) against the JSON Schema document provided by the `schema` or `schema_uri` property.
741
741
742
742
If an `extends` property is present, the schema of the extended type MUST also be validated in the same manner. This process includes
743
743
validating all subsequent extended types recursively until a type is encountered that does not contain an `extends` property in its Type Metadata.
@@ -1597,6 +1597,7 @@ for their contributions (some of which substantial) to this draft and to the ini
1597
1597
* Document reasons for not using JSON Pointer or JSON Path (Issue #267)
1598
1598
* Clarify that private claim names MAY be used
1599
1599
* Update PID Example
1600
+
* Fix section numbering in a few SD-JWT references
0 commit comments