diff --git a/versione-corrente/en/.doctrees/environment.pickle b/versione-corrente/en/.doctrees/environment.pickle index 8e3f431c0..362182c80 100644 Binary files a/versione-corrente/en/.doctrees/environment.pickle and b/versione-corrente/en/.doctrees/environment.pickle differ diff --git a/versione-corrente/en/.doctrees/relying-party-solution.doctree b/versione-corrente/en/.doctrees/relying-party-solution.doctree index be7a11daa..6d9f8bb89 100644 Binary files a/versione-corrente/en/.doctrees/relying-party-solution.doctree and b/versione-corrente/en/.doctrees/relying-party-solution.doctree differ diff --git a/versione-corrente/en/_images/cross_device_auth_seq_diagram.svg b/versione-corrente/en/_images/cross_device_auth_seq_diagram.svg index 2ac670e5a..1655856e4 100644 --- a/versione-corrente/en/_images/cross_device_auth_seq_diagram.svg +++ b/versione-corrente/en/_images/cross_device_auth_seq_diagram.svg @@ -1,2 +1,2 @@ -UserUserWallet InstanceWallet InstanceRelying PartyRelying PartyAuthentication1Request Protected Resource2Create Authorization Request3Create QR Code4Show QRCode5Scan QR Code6Extract Request URIfrom QR Code7GET Request Objectby Request URIwith Wallet Instance Attestationas DPoP token8Attest Wallet Instance Trust9Request Object10Attest Relying Party Trust11Verify Relying Party Metadata12Validate JWT Signature13Validate Requested VP(s)14Request for consent15Confirmed16POST Authorization Responsewith vp_token17Attest Credential Issuer Trust18Validate JWT Signature19Process the credential20Process Authorization ResponseProcess phase requires to:- validate integrity, authenticity, and holder binding of VP(s)- ensure all VP(s) are linked with Verifier- ensure all VP(s) are linked with current session nonce- ensure all VC(s) requested is present21OK \ No newline at end of file +UserUserWallet InstanceWallet InstanceRelying PartyRelying Party1Request Protected ResourceAuthentication2Create Authorization Request3Create request_uri resource4QRCode OR HTTP Redirect (302) with the request_uriCross Device only5Scan QR Code6Extract Request URIfrom QR Code7GET Request Objectby Request URIwith Wallet Instance Attestationas DPoP token8Attest Wallet Instance Trust9Request Object10Attest Relying Party Trust11Verify Relying Party Metadata12Validate JWT Signature13Validate Requested VP(s)14Request for consent15Confirmed16POST Authorization Responsewith vp_token17Attest Credential Issuer Trust18Validate JWT Signature19Process the credential20Process Authorization ResponseProcess phase requires to:- validate integrity, authenticity, and holder binding of VP(s)- ensure all VP(s) are linked with Verifier- ensure all VP(s) are linked with current session nonce- ensure all VC(s) requested is present21OK \ No newline at end of file diff --git a/versione-corrente/en/_sources/relying-party-solution.rst.txt b/versione-corrente/en/_sources/relying-party-solution.rst.txt index a35bf3e4a..8698b7ec1 100644 --- a/versione-corrente/en/_sources/relying-party-solution.rst.txt +++ b/versione-corrente/en/_sources/relying-party-solution.rst.txt @@ -16,7 +16,7 @@ This section describes how a Relying Party may ask to a Wallet Instance the pres In this section the following flows are described: -- **Same Device Flow**, where the Verifier and the Wallet Instance acts in the same device. +- **Remote Same Device Flow**, where the Verifier and the Wallet Instance acts in the same device. - **Remote Cross Device Flow**, where the Verifier and the Wallet Instance acts in different devices and the Verifier is a remote Relying Party. The flows are analyzed in this chapter, taking into account security and privacy considerations. @@ -25,27 +25,22 @@ The flows are analyzed in this chapter, taking into account security and privacy Relying Party and Verifier are the same entity. -Same Device Flow ----------------- -In the **Same Device Authorization Flow**, the User interacts with a Verifier that resides in the same device of the Wallet Instance. -This scenario utilizes HTTP redirects to finalize the authorization phase and obtain Verifiable Presentation(s). - -.. note:: - - This flow will be described more in detail in future releases of this documentation. +Remote Protocol Flow +-------------------- +In the **Same Device** and **Cross Device** Authorization Flows, the User interacts with a remote Relying Party. +This scenario requests the Verifier to provide the URL where the signed request object is available. +The Verifier MUST detect the device type of the requestor (Wallet Instance), if it is a mobile device or a workstationm and activate one the supported remote flows: -Remote Cross Device Flow ---------------------------- -In the **Cross Device Authorization Flow**, the User interacts with a remote Relying Party. -This scenario requests the Verifier to show a QR Code which the User frames with their Wallet Instance. +* In the *Same Device** flow the Verifier MUST provide a HTTP redirect (302) location to the Wallet Instance; +* In the *Cross Device** flow the Verifier MUST provide a QR Code which the User frames with their Wallet Instance. Once the Relying Party authentication is performed by the Wallet Instance, the User gives the consent for the release of the personal data, in the form of a Verifiable Presentation. .. image:: ../../images/cross_device_auth_seq_diagram.svg :align: center - :target: //www.plantuml.com/plantuml/png/ZPF1Rjf048Rl-nIZd5gfUG4agaGqgcXLuG99Bf6gnJlWRSmidPsrIv--QpjhOn1IRlZtDpyp_upll6YMi2-L3k8ex3V8IXsYPdDxq2Hmy-YHRq1x26FzMPSb2imfMb2EBLAFaIMMHqixoA9uR84AbPfEuJv8WHH1BTOHm7Ig0jn-ZgydiCG_0Rr0naum5pHHyIvmZahdOYijsDXKc0fcZ55hFHtRVwrbShd4VYvXvaoghoUmAbmTrLOqUFeN_UzQgJhHkQRaqOiFVuKZtBV-k9o_q9RTVY1J5ryVrZsssFp6MFL2c-DfQHHgAmMS1Gpt8f5enuk8zl0bSnc8UqMwaanNSM6qvl2MJDV-k9zn26d6v3LQQUVK8q_8TdiyGtwWQAD53vGkRHGGlZslOMLtf2KmNhnENQ61f-o3_zW1OUXswnXoHnv9Xl632ccgcQEjvJsQqu72i8biiLfV78q_D8unNcXNK1r-lIFV6QD14gjBc7iVa5F22Rmsym1ax7Bq7gH0o7kxI-1AmugS8BWAUGGV2kqHE0Pc6QEvcyJ9Rg5AtLWItB6LuoVGwOlidiX0uKg331jBfjccstPxQ0oGV624U5QT1Ze-bPPUqRIvTPTWaTy5vu4PIS2ZzyrGv2Z7yyfPKydzITWu7AD7EhtZnNTbyFIZFJlbEoGJzkL_ + :target: //www.plantuml.com/plantuml/png/ZPDFQnin4CNl-XH3JWaqKDfRm2N13MrQYhUEarm2GLwDRJNhaJiQhUj--iwkkki_nf3RUlJJqvkPv-iebYKjAsEJ14hBAR8nAwtvqgyi2PmzHEGpi17IVlt9LXKAt95AK8ajijv7nbXjFCsXqEAc1Meq9i7b9_suWZ7-JXW52Ww2fQ3JIWo9IuK60xX9ia1IDIi-4C1WO6mflhQ2ZKwDdSwGKMij7zZ_RV5E_1ZZVF2Is0DtxsLgVGK_nyFW44PZ-3gP5AhYFAitEF_u_iC5hBqiG1Px8iRXhgt-UstCd4DQwRiXHlYCjIyH0bKRiywFmNrfIL-4vic-UFj7M4NwwJoCxvvfnc7PaqZEPBnfwyljf6T7qr-DsMUQRdRlQw5rVh0ok15HefsN8bPD5g402Qz89qQTRnm9JJZz7tNkOT_FmOHoextMNaYoKeyy8llPvW3vWMAT5RkbREMrWF3jQGBtVavM4kFHSUSA7JmMv_4Y0sdhTXOOoa0HIRRj9vEwheQ1PfwNw7ORIjjD5AFxoL4AuwfHrF7cyDIhbpVCTyZeckZR2kvYJCZzX3DuikSjK70eCSOshMKlTmoSC6me24AeaVVWrSB6d7xFgEBXIZkxXBfpuqbmpbusxy1sVz_yYnmiGkMGOUh9DTiCixo7HW0f9aRGMEKQM4QeFBsYQ-UMa-2HtmINYHb98AhbfYaALEBXpM5pa_j8U6sECIBjvdZqVNVLQsCEedoDvDAo-WS0 .. list-table:: :widths: 50 50 @@ -58,11 +53,11 @@ Once the Relying Party authentication is performed by the Wallet Instance, the U * - **2** - The Relying Party creates an Authorization Request which contains the scopes of the request. * - **3** - - The Relying Party inserts the reference URI of the *request_uri* into a QR Code. + - In the **Same Device Flow** the Relying Party responses with the Request URI in the form of HTTP Location (302). In the **Cross Device Flow** the Request URI is provided in the form of a QR Code. * - **4** - - The QR Code is shown to the User that frames it. + - Only in **Cross Device Flow**: The QR Code is shown to the User that frames it. * - **5** and **6** - - The Wallet Instance decodes the QR Code and extracts the Request URI from the payload of the QR Code. + - Only in **Cross Device Flow**: The Wallet Instance decodes the QR Code and extracts the Request URI from the payload of the QR Code. * - **7** - The Wallet Instance requests the content of the Authorization Request by invoking the Request URI, passing an Authorization DPoP HTTP Header containing the Wallet Instance Attestation and the DPoP proof HTTP Header. * - **8** @@ -90,9 +85,10 @@ Once the Relying Party authentication is performed by the Wallet Instance, the U * - **20** - The Relying Party notifies the Wallet Instance that the operation ends successfully. + Authorization Request Details ----------------------------- -In a Cross Device Flow, a QR Code is shown by the Relying Party to the User in order to issue the Authorization Request. +In the Cross Device Flow, a QR Code is shown by the Relying Party to the User in order to issue the Authorization Request. The User frames the QR Code using the Wallet Instance, then grants the consent to release their attributes to the RP. @@ -102,6 +98,20 @@ The payload of the QR Code is a **Base64 encoded string** based on the following eudiw://authorize?client_id=`$client_id`&request_uri=`$request_uri` +In the Same Device Flow the parameter **client_id** and **request_uri** are the same if the ones used in the Cross Device Flow with the only difference about the url schema and the removal of the Verifier's FQDN from the URL. + +In the Same Device Flow the Relying Party uses a HTTP response redirect (status code 302) to give to the Wallet Instance the resource where the request object is available for download, as represented in the following non-normative example: + + +.. code:: text + + HTTP/1.1 /pre-authz-endpoint Found + Location: https://verifier.example.org/request_uri_endpoint? + client_id=https%3A%2F%2Fverifier.example.org%2Fcb + &request_uri=https%3A%2F%2Fverifier.example.org%2Frequest_uri_endpoint + +.. note:: + The Same Device flow proposed in this specification is under discussion and must be considered as experimental. Where: @@ -139,12 +149,11 @@ Below follows its Base64 decoded content: eudiw://authorize?client_id=https://verifier.example.org&request_uri=https://verifier.example.org/request_uri - Request Object Details ---------------------- The following actions are made by the Wallet Instance: -- scan the QR Code; +- scan the QR Code (Cross Device only); - extract from the payload the ``request_uri`` parameter; - invoke the retrieved URI; - provide in the request its Wallet instance Attestation, using `DPOP`_ to proof the legitimate possession of it; @@ -417,7 +426,7 @@ Below is a non-normative example of the decrypted JSON ``response`` content: } } -Where the following parameters are used: +Where the following parameters are used: .. list-table:: :widths: 25 50 @@ -430,7 +439,7 @@ Where the following parameters are used: * - **presentation_submission** - JSON Object contains mappings between the requested Verifiable Credentials and where to find them within the returned VP Token. * - **state** - - Unique identifier provided by the Verifier inside the Authorization Request + - Unique identifier provided by the Verifier within the Authorization Request. Below is a non-normative example of the ``vp_token`` decoded content, represented in the form of JWS header and payload, separated by a period: @@ -449,10 +458,31 @@ Below is a non-normative example of the ``vp_token`` decoded content, represente "aud": "https://verifier.example.org/callback", "iat": 1541493724, "exp": 1573029723, - "nonce": "n-0S6_WzA2Mj", + "nonce": "2c128e4d-fc91-4cd3-86b8-18bdea0988cb" "vp": "~~~...~" } +Where the following parameters are used: + +.. list-table:: + :widths: 25 50 + :header-rows: 1 + + * - **Name** + - **Description** + * - **vp** + - The digital credential in its original state. The public key contained in the digital credential MUST be used to verify the entire VP JWS as Proof of Possession of the private key which the public part is carried in the digital credential (Holder Key Binding). + * - **jti** + - JWS Unique identifier. + * - **iat** + - Unix timestamp of the issuance datetime. + * - **exp** + - Unix timestamp beyond which the presentation of the digital credential will no longer be considered valid. + * - **aud** + - Audience of the VP, corresponding to the ``redirect_uri`` within the Authorization request issued by the Relying Party. + * - **nonce** + - Nonce provided by the Verifier within the Authorization Request. + Relying Party Entity Configuration --------------------------------------------- According to the `Trust Model`_ section, the Verifier is a Federation Entity and MUST expose a .well-known endpoint containing its Entity Configuration. diff --git a/versione-corrente/en/algorithms.html b/versione-corrente/en/algorithms.html index 056c73244..ae4a67063 100644 --- a/versione-corrente/en/algorithms.html +++ b/versione-corrente/en/algorithms.html @@ -693,8 +693,7 @@

{{ item.title }}

  • Relying Party Solution
      -
    • Same Device Flow
      • -
    • Remote Cross Device Flow
      • +
    • Remote Protocol Flow
    • Authorization Request Details
    • Request Object Details
    • Relying Party Solution
        -
      • Same Device Flow
        • -
      • Remote Cross Device Flow
        • +
      • Remote Protocol Flow
      • Authorization Request Details
      • Request Object Details
        • DPoP HTTP Header
          • diff --git a/versione-corrente/en/backup-restore.html b/versione-corrente/en/backup-restore.html index c78c98014..5ad28618b 100644 --- a/versione-corrente/en/backup-restore.html +++ b/versione-corrente/en/backup-restore.html @@ -693,8 +693,7 @@

          {{ item.title }}

      • Relying Party Solution
          -
        • Same Device Flow
          • -
        • Remote Cross Device Flow
          • +
        • Remote Protocol Flow
        • Authorization Request Details
        • Request Object Details
        • Relying Party Solution
            -
          • Same Device Flow
            • -
          • Remote Cross Device Flow
            • +
          • Remote Protocol Flow
          • Authorization Request Details
          • Request Object Details
            • DPoP HTTP Header
              • diff --git a/versione-corrente/en/contribute.html b/versione-corrente/en/contribute.html index d1aa27852..a51822d05 100644 --- a/versione-corrente/en/contribute.html +++ b/versione-corrente/en/contribute.html @@ -693,8 +693,7 @@

              {{ item.title }}

          • Relying Party Solution
              -
            • Same Device Flow
              • -
            • Remote Cross Device Flow
              • +
            • Remote Protocol Flow
            • Authorization Request Details
            • Request Object Details
            • Relying Party Solution
                -
              • Same Device Flow
                • -
              • Remote Cross Device Flow
                • +
              • Remote Protocol Flow
              • Authorization Request Details
              • Request Object Details
                • DPoP HTTP Header
                  • diff --git a/versione-corrente/en/defined-terms.html b/versione-corrente/en/defined-terms.html index 3e5248bab..c4cef844c 100644 --- a/versione-corrente/en/defined-terms.html +++ b/versione-corrente/en/defined-terms.html @@ -693,8 +693,7 @@

                  {{ item.title }}

              • Relying Party Solution
                  -
                • Same Device Flow
                  • -
                • Remote Cross Device Flow
                  • +
                • Remote Protocol Flow
                • Authorization Request Details
                • Request Object Details
                • Relying Party Solution
                    -
                  • Same Device Flow
                    • -
                  • Remote Cross Device Flow
                    • +
                  • Remote Protocol Flow
                  • Authorization Request Details
                  • Request Object Details
                    • DPoP HTTP Header
                      • diff --git a/versione-corrente/en/genindex.html b/versione-corrente/en/genindex.html index a29142b1e..90fd10ae9 100644 --- a/versione-corrente/en/genindex.html +++ b/versione-corrente/en/genindex.html @@ -691,8 +691,7 @@

                      {{ item.title }}

                  • Relying Party Solution
                      -
                    • Same Device Flow
                      • -
                    • Remote Cross Device Flow
                      • +
                    • Remote Protocol Flow
                    • Authorization Request Details
                    • Request Object Details
                    • Relying Party Solution
                        -
                      • Same Device Flow
                        • -
                      • Remote Cross Device Flow
                        • +
                      • Remote Protocol Flow
                      • Authorization Request Details
                      • Request Object Details
                        • DPoP HTTP Header
                          • diff --git a/versione-corrente/en/index.html b/versione-corrente/en/index.html index a5aefa606..7f2826d38 100644 --- a/versione-corrente/en/index.html +++ b/versione-corrente/en/index.html @@ -692,8 +692,7 @@

                          {{ item.title }}

                      • Relying Party Solution
                          -
                        • Same Device Flow
                          • -
                        • Remote Cross Device Flow
                          • +
                        • Remote Protocol Flow
                        • Authorization Request Details
                        • Request Object Details
                        • Relying Party Solution
                            -
                          • Same Device Flow
                            • -
                          • Remote Cross Device Flow
                            • +
                          • Remote Protocol Flow
                          • Authorization Request Details
                          • Request Object Details
                            • DPoP HTTP Header
                              • @@ -1181,8 +1179,7 @@

                              Index of contentRelying Party Solution
                                -
                              • Same Device Flow
                                • -
                              • Remote Cross Device Flow
                                • +
                              • Remote Protocol Flow
                              • Authorization Request Details
                              • Request Object Details
                                • DPoP HTTP Header
                                  • diff --git a/versione-corrente/en/pid-eaa-data-model.html b/versione-corrente/en/pid-eaa-data-model.html index 5b25f7a3e..46ea12ef6 100644 --- a/versione-corrente/en/pid-eaa-data-model.html +++ b/versione-corrente/en/pid-eaa-data-model.html @@ -693,8 +693,7 @@

                                  {{ item.title }}

                              • Relying Party Solution
                                  -
                                • Same Device Flow
                                  • -
                                • Remote Cross Device Flow
                                  • +
                                • Remote Protocol Flow
                                • Authorization Request Details
                                • Request Object Details
                                • Relying Party Solution
                                    -
                                  • Same Device Flow
                                    • -
                                  • Remote Cross Device Flow
                                    • +
                                  • Remote Protocol Flow
                                  • Authorization Request Details
                                  • Request Object Details
                                    • DPoP HTTP Header
                                      • diff --git a/versione-corrente/en/pid-eaa-issuance.html b/versione-corrente/en/pid-eaa-issuance.html index 90f54c486..e6a395fe7 100644 --- a/versione-corrente/en/pid-eaa-issuance.html +++ b/versione-corrente/en/pid-eaa-issuance.html @@ -693,8 +693,7 @@

                                      {{ item.title }}

                                  • Relying Party Solution
                                      -
                                    • Same Device Flow
                                      • -
                                    • Remote Cross Device Flow
                                      • +
                                    • Remote Protocol Flow
                                    • Authorization Request Details
                                    • Request Object Details
                                    • Relying Party Solution
                                        -
                                      • Same Device Flow
                                        • -
                                      • Remote Cross Device Flow
                                        • +
                                      • Remote Protocol Flow
                                      • Authorization Request Details
                                      • Request Object Details
                                        • DPoP HTTP Header
                                          • diff --git a/versione-corrente/en/pseudonyms.html b/versione-corrente/en/pseudonyms.html index 7bee1c080..cd0920394 100644 --- a/versione-corrente/en/pseudonyms.html +++ b/versione-corrente/en/pseudonyms.html @@ -693,8 +693,7 @@

                                          {{ item.title }}

                                      • Relying Party Solution
                                          -
                                        • Same Device Flow
                                          • -
                                        • Remote Cross Device Flow
                                          • +
                                        • Remote Protocol Flow
                                        • Authorization Request Details
                                        • Request Object Details
                                        • Relying Party Solution
                                            -
                                          • Same Device Flow
                                            • -
                                          • Remote Cross Device Flow
                                            • +
                                          • Remote Protocol Flow
                                          • Authorization Request Details
                                          • Request Object Details
                                            • DPoP HTTP Header
                                              • diff --git a/versione-corrente/en/relying-party-solution.html b/versione-corrente/en/relying-party-solution.html index 2b53384d0..f8ff895af 100644 --- a/versione-corrente/en/relying-party-solution.html +++ b/versione-corrente/en/relying-party-solution.html @@ -693,8 +693,7 @@

                                              {{ item.title }}

                                          • Relying Party Solution
                                              -
                                            • Same Device Flow
                                              • -
                                            • Remote Cross Device Flow
                                              • +
                                            • Remote Protocol Flow
                                            • Authorization Request Details
                                            • Request Object Details
                                            • Relying Party Solution
                                                -
                                              • Same Device Flow
                                                • -
                                              • Remote Cross Device Flow
                                                • +
                                              • Remote Protocol Flow
                                              • Authorization Request Details
                                              • Request Object Details

                                                In this section the following flows are described:

                                                  -

                                                • Same Device Flow, where the Verifier and the Wallet Instance acts in the same device.

                                                  • +

                                                • Remote Same Device Flow, where the Verifier and the Wallet Instance acts in the same device.

                                                • Remote Cross Device Flow, where the Verifier and the Wallet Instance acts in different devices and the Verifier is a remote Relying Party.

                                                The flows are analyzed in this chapter, taking into account security and privacy considerations.

                                                @@ -1031,21 +1029,17 @@

                                                {{ item.title }}

                                                Note

                                                Relying Party and Verifier are the same entity.

                                                -
                                                -

                                                Same Device Flow¶

                                                -

                                                In the Same Device Authorization Flow, the User interacts with a Verifier that resides in the same device of the Wallet Instance. -This scenario utilizes HTTP redirects to finalize the authorization phase and obtain Verifiable Presentation(s).

                                                -
                                                -

                                                Note

                                                -

                                                This flow will be described more in detail in future releases of this documentation.

                                                -
                                                -
                                                -
                                                -

                                                Remote Cross Device Flow¶

                                                -

                                                In the Cross Device Authorization Flow, the User interacts with a remote Relying Party. -This scenario requests the Verifier to show a QR Code which the User frames with their Wallet Instance.

                                                +
                                                +

                                                Remote Protocol Flow¶

                                                +

                                                In the Same Device and Cross Device Authorization Flows, the User interacts with a remote Relying Party. +This scenario requests the Verifier to provide the URL where the signed request object is available.

                                                +

                                                The Verifier MUST detect the device type of the requestor (Wallet Instance), if it is a mobile device or a workstationm and activate one the supported remote flows:

                                                +
                                                  +

                                                • In the Same Device* flow the Verifier MUST provide a HTTP redirect (302) location to the Wallet Instance;

                                                  • +

                                                • In the Cross Device* flow the Verifier MUST provide a QR Code which the User frames with their Wallet Instance.

                                                  • +

                                                Once the Relying Party authentication is performed by the Wallet Instance, the User gives the consent for the release of the personal data, in the form of a Verifiable Presentation.

                                                -_images/cross_device_auth_seq_diagram.svg +_images/cross_device_auth_seq_diagram.svg @@ -1064,13 +1058,13 @@

                                                Remote Cross Device Flow

                                                - + - + - + @@ -1116,12 +1110,24 @@

                                                Remote Cross Device Flow

                                                Authorization Request Details¶

                                                -

                                                In a Cross Device Flow, a QR Code is shown by the Relying Party to the User in order to issue the Authorization Request.

                                                +

                                                In the Cross Device Flow, a QR Code is shown by the Relying Party to the User in order to issue the Authorization Request.

                                                The User frames the QR Code using the Wallet Instance, then grants the consent to release their attributes to the RP.

                                                The payload of the QR Code is a Base64 encoded string based on the following format:

                                                eudiw://authorize?client_id=`$client_id`&request_uri=`$request_uri`
                                                +

                                                In the Same Device Flow the parameter client_id and request_uri are the same if the ones used in the Cross Device Flow with the only difference about the url schema and the removal of the Verifier's FQDN from the URL.

                                                +

                                                In the Same Device Flow the Relying Party uses a HTTP response redirect (status code 302) to give to the Wallet Instance the resource where the request object is available for download, as represented in the following non-normative example:

                                                +
                                                HTTP/1.1 /pre-authz-endpoint Found
+Location: https://verifier.example.org/request_uri_endpoint?
+client_id=https%3A%2F%2Fverifier.example.org%2Fcb
+&request_uri=https%3A%2F%2Fverifier.example.org%2Frequest_uri_endpoint
+
                                                +
                                                +
                                                +

                                                Note

                                                +

                                                The Same Device flow proposed in this specification is under discussion and must be considered as experimental.

                                                +

                                                Where:

                                                3

                                                The Relying Party inserts the reference URI of the request_uri into a QR Code.

                                                In the Same Device Flow the Relying Party responses with the Request URI in the form of HTTP Location (302). In the Cross Device Flow the Request URI is provided in the form of a QR Code.

                                                4

                                                The QR Code is shown to the User that frames it.

                                                Only in Cross Device Flow: The QR Code is shown to the User that frames it.

                                                5 and 6

                                                The Wallet Instance decodes the QR Code and extracts the Request URI from the payload of the QR Code.

                                                Only in Cross Device Flow: The Wallet Instance decodes the QR Code and extracts the Request URI from the payload of the QR Code.

                                                7

                                                The Wallet Instance requests the content of the Authorization Request by invoking the Request URI, passing an Authorization DPoP HTTP Header containing the Wallet Instance Attestation and the DPoP proof HTTP Header.

                                                @@ -1160,7 +1166,7 @@

                                                Authorization Request Details¶

                                                The following actions are made by the Wallet Instance:

                                                  -

                                                • scan the QR Code;

                                                  • +

                                                • scan the QR Code (Cross Device only);

                                                • extract from the payload the request_uri parameter;

                                                • invoke the retrieved URI;

                                                • provide in the request its Wallet instance Attestation, using DPOP to proof the legitimate possession of it;

                                                  • @@ -1470,7 +1476,7 @@

                                                  Authorization Response Details

                                                - +

                                                state

                                                Unique identifier provided by the Verifier inside the Authorization Request

                                                Unique identifier provided by the Verifier within the Authorization Request.
                                                @@ -1487,11 +1493,43 @@

                                                Authorization Response Details + + + + + +

                                                Name

                                                +

                                                Description

                                                + + + +

                                                vp

                                                +

                                                The digital credential in its original state. The public key contained in the digital credential MUST be used to verify the entire VP JWS as Proof of Possession of the private key which the public part is carried in the digital credential (Holder Key Binding).

                                                + +

                                                jti

                                                +

                                                JWS Unique identifier.

                                                + +

                                                iat

                                                +

                                                Unix timestamp of the issuance datetime.

                                                + +

                                                exp

                                                +

                                                Unix timestamp beyond which the presentation of the digital credential will no longer be considered valid.

                                                + +

                                                aud

                                                +

                                                Audience of the VP, corresponding to the redirect_uri within the Authorization request issued by the Relying Party.

                                                + +

                                                nonce

                                                +

                                                Nonce provided by the Verifier within the Authorization Request.

                                                + + +

                                                Relying Party Entity Configuration¶

                                                diff --git a/versione-corrente/en/revocation-lists.html b/versione-corrente/en/revocation-lists.html index 943f0ecd7..4f4f9d1b8 100644 --- a/versione-corrente/en/revocation-lists.html +++ b/versione-corrente/en/revocation-lists.html @@ -693,8 +693,7 @@

                                                {{ item.title }}

                                            • Relying Party Solution
                                                -
                                              • Same Device Flow
                                                • -
                                              • Remote Cross Device Flow
                                                • +
                                              • Remote Protocol Flow
                                              • Authorization Request Details
                                              • Request Object Details
                                              • Relying Party Solution
                                                  -
                                                • Same Device Flow
                                                  • -
                                                • Remote Cross Device Flow
                                                  • +
                                                • Remote Protocol Flow
                                                • Authorization Request Details
                                                • Request Object Details
                                                  • DPoP HTTP Header
                                                    • diff --git a/versione-corrente/en/search.html b/versione-corrente/en/search.html index c93acc6a9..651c2ead7 100644 --- a/versione-corrente/en/search.html +++ b/versione-corrente/en/search.html @@ -691,8 +691,7 @@

                                                    {{ item.title }}

                                                • Relying Party Solution
                                                    -
                                                  • Same Device Flow
                                                    • -
                                                  • Remote Cross Device Flow
                                                    • +
                                                  • Remote Protocol Flow
                                                  • Authorization Request Details
                                                  • Request Object Details
                                                  • Relying Party Solution
                                                      -
                                                    • Same Device Flow
                                                      • -
                                                    • Remote Cross Device Flow
                                                      • +
                                                    • Remote Protocol Flow
                                                    • Authorization Request Details
                                                    • Request Object Details
                                                      • DPoP HTTP Header
                                                        • diff --git a/versione-corrente/en/searchindex.js b/versione-corrente/en/searchindex.js index 5ef55c05b..6e6a8909c 100644 --- a/versione-corrente/en/searchindex.js +++ b/versione-corrente/en/searchindex.js @@ -1 +1 @@ -Search.setIndex({"docnames": ["algorithms", "backup-restore", "contribute", "defined-terms", "index", "pid-eaa-data-model", "pid-eaa-issuance", "pseudonyms", "relying-party-solution", "revocation-lists", "ssi-introduction", "standards", "trust", "wallet-instance-attestation", "wallet-solution"], "filenames": ["algorithms.rst", "backup-restore.rst", "contribute.rst", "defined-terms.rst", "index.rst", "pid-eaa-data-model.rst", "pid-eaa-issuance.rst", "pseudonyms.rst", "relying-party-solution.rst", "revocation-lists.rst", "ssi-introduction.rst", "standards.rst", "trust.rst", "wallet-instance-attestation.rst", "wallet-solution.rst"], "titles": ["Cryptographic algorithms", "backup-restore.rst", "How to contribute", "Normative Language and Conventions", "Italian EUDI Wallet Technical Specifications", "PID/(Q)EAA Data Model", "PID/(Q)EAA Issuance", "pseudonyms.rst", "Relying Party Solution", "revocation-lists.rst", "Self Sovereign Identity", "Standards", "The Infrastructure of Trust", "Wallet Instance Attestation", "Wallet Solution"], "terms": {"tutti": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "gli": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "esempi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "contenuti": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "questa": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "documentazion": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "sono": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "da": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "intendersi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "come": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "non": [0, 1, 2, 3, 4, 6, 7, 8, 9, 10, 11, 13, 14], "normativi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "all": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "exampl": [0, 1, 2, 3, 4, 6, 7, 8, 9, 10, 11, 12, 13, 14], "contain": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "thi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "document": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "ar": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "meant": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "norm": [0, 1, 2, 4, 6, 7, 8, 9, 10, 11, 12, 13, 14], "The": [0, 2, 3, 4, 5, 6, 8, 10, 13, 14], "follow": [0, 2, 4, 5, 6, 8, 10, 12, 13, 14], "must": [0, 3, 4, 5, 6, 8, 12, 13, 14], "support": [0, 6, 8, 12, 13, 14], "oper": [0, 4, 6, 8, 12], "refer": [0, 3, 4, 5, 6, 8, 10, 12, 13], "rs256": [0, 5, 6, 8, 12], "signatur": [0, 3, 4, 5, 6, 8, 12, 13, 14], "rfc": [0, 5, 6, 8, 12], "7518": 0, "rs512": [0, 5, 6, 12], "rsa": [0, 5, 6, 8, 12], "oaep": [0, 8], "kei": [0, 1, 3, 5, 6, 7, 8, 9, 10, 12, 13, 14], "encrypt": [0, 6, 8, 12], "256": [0, 5, 6, 8, 12, 13, 14], "7516": [0, 6, 8], "a128cbc": [0, 8], "hs256": [0, 8], "content": [0, 5, 6, 8], "a256cbc": [0, 8], "hs512": [0, 8], "recommend": [0, 3, 6, 12], "es256": [0, 6, 8, 12, 13, 14], "es512": [0, 6, 12, 14], "ps256": [0, 12], "ps512": [0, 12], "ecdh": 0, "es": [0, 13], "a128kw": 0, "a256kw": 0, "NOT": [0, 3, 5, 6, 8], "none": [0, 6, 8], "rsa_1_5": 0, "hs384": [0, 8], "length": [0, 8], "equal": [0, 6, 8], "greater": 0, "than": [0, 12], "2048": 0, "bit": 0, "A": [0, 3, 6, 8, 10, 12, 13, 14], "4096": 0, "what": [1, 4, 7, 9, 10, 12], "useful": [1, 7, 9], "todo": [1, 5, 7, 9, 11], "req": [1, 7, 8, 9], "1": [1, 5, 6, 7, 8, 9, 12, 13, 14], "2": [1, 5, 6, 7, 8, 9, 13], "tabl": [1, 5, 6, 7, 9, 12], "paramet": [1, 4, 7, 8, 9, 13, 14], "claim": [1, 3, 4, 6, 7, 8, 9, 12, 13], "descript": [1, 3, 5, 6, 7, 8, 9, 12], "valu": [1, 5, 6, 7, 8, 9, 12, 13, 14], "IT": [2, 3, 4, 5, 6], "wallet": [2, 3, 5, 6, 8, 10], "project": [2, 4], "includ": [2, 5, 6, 8, 10, 12, 13, 14], "an": [2, 3, 5, 6, 8, 10, 12, 13, 14], "open": [2, 14], "develop": [2, 4, 12], "process": [2, 3, 4, 6, 8, 10, 12], "approach": [2, 10], "ensur": [2, 4, 5, 10, 12, 13, 14], "access": [2, 4, 8, 10, 12, 14], "invit": 2, "interest": 2, "parti": [2, 3, 4, 6, 10, 13, 14], "particip": [2, 3, 4, 12], "consequ": 2, "stakehold": 2, "nation": [2, 3, 4, 5, 6, 10, 14], "intern": [2, 4, 8], "commun": [2, 4], "member": [2, 4, 6, 10, 12], "onli": [2, 3, 5, 8, 10, 12, 14], "encourag": 2, "also": [2, 3, 6, 10, 12, 13, 14], "heartili": 2, "welcom": 2, "refin": [2, 8], "technic": [2, 3, 6, 8, 12], "rule": [2, 3, 4, 5, 12], "below": [2, 3, 5, 6, 8, 12, 13, 14], "sever": [2, 13], "method": [2, 6, 8, 14], "avail": [2, 5, 8, 12, 14], "github": 2, "issu": [2, 3, 5, 6, 8, 10, 12, 13, 14], "By": [2, 5], "you": [2, 4], "can": [2, 4, 6, 8, 10, 12, 14], "seek": [2, 13], "clarif": 2, "propos": [2, 4], "enhanc": [2, 4, 10, 13], "report": 2, "editori": 2, "typo": 2, "If": [2, 6, 8, 12, 13], "work": 2, "we": [2, 5, 12, 13, 14], "draft": [2, 5, 6, 8, 12], "pull": 2, "request": [2, 4, 10, 12, 14], "link": [2, 6, 13], "repres": [2, 5, 6, 8, 12, 13, 14], "activ": [2, 4, 10, 12, 14], "typic": [2, 10], "alwai": [2, 3, 10, 12], "base": [2, 6, 8, 10, 13], "discuss": [2, 8, 13], "onc": [2, 6, 8, 14], "initi": [2, 4, 6], "facilit": [2, 12], "review": [2, 14], "chang": [2, 8, 12], "befor": [2, 6, 12], "thei": [2, 3, 10, 12, 13], "merg": [2, 13], "main": [2, 6, 10, 12], "branch": 2, "version": [2, 13, 14], "corrent": 2, "italia": 2, "slack": 2, "channel": 2, "messag": [2, 6, 13], "applic": [2, 3, 6, 8, 10, 12, 14], "design": [2, 4, 10, 14], "busi": [2, 4], "connect": [2, 5, 6, 12, 14], "peopl": [2, 10], "inform": [2, 5, 8, 10, 12, 13, 14], "need": [2, 6, 8, 10, 12, 13, 14], "from": [2, 4, 5, 6, 8, 12, 13, 14], "public": [2, 3, 4, 5, 6, 8, 10, 12, 13, 14], "administr": [2, 4, 10, 12], "technician": 2, "student": 2, "citizen": [2, 3, 4, 5, 10], "ha": [2, 6, 8, 12], "everyon": 2, "join": 2, "free": 2, "http": [2, 4, 5, 12, 13, 14], "where": [2, 5, 6, 8, 10, 12, 13], "learn": 2, "about": [2, 4, 8, 10, 13, 14], "partak": 2, "word": 3, "requir": [3, 4, 5, 6, 8], "shall": [3, 6], "should": [3, 5, 6, 8, 12, 13], "mai": [3, 5, 6, 8, 12, 14], "option": [3, 10], "interpret": 3, "describ": [3, 5, 6, 8, 12, 13], "bcp": 3, "14": [3, 6, 8, 13], "rfc2119": 3, "rfc8174": 3, "when": [3, 5, 6, 8, 10, 12, 14], "appear": 3, "capit": 3, "shown": [3, 8], "here": [3, 8, 14], "user": [3, 4, 5, 6, 8, 10, 12, 13, 14], "trust": [3, 4, 5, 6, 8, 10, 13, 14], "servic": [3, 4, 6, 10, 12, 13, 14], "model": [3, 4, 6, 8, 10, 13, 14], "list": [3, 4, 5, 6, 10, 12, 13, 14], "framework": [3, 4, 5, 6, 12, 14], "attribut": [3, 4, 5, 8, 10, 12, 13, 14], "electron": [3, 4, 5, 12, 13, 14], "attest": [3, 4, 6, 8, 10], "provid": [3, 4, 5, 6, 8, 10, 12, 13], "tsp": [3, 12], "person": [3, 5, 6, 8, 10, 12, 13, 14], "identif": [3, 4, 5, 6, 8, 10, 12, 14], "data": [3, 4, 6, 8, 10, 12, 13, 14], "pid": [3, 4, 8, 12, 14], "revoc": [3, 4, 6, 8, 12, 13, 14], "qualifi": [3, 12, 14], "qtsp": [3, 12], "eaa": [3, 4, 8, 12, 14], "eida": [3, 4, 5, 6, 10, 12], "arf": [3, 4, 6, 12], "definit": [3, 8, 10, 13, 14], "which": [3, 5, 6, 8, 10, 12, 13, 14], "us": [3, 4, 5, 6, 8, 10, 12, 13, 14], "further": [3, 6, 12, 14], "insight": 3, "topic": 3, "complement": 3, "interact": [3, 6, 8, 10, 12, 13, 14], "compon": [3, 4, 6, 12], "accredit": [3, 12, 13], "bodi": [3, 6, 12], "entiti": [3, 4, 13, 14], "feder": [3, 4, 6, 8, 14], "author": [3, 4, 10, 12, 13, 14], "respons": [3, 4, 12, 14], "manag": [3, 10, 13, 14], "verif": [3, 4, 6, 10, 12, 13, 14], "certif": [3, 10, 12, 13], "ecosystem": [3, 4, 10, 12, 14], "role": [3, 4, 10, 14], "digit": [3, 4, 5, 6, 8, 10, 12, 14], "ident": [3, 4, 5, 6, 14], "recogn": [3, 10], "state": [3, 4, 6, 8, 10, 12], "identifi": [3, 5, 6, 8, 12, 13, 14], "issuanc": [3, 4, 5, 8, 12, 13, 14], "master": 3, "alreadi": [3, 4, 6], "present": [3, 4, 5, 6, 8, 10, 12, 13, 14], "italian": [3, 5, 6, 12], "system": [3, 4, 6, 10, 12, 14], "govern": [3, 4, 10], "guidelin": [3, 4], "administ": 3, "directli": [3, 6], "through": [3, 5, 12, 13], "its": [3, 6, 8, 12, 13, 14], "intermediari": [3, 8, 12], "statu": [3, 5, 6, 8, 12, 14], "elig": [3, 4], "evalu": [3, 4], "It": [3, 5, 6, 8, 10, 12, 13, 14], "perform": [3, 6, 8, 13], "oversight": 3, "function": [3, 4, 5, 14], "instanc": [3, 4, 5, 6, 8], "solut": [3, 4, 6, 12, 13], "instal": [3, 6, 13, 14], "mobil": [3, 10, 12, 13, 14], "devic": [3, 4, 6, 10, 12, 13, 14], "control": [3, 5, 6, 10, 14], "specif": [3, 5, 6, 8, 10, 12, 13, 14], "who": [3, 4, 6, 10, 12], "sole": 3, "owner": [3, 6, 10, 12], "enabl": [3, 5, 10, 12, 14], "fulli": [3, 12], "autonom": [3, 12], "privat": [3, 4, 5, 6, 8, 12, 13], "conform": [3, 6, 13], "profil": [3, 5, 6], "verifi": [3, 5, 6, 8, 10, 12, 13, 14], "prove": [3, 5, 10, 12], "secur": [3, 6, 8, 10, 12, 13, 14], "compliac": [3, 12], "qeaa": [3, 14], "form": [3, 5, 6, 8, 10, 12, 14], "substanti": 3, "s": [3, 5, 6, 8, 10, 12, 13, 14], "possess": [3, 5, 6, 8, 10, 12, 14], "reli": [3, 4, 6, 10, 14], "natur": [3, 5, 14], "legal": [3, 10, 12, 14], "implement": [3, 4, 6, 12, 13], "authent": [3, 4, 5, 6, 8, 10, 12, 13, 14], "submiss": 3, "mechan": [3, 4, 5, 8, 14], "complianc": [3, 4, 6, 12, 13, 14], "regulatori": 3, "cryptograph": [3, 4, 5, 6, 8, 10, 12, 14], "cannot": [3, 5, 12], "repudi": [3, 4], "over": [3, 5, 10, 12, 13, 14], "time": [3, 5, 6, 8, 12, 13, 14], "relat": [3, 4, 5, 6, 8, 12, 13], "particular": [3, 12], "layer": [3, 8], "architectur": [3, 4, 6, 12, 13, 14], "establish": [3, 4, 6, 10, 14], "reliabl": [3, 5, 12, 13, 14], "level": [3, 4, 8, 10, 14], "assur": [3, 5, 13, 14], "degre": 3, "confid": [3, 14], "vet": 3, "credenti": [3, 4, 5, 8, 10, 12, 13], "same": [3, 4, 6, 12], "whom": [3, 10, 12], "wa": [3, 4, 6, 8, 13], "oid4vp": [3, 8], "openid": [3, 5, 6, 8, 12, 14], "vc": [3, 5, 6, 8], "vp": [3, 8], "api": [3, 4, 14], "program": 3, "interfac": [3, 6, 14], "loa": [3, 5, 6, 13, 14], "stand": 4, "commonli": 4, "name": [4, 5, 6, 8, 12, 14], "eu": [4, 8, 12, 14], "regul": [4, 10], "910": 4, "2014": 4, "transact": [4, 6, 14], "market": 4, "repeal": 4, "old": 4, "direct": [4, 13], "1999": 4, "93": 4, "ec": [4, 8, 12, 13, 14], "new": [4, 5, 6, 10, 13], "european": [4, 10], "overcom": 4, "dissimilar": 4, "both": [4, 5, 10, 12, 14], "technolog": 4, "experi": [4, 10, 14], "term": [4, 12, 13, 14], "exist": [4, 14], "among": [4, 12, 13, 14], "21": 4, "eid": [4, 6, 14], "current": [4, 5, 6], "within": [4, 6, 8, 12, 14], "mani": 4, "16": [4, 6, 8], "creat": [4, 6, 8, 12, 13], "improv": [4, 10], "respond": 4, "input": [4, 14], "receiv": [4, 6, 13], "area": 4, "innov": 4, "decentr": 4, "awar": 4, "To": [4, 8, 13, 14], "date": [4, 5, 6, 12, 13], "three": [4, 14], "coexist": 4, "itali": [4, 6], "web": [4, 6, 8, 12, 13, 14], "card": 4, "cie": [4, 5, 6], "spid": [4, 6, 8, 12], "health": 4, "ts": 4, "cn": 4, "result": [4, 6, 12, 13], "difficult": 4, "thu": [4, 5, 6, 12, 14], "costli": 4, "maintain": [4, 10, 13], "multipl": [4, 10, 12, 13], "therefor": [4, 10, 12], "streamlin": [4, 10], "optim": 4, "alloc": 4, "resourc": [4, 6, 8, 12], "simplifi": 4, "integr": [4, 5, 6, 8, 10, 13, 14], "certifi": [4, 6, 12, 13, 14], "strengthen": 4, "promot": [4, 10], "inclus": 4, "consolid": 4, "best": 4, "practic": [4, 13], "maxim": 4, "deploy": 4, "qualiti": [4, 8], "infrastructur": [4, 10], "provis": [4, 5], "adequ": 4, "accommod": [4, 12], "basi": 4, "acquir": [4, 10, 14], "full": [4, 10], "In": [4, 5, 6, 8, 10, 12, 14], "order": [4, 5, 8, 14], "achiev": 4, "object": [4, 5, 6, 12, 13], "notifi": [4, 6, 8, 12, 14], "scheme": [4, 5, 6, 8, 10], "evolut": 4, "envisag": 4, "progress": 4, "wai": [4, 6, 8, 12], "migrat": 4, "purpos": [4, 8, 10, 14], "defin": [4, 5, 6, 8, 12, 13, 14], "involv": [4, 6, 10, 12], "find": [4, 8], "accord": [4, 5, 6, 8, 12, 13, 14], "realiabl": 4, "set": [4, 5, 6, 8, 12, 13, 14], "mdl": [4, 8], "cbor": 4, "format": [4, 5, 6, 8, 12, 14], "sd": [4, 6, 8], "jwt": [4, 6, 8, 12, 13, 14], "gener": [4, 5, 6, 14], "jw": [4, 6, 8, 12, 13, 14], "openid4vci": [4, 6, 12], "openid4vp": [4, 6, 8, 12], "pseudonym": 4, "siopv2": [4, 8], "backup": 4, "restor": 4, "self": 4, "sovereign": 4, "ssi": 4, "languag": 4, "convent": 4, "acronym": 4, "properti": [4, 5], "endpoint": [4, 8, 13], "configur": [4, 13, 14], "common": 4, "anchor": [4, 6, 13], "leav": 4, "intermedi": [4, 10], "metadata": [4, 5, 6, 8, 10, 13], "type": [4, 5, 6, 8, 13, 14], "statement": [4, 6, 8, 14], "chain": [4, 5, 6, 8, 13], "offlin": 4, "long": 4, "live": 4, "privaci": [4, 6, 8, 10, 13, 14], "consider": [4, 8], "q": [4, 8, 12, 14], "field": [4, 6, 8, 10, 13], "mdoc": [4, 8], "high": [4, 5, 8, 14], "flow": [4, 5, 12], "detail": [4, 5, 10, 12, 14], "push": 4, "par": 4, "token": [4, 5, 8, 13, 14], "issuer": [4, 5, 8, 10, 12, 13], "lifecycl": 4, "transit": 4, "valid": [4, 5, 6, 10, 12, 13], "return": [4, 6, 8, 12, 13], "deactiv": 4, "header": [4, 5, 6, 12], "payload": [4, 5, 6, 8], "wallet_provid": [4, 12], "federation_ent": [4, 6, 8, 12], "extern": 4, "static": [4, 8, 12], "view": [4, 14], "dynam": [4, 6, 12], "remot": [4, 5, 12], "cross": [4, 12], "dpop": [4, 6], "uri": [4, 6], "rst": 4, "librari": [4, 12], "code": [4, 5, 6, 8, 12], "snippet": 4, "algorithm": [4, 5, 6, 8, 12, 13, 14], "how": [4, 8, 12, 13], "contribut": 4, "standard": [4, 12, 14], "law": 5, "allow": [5, 6, 8, 10, 12, 13, 14], "authenitc": 5, "carri": [5, 6, 10, 12], "famili": [5, 6], "first": [5, 6, 8], "birth": [5, 6], "place": [5, 6], "uniqu": [5, 6, 8, 12, 13, 14], "taxpay": 5, "number": [5, 6, 8, 12, 14], "extend": [5, 6, 14], "oidc": [5, 6, 8, 10, 12], "ida": 5, "bind": [5, 6, 12, 13], "give": [5, 6, 8, 12], "evid": 5, "proof": [5, 6, 8, 10, 12, 14], "procedur": [5, 10], "underli": [5, 14], "proxim": 5, "recipi": 5, "know": [5, 10, 12], "sourc": [5, 10], "rp": [5, 6, 8, 12, 13], "section": [5, 6, 8, 12, 13, 14], "select": [5, 6, 8], "disclosur": [5, 8, 13], "specifi": [5, 6, 13, 14], "terbu": 5, "latest": 5, "sign": [5, 6, 8, 10, 12, 13, 14], "_sd_alg": 5, "5": [5, 6, 8, 12, 13], "other": [5, 6, 10, 12, 14], "some": [5, 6, 12], "them": [5, 8, 10, 12, 13, 14], "disclos": [5, 6, 8, 10, 12], "indic": [5, 6, 8, 12, 13], "hash": [5, 6, 8], "digest": 5, "salt": 5, "one": [5, 6, 8, 10, 12, 13], "omit": [5, 6], "instead": [5, 8, 10, 12], "respect": [5, 6, 14], "decoi": 5, "arrai": [5, 6, 8, 12, 13, 14], "_sd": [5, 8], "each": [5, 6, 8, 12, 13, 14], "map": [5, 8, 12], "calcul": 5, "random": [5, 6, 8], "sent": [5, 6, 8], "holder": [5, 10, 12, 13], "togeth": 5, "combin": [5, 12], "seri": [5, 14], "base64url": [5, 6], "encod": [5, 6, 8], "separ": [5, 8, 13], "next": 5, "singl": [5, 6, 8, 10, 12], "tild": 5, "charact": [5, 6], "n": [5, 6, 8, 12], "see": [5, 6, 12, 13], "more": [5, 6, 8, 12, 14], "jose": [5, 6, 8], "mandatori": [5, 6, 12, 13], "typ": [5, 6, 8, 12, 13, 14], "rfc7515": [5, 6, 8], "4": [5, 6, 8, 12, 13], "9": [5, 6, 8, 13], "alg": [5, 6, 8, 12, 13, 14], "kid": [5, 6, 8, 12, 13, 14], "8": [5, 6, 8, 13], "trust_chain": [5, 8, 12, 13], "json": [5, 6, 8, 12, 13], "fed": [5, 8, 12], "3": [5, 6, 8, 12, 13, 14], "i": [5, 13], "e": [5, 6, 8, 10, 12, 13, 14], "iss": [5, 6, 8, 12, 13, 14], "url": [5, 6, 8, 12, 13, 14], "string": [5, 6, 8, 12, 13, 14], "rfc7519": [5, 6], "sub": [5, 6, 8, 12, 13, 14], "thumbprint": [5, 6, 13, 14], "jwk": [5, 6, 8, 12, 13, 14], "cnf": [5, 6, 8, 13], "jti": [5, 6, 8, 13], "id": [5, 6, 8, 12, 13], "uuid4": [5, 6], "7": [5, 6, 8, 12, 13], "iat": [5, 6, 8, 12, 13, 14], "unix": [5, 6, 8, 12, 13, 14], "timestamp": [5, 6, 8, 12, 13, 14], "numericd": [5, 6, 8, 12], "7519": [5, 6, 8, 12], "6": [5, 6, 8, 12], "exp": [5, 6, 8, 12, 13, 14], "expiri": [5, 6, 12], "materi": [5, 6], "confirm": [5, 6], "declar": 5, "rfc7800": 5, "obtain": [5, 6, 8, 12, 13, 14], "For": [5, 6, 12, 14], "case": [5, 6, 12, 13, 14], "personidentificationdata": [5, 6, 8], "verified_claim": [5, 8], "element": [5, 10], "regard": [5, 12, 13], "addit": [5, 6, 8, 12, 13], "whether": [5, 6, 12, 13], "nsd": 5, "structur": [5, 14], "trust_framework": 5, "oid": 5, "assurance_level": 5, "dure": [5, 10, 12, 13, 14], "convei": [5, 12], "least": [5, 6, 8, 14], "electronic_record": 5, "record": 5, "have": [5, 6, 10, 12, 13, 14], "eudi": [5, 6, 8, 14], "gov": [5, 8], "mean": [5, 6], "cointain": 5, "follwo": 5, "organization_nam": [5, 6, 8, 12, 14], "organ": [5, 6, 8, 10, 12, 13, 14], "act": [5, 6, 8], "organization_id": 5, "ipa": 5, "urn": [5, 6, 14], "namespac": [5, 8], "ipa_cod": 5, "country_cod": 5, "countri": 5, "iso3166": 5, "alpha": 5, "g": [5, 6, 10, 12, 14], "syntax": 5, "note": [5, 12, 14], "without": [5, 6, 8, 10, 12, 13], "given_nam": [5, 6, 8, 12], "core": [5, 6], "0": [5, 6, 8, 12, 13, 14], "family_nam": [5, 6, 8], "birthdat": [5, 6], "place_of_birth": [5, 6], "subclaim": 5, "local": [5, 6], "unique_id": [5, 6, 8], "anpr": 5, "given": [5, 6, 12, 13], "regist": [5, 6], "resid": [5, 8, 13], "popul": [5, 8], "tax_id_cod": [5, 6], "tax": [5, 6], "etsi": 5, "en": [5, 6], "319": 5, "412": 5, "tinit": 5, "italiantaxidentificationnumb": 5, "ministero": 5, "dell": 5, "interno": 5, "m_it": 5, "xxxxxxxx": 5, "xxxx": 5, "xxxxxxxxxxxx": 5, "mario": 5, "rossi": 5, "1980": 5, "01": 5, "10": [5, 6, 8, 13], "rome": 5, "xxxxxxxxxxxxxxxx": 5, "correspond": [5, 6, 12, 13], "verson": 5, "db67gl7ck3tfiiaf7n6_7shvqk0mdymeqcogglkuaaw": [5, 6], "nehrderpynlhy3m5wldwtwz2auhm": 5, "eyjhbgcioijsuzi1niisimtpzci6": 5, "ikjydmzybg5oqu11sfiwn2fqvw1b": 5, "pidprovid": 5, "org": [5, 6, 8, 12, 13, 14], "nzblsxh8udccd7nowxfzafhkxzsrgc9x": 5, "uuid": [5, 6, 8], "6c5c0a49": 5, "b589": 5, "431d": 5, "bae7": 5, "219122a9ec2c": 5, "1541493724": [5, 8], "kty": [5, 6, 8, 12, 13, 14], "sig": [5, 6, 8], "1ta": [5, 6, 8], "se": [5, 6, 8], "aqab": [5, 6, 8, 12], "yhnfs3ync9tjicaivhwlvuj3axwggz_98urfaqme": [5, 8], "ogm7ryxgt5xzlevp": 5, "hu": 5, "utk0a": 5, "txaapaobqv1piwmfw": 5, "8jjozbfovmnvq3hflmpwy4o19gpxs61fwhjzebu589": 5, "bomgktw1rbikntw8fzx_bel4ybandr6ahsdgpatfcig": 5, "cflgzentgnrfngnlvvqvcoafi05r6rjux": 5, "rdbldefew": 5, "ju_stahcngs32x": 5, "0ajhrd1": 5, "hclckpt5yqgcfqme168w": 5, "vqi": 5, "s1mt1kxfq2o8j9io7xmmx2mixag9m9pejvqrmca": 5, "zvdghcmclmvwluggsgpskcpkehz4u9owj1sliblcc1o": 5, "sha": [5, 6], "wyiyr0xdndjzs1f2zunmr2zyeu5stjl3iiwgimv2awrlbmnliiwgw3sidhlw": 5, "zsi6icjlbgvjdhjvbmljx3jly29yzcisicjyzwnvcmqioib7inr5cguioiai": 5, "zwlkyxmuaxquy2lliiwginnvdxjjzsi6ihsib3jnyw5pemf0aw9ux25hbwui": 5, "oiaitwluaxn0zxjvigrlbgwnsw50zxjubyisicjvcmdhbml6yxrpb25fawqi": 5, "oiaibv9pdcisicjjb3vudhj5x2nvzguioiaisvqifx19xv0": 5, "2glc42skqvecfgfrynrn9w": 5, "wyjlbhvwnu9nm2dttkljoevzbnn4qv9biiwginvuaxf1zv9pzcisicj4ehh4": 5, "ehh4ec14ehh4lxh4ehgtehh4ec14ehh4ehh4ehh4ehgixq": 5, "eluv5og3gsnii8eynsxa_a": 5, "wyi2swo3de0tytvpvlbhym9tnxrtdlzbiiwgimdpdmvux25hbwuilcaitwfi": 5, "aw8ixq": 5, "6ij7tm": 5, "a5ivpgbos5tmvva": 5, "wyjlsthav205uw5luhbougvozw5izghriiwgimzhbwlsev9uyw1liiwgiljv": 5, "c3npil0": 5, "ei8zwm9qnkppnpenenhdhq": 5, "wyjrz19pnjr6cuf4ztqxmmexmdhpcm9biiwgimjpcnrozgf0zsisicixotgw": 5, "ltaxltewil0": 5, "qg_o64zqaxe412a108iroa": 5, "wyjbsngtmdk1vlbycfr0tjrrtu9xuk9biiwginbsywnlx29mx2jpcnroiiwg": 5, "eyjjb3vudhj5ijogikluiiwgimxvy2fsaxr5ijogiljvbwuifv0": 5, "ajx": 5, "095vprpttn4qmoqroa": 5, "wyjqyzmzsk0ytgnoy1vfbehnz3zfdwzriiwginrhef9pzf9jb2rliiwgilrj": 5, "tklulvhywfhywfhywfhywfhywfgixq": 5, "pc33jm2lchcu_lhggv_ufq": 5, "eyj0exaioij2yytzzc1qd3qilcjhbgcioijsuzuxmiisimtpzci6imqxmjzhnme4ntzmnzcyndu2mdq4ngzhowrjntlkmtk1iiwidhj1c3rfy2hhaw4iolsitkvoumrfunbzbmxiwtnnnvdszfduv1oyyvvobsauli4ilcjleupoykdjau9pslnvekkxtmljc0ltdhbaq0k2ic4uliisiklrsllkbvp5ykc1b1fvmtftrkl3tjjgcvzxmuigli4uil19": 5, "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": 5, "wzeifaojnobqisjtq92jtkexrn": 5, "2sgvjklpu4idc_ct2t6tm8z6sqbvy6n94aaev": 5, "hfsv5jost6yjpdngzoxn_w_131rilu8yaint8w31nrgivhjjic0w": 5, "hhicg1lmvjshsmct3rheaprcmso7xkhwmusjt37dozeageti5i47hnzabu7vwxsvulbnnn8v7tjblspo2q0vnwhedx1hq7ih1b8okh": 5, "_aqrhwvm9bcs9cg8o6n9iqubcspfi6gty4zzgheb95knetvhw8il10z9p_hr9twxzqaccc8xrnh4afwr9tidqztr92m7luyvdfmzvghcponi7vbhqmrqzvyqydhq6ejbtrtisyenla5nskbjv8etdlec94vjahznzue9anuqexae55v5m5o9wlowhgv2vl4xv5c": 5, "n5s5uzs08gaxo": 5, "cuanod3bqe9vfrt47ibcm4hucnvdise_awncekoqabv1j9_tv9lwzsecvuuuwwwelhcuxgdyia3qtutxz": 5, "pdnd": 5, "ragioneria": 5, "general": 5, "dello": 5, "stato": 5, "qlhcfc": 5, "previou": [5, 6, 8, 13], "decod": [5, 6, 8, 13], "d126a6a856f7724560484fa9dc59d195": 5, "oians5wycwk4wftestvycn_xow9edkmngh33_q6_pbi0xaty7p3apugjo0ivk5c1nqavy6pzmcpq8p1y0cbac9strmzvtvdqcooclhvy2zlcxtu39ooglnra8_lqsama386lo_qmw4": 5, "uy6dbgzy4vhkscvac9fizydpafqwbequnv2qofmh5vpoihctkhwmgxnzbatyobg57xsoux": 5, "bvho_sfmm3k4rvsxcr3mfojahlfwutu_jk9k7n9kr_mnc5ipioyhzw_sumf6samrqsspp42kd10hpmw0yjtdmyxbdhrmfesmhyimy4obbt43__a55zili_cnik4241wovgvw": 5, "healthinsurancedata": 5, "2jir18gfeashygb27s7ss3s_iq4xxfixcryiohrbfn": 5, "1iztq7bov64xtybdkwfc44_vjwe029hzqxeuiloqun4": 5, "enno31jfzfp8y2dw0r": 5, "fimewwe7elgvgohmwmbpu14": 5, "fv2cdnwutqtgohaftvvaumbf0olmnyxmswyf4uixrhi": 5, "dzwjq7mjssx": 5, "xti_hwue8b2x6idm5l": 5, "dod_ybpkjao": 5, "ghyi19frbd_i4boawenojc3lcnmj4pbgnqcsbj_qm4q": 5, "zwlkyxmuaxqucgruzcisicjzb3vyy2uioib7im9yz2fuaxphdglvbl9uyw1l": 5, "ijogiljhz2lvbmvyawegr2vuzxjhbgugzgvsbg8gu3rhdg8ilcaib3jnyw5p": 5, "emf0aw9ux2lkijogilfmsengqyisicjjb3vudhj5x2nvzguioiaisvqifx19": 5, "xv0": 5, "wyjlbhvwnu9nm2dttkljoevzbnn4qv9biiwgimdpdmvux25hbwuilcaitwfyaw8ixq": 5, "wyi2swo3de0tytvpvlbhym9tnxrtdlzbiiwgimzhbwlsev9uyw1liiwgiljvc3npil0": 5, "wyjlsthav205uw5luhbougvozw5izghriiwgimjpcnrozgf0zsisicixotgwltaxltewil0": 5, "wyjrz19pnjr6cuf4ztqxmmexmdhpcm9biiwginbsywnlx29mx2jpcnroiiwg": 5, "wyjbsngtmdk1vlbycfr0tjrrtu9xuk9biiwginrhef9pzf9jb2rliiwgilrj": 5, "eyjpc3mioijodhrwczovl2lzc3vlci5legftcgxllm9yzyisinn1yii6ik56ykxzwgg4durdy2q3bm9xwezaqwzia3hac1jhqzlycy4uliisimp0asi6invybjp1dwlkojzjnwmwytq5lwi1odktndmxzc1iywu3ltixoteymme5zwmyyyisimlhdci6mtu0mtq5mzcyncwizxhwijoxntqxndkznzi0lcjzdgf0dxmioijodhrwczovl2lzc3vlci5legftcgxllm9yzy9zdgf0dxmilcjjbmyionsiandrijp7imt0esi6iljtqsisimuioijbuufciiwidxnlijoic2lniiwia2lkijoizdeynme2ytg1nmy3nzi0ntywndg0zme5zgm1owqxotuilcjhbgcioijsuzi1niisim4ioijvawfuczv3wunxazr3rnrfu3rwwwnux3hpdzllzetntkdimznfctzfcejjmfhhvfk3udnhcfvnak8waxzrnwmxtlfbvlk2ufpty1brofaxwtbjqkfdovnuum16dlr2rffjt29jtghwetjabgnyvhuzow9pr0xocme4x0xrc2fnqtm4nmxpx3fnvzqtdvk2rgjhwlk0dkhru2n2qum5rklawurqywzxv0jfuvvovjjrt0znsdvwug9paenus0h3tudyblpcyxrzt2jnntd4u09vwc1idmhpx3ngtw0zazrsdnnyy3iztuzvakfotgz3dxr1x2plows3tjllul9ttmm1sxbpt3lowndfc1vtrjztyw1scxntuha0mktemtboue1xmflkvernwxhczehytuzlu01iwulnwtrvqkjundnfx2e1nxpjtelfq25jazqyndf3t3zhdncifx0sinr5cguioijizwfsdghjbnn1cmfuy2veyxrhiiwidmvyawzpzwrfy2xhaw1zijp7inzlcmlmawnhdglvbii6eyjfc2qiolsimmpjuje4z2zlqvniwudcmjdzn3ntm1nfave0ehhgsxhdunlpb2hyqmzucyjdlcj0cnvzdf9mcmftzxdvcmsioijlawrhcyisimfzc3vyyw5jzv9szxzlbci6imhpz2gifswiy2xhaw1zijp7il9zzci6wyixaxp0ctdib3y2nhhuwwjea1dgyzq0x1zqv2uwmjlownfyzvvjbg9xvu40iiwiru5obzmxamz6rna4wtjevzbslwzjtwvxd2u3ruxhdkdvse13tujwdte0rsisikzwmknetld1vhfuz09iywz0dlzhdw1crjbpbg1uexhnc3d5zjr1sxhyafkilcjkwldqctdtslntwc1yvelfsfd1rthcmng2swrnnwxflwrvrf95qnblsmfviiwiz0hzate5znjirf9pnejvyvdftk9qyznsq25najrwykdouwnzqmpfuu00usjdfx0sil9zzf9hbgcioijzagetmju2in0": 5, "prvt9qpf1wmforkncgxw6lokranomsl": 5, "foxmqmuiyk2ao0twm5laveqret9bb5a0fpq7rxnqlu57ngv3o8vzklhfkbkm1_wta5xuzxbfz0qgcmip6tzqu9yavxy162h6_i4foinyhol8i5mnpfthfy0nbytyvkcscfbc2ccv4i7rsalbpbpvitpoyvbzfwtdokuumed5xwkpw9": 5, "vf_jk11yajj880walzu5tz3xaob0kkfus3scmskko5wmm1seas7xl5iipsnamtmrlmke6qcwakddx": 5, "hnegzncwbjhastwb2udayk8c": 5, "wfgdwrrwgq3mu0rfuxmifkjv4gdi8q": 5, "relev": [6, 10, 14], "releas": [6, 8, 10], "compliant": 6, "thes": 6, "genuin": [6, 13], "entir": [6, 12, 13], "product": [6, 14], "own": [6, 10, 12, 14], "offer": [6, 8, 14], "being": [6, 10, 13], "assess": [6, 12], "cab": 6, "compos": [6, 8, 13], "oidc4vci": 6, "13": [6, 8, 13], "saml2": [6, 10], "end": [6, 8], "idp": 6, "preexist": 6, "send": [6, 8, 13, 14], "prior": 6, "start": [6, 8, 12, 13], "fig": 6, "show": [6, 8], "highlight": 6, "step": [6, 14], "pictur": 6, "setup": 6, "preliminari": 6, "phase": [6, 8, 10, 12, 13], "out": [6, 12], "consist": [6, 14], "assert": [6, 13, 14], "queri": [6, 8], "fetch": [6, 12], "ani": [6, 8, 10, 12, 13], "interoper": [6, 10, 12], "fresh": [6, 8], "pair": [6, 13, 14], "check": [6, 8, 12], "iam": [6, 10], "proxi": [6, 8], "happen": 6, "consent": [6, 8], "bound": [6, 12], "held": 6, "expand": 6, "assumpt": 6, "store": [6, 10, 12, 14], "most": 6, "been": [6, 12], "9126": 6, "pkce": 6, "exchang": [6, 8, 10, 14], "7636": 6, "consid": [6, 12, 13], "immedi": [6, 12], "discoveri": [6, 8, 12], "part": [6, 8, 12], "protocol": [6, 12], "well": [6, 8, 12, 13, 14], "known": [6, 8, 12, 14], "oauth2": 6, "client": [6, 8, 12, 14], "sinc": [6, 8, 10, 12], "protect": [6, 8], "7521": 6, "insid": [6, 8, 12], "client_assert": 6, "authorization_detail": 6, "rar": 6, "9396": 6, "post": [6, 8, 12, 14], "host": [6, 8], "x": [6, 8, 12, 13, 14], "www": [6, 8], "urlencod": [6, 8], "response_typ": [6, 8, 13], "client_id": [6, 8], "thumprint": 6, "code_challeng": 6, "e9melhoa2owvfremtjguchaoek1t8urwbugjsstw": 6, "cm": 6, "code_challenge_method": 6, "s256": 6, "eyjhbgcioijsuzi1niisimtpzci6imsyymrjin0": 6, "ew0kic": 6, "jpc3mioiaiczzcagrsa3f0myisdqogimf1zci6icjodhrwczovl3nlcnzlci5legftcgxllmnvbsisdqo": 6, "ginjlc3bvbnnlx3r5cguioiaiy29kzsbpzf90b2tlbiisdqogimnsawvudf9pzci6icjznkjozfjrcxqz": 6, "iiwnciaicmvkaxjly3rfdxjpijogimh0dhbzoi8vy2xpzw50lmv4yw1": 6, "client_assertion_typ": 6, "ietf": [6, 14], "param": [6, 14], "oauth": [6, 8, 13, 14], "walletinstanceattest": [6, 8, 13], "fifyx03bnosd8m6gyqifnhnp9cm_sam9tc5nlloiirc": [6, 12], "fyziol9lf2cekunt2jzxilrdink0upcd": 6, "openid_credenti": 6, "credential_definit": 6, "redirect_uri": [6, 8], "eudiw": [6, 8, 12, 13], "201": 6, "cach": 6, "request_uri": [6, 8], "bwc4jk": 6, "esc0w8acc191": 6, "y1ltc2": 6, "expires_in": 6, "60": 6, "get": [6, 8, 12, 14], "3aietf": 6, "3aparam": 6, "3aoauth": 6, "3arequest_uri": 6, "3abwc4jk": 6, "perspect": [6, 12], "11": [6, 8], "redirect": [6, 8], "univers": 6, "app": [6, 13, 14], "so": 6, "latter": 6, "resolv": [6, 12, 13], "pass": [6, 8], "302": 6, "found": 6, "locat": [6, 10], "splxlobezqqybys6wxsbia": 6, "3a": 6, "2f": 6, "2fpid": 6, "12": [6, 8], "certain": 6, "sender": 6, "draft16": 6, "mitig": 6, "misus": [6, 10], "leak": 6, "stolen": 6, "attack": [6, 13], "code_verifi": 6, "private_key_jwt": [6, 14], "eyj0exaioijkcg9wk2p3dcisimfszyi6ikvtmju2iiwiandrijp7imt0esi6ik": 6, "vdiiwieci6imw4dezyahgtmzr0vjnoukldukrzoxpda0rscejorjqyvvfvzldwqvdcr": 6, "nmilcj5ijoiovzfngpmx09rx282nhpivfrsy3vosmfqsg10nny5verwcluwq2r2r1j": 6, "qsisimnydii6ilatmju2in19": 6, "eyjqdgkioiitqnddm0vtyzzhy2mybfrjiiwiahrtij": 6, "oiue9tvcisimh0dsi6imh0dhbzoi8vc2vydmvylmv4yw1wbguuy29tl3rva2vuiiwia": 6, "wf0ijoxntyymjyynje2fq": 6, "gxa6t8lp4vfrg8v": 6, "fdwp0a0zdrj8igimlvqrmuvwnqg": 6, "4ptflbdlxiossx0x7nvi": 6, "fnyjk70nfbv37xrzt3lg": 6, "grant_typ": [6, 14], "authorization_cod": 6, "dbjftjez4cvp": 6, "mb92k27uhbuju1p1r_ww1gfwfoejxk": 6, "bearer": 6, "eyjhbgcioijiuzi1nii": 6, "15": [6, 8, 13], "success": 6, "c_nonc": 6, "200": 6, "ok": 6, "access_token": 6, "kz": 6, "8mxk1ealyznwh": 6, "lc": 6, "1fbao": 6, "4ljp": 6, "zspe_neo": 6, "gxu": 6, "token_typ": 6, "2677": 6, "tzign": 6, "snfbp": 6, "c_nonce_expires_in": 6, "86400": 6, "18": [6, 8], "Then": 6, "19": [6, 8], "schema": [6, 12], "registr": [6, 12], "later": 6, "nmilcj5ijoiovzfngpmx09rx282nhpivfrsy3vosmfqsg10nny5verwcluwq2r2r": 6, "1jeqsisimnydii6ilatmju2in19": 6, "eyjqdgkioijlmwozvl9is2ljoc1mquvciiwiahrtij": 6, "oir0vuiiwiahr1ijoiahr0chm6ly9yzxnvdxjjzs5legftcgxllm9yzy9wcm90zwn0z": 6, "wryzxnvdxjjzsisimlhdci6mtu2mji2mjyxocwiyxroijoizlvieu8ycjjam0rantnf": 6, "c05yv0jimhhxwg9htnk1oulps0nbcwtzbvffbyj9": 6, "2ow9rp35yrqzhrtnp86l": 6, "ey71": 6, "optxrimpptoa1plemagr6pxhf8y6": 6, "yqyvnmcw6fy1dqd": 6, "jfxsyomxhajplja": 6, "7b": 6, "22type": 6, "22": 6, "5b": 6, "22personidentificationdata": 6, "5d": 6, "7d": 6, "22proof_typ": 6, "ace0": 6, "9c5210e16c32": 6, "proof_typ": 6, "eyjrawqioijkawq6zxhhbxbsztplym": 6, "0b434530": 6, "e151": 6, "4c40": 6, "98b7": 6, "74c75a5ef760": 6, "aud": [6, 8, 13], "1504699136": 6, "nonc": [6, 8, 13], "20": [6, 8], "suitabl": 6, "succe": 6, "proceed": 6, "storag": [6, 12], "pragma": 6, "lupixvcwjk0eot4cxqe1nxk": 6, "wzwmhmn9oqp6yxx0a2l": 6, "fgff7": 6, "ukhla": 6, "6749": 6, "challeng": 6, "deriv": [6, 12], "grant": [6, 8, 10, 12, 14], "per": [6, 8], "iana": [6, 8], "registri": [6, 8, 10, 12], "symmetr": [6, 8], "mac": [6, 8], "7638": 6, "section_3": 6, "assum": [6, 8, 13], "implicit": 6, "session": [6, 8], "side": 6, "32": [6, 8, 13], "alphanumer": 6, "authrequest": 6, "top": 6, "media": [6, 8, 12, 13, 14], "8259": 6, "strong": [6, 14], "pseudorandom": 6, "lifetim": 6, "second": 6, "posit": 6, "integ": 6, "server": 6, "browser": 6, "serial": 6, "ad": 6, "abl": [6, 12, 13], "deleg": [6, 13], "submit": [6, 8], "accept": [6, 8], "invalid": [6, 12, 13], "error": [6, 8], "invalid_dpop_proof": 6, "7515": [6, 8], "8725": [6, 8], "chosen": [6, 8, 13, 14], "rfc7517": [6, 8], "7517": [6, 8, 12], "assign": [6, 8, 12], "v4": [6, 8], "4122": [6, 8], "htm": [6, 8], "attach": [6, 8], "9110": [6, 8], "htu": [6, 8], "target": [6, 8], "fragment": [6, 8], "accomplish": [6, 14], "methodolog": 6, "match": [6, 14], "9068": 6, "princip": 6, "subject": [6, 12], "subjectidtyp": 6, "taken": [6, 8], "prevent": [6, 8, 13, 14], "reus": 6, "reject": 6, "jkt": 6, "approv": 6, "upon": 6, "ath": [6, 8], "ascii": 6, "associ": [6, 13, 14], "previous": [6, 12, 13], "denot": 6, "mso_mdoc": [6, 8], "doctyp": [6, 8], "appendix": 6, "renew": [6, 12], "openid_credential_issu": [6, 12], "fanfs3ync9tjicaivhwlvuj3axwggz_98urfaqme": 6, "1649610249": 6, "1649437449": 6, "credential_issu": 6, "authorization_endpoint": [6, 13], "token_endpoint": [6, 14], "pushed_authorization_request_endpoint": 6, "dpop_signing_alg_values_support": 6, "credential_endpoint": 6, "credentials_support": 6, "cryptographic_binding_methods_support": 6, "cryptographic_suites_support": 6, "displai": 6, "italiano": 6, "di": 6, "esempio": 6, "logo": [6, 8, 12, 13, 14], "svg": [6, 8, 12, 13, 14], "alt_text": 6, "questo": 6, "background_color": 6, "12107c": 6, "text_color": 6, "ffffff": 6, "credentialsubject": [6, 8], "true": [6, 8, 13], "nome": 6, "cognom": 6, "nascita": 6, "luogo": 6, "identificativo": 6, "univoco": 6, "codic": 6, "fiscal": 6, "homepage_uri": [6, 8, 12, 14], "policy_uri": [6, 8, 13, 14], "privacy_polici": [6, 13, 14], "tos_uri": [6, 13, 14], "info_polici": [6, 13, 14], "logo_uri": [6, 8, 12, 13, 14], "openid_relying_parti": [6, 12], "doc": 6, "ask": [8, 10, 14], "demonstr": 8, "differ": [8, 10, 13], "analyz": 8, "chapter": 8, "take": 8, "account": 8, "scenario": [8, 10, 12], "util": [8, 14], "final": [8, 12], "futur": 8, "qr": 8, "frame": 8, "page": [8, 14], "login": [8, 10], "button": 8, "scope": [8, 12], "insert": 8, "extract": 8, "invok": 8, "capabl": [8, 12, 13, 14], "deselect": 8, "17": 8, "successfulli": 8, "base64": 8, "retriev": [8, 13, 14], "correct": 8, "quartili": 8, "up": [8, 12], "25": 8, "good": [8, 10, 13], "balanc": 8, "between": [8, 10, 12, 14], "densiti": 8, "space": 8, "remain": [8, 10], "readabl": 8, "even": [8, 10, 12], "damag": 8, "partial": 8, "obscur": 8, "raw": 8, "zxvkaxc6ly9hdxrob3jpemu": 8, "y2xpzw50x2lkpwh0dhbzoi8vdmvyawzpzxiuzxhhbxbszs5vcmcmcmvxdwvzdf91cmk9ahr0chm6ly92zxjpzmllci5legftcgxllm9yzy9yzxf1zxn0x3vyaq": 8, "action": [8, 10, 14], "made": [8, 12], "scan": 8, "legitim": 8, "walletinstanceattestationproofofpossess": 8, "dedic": [8, 12], "herein": 8, "doesn": [8, 12], "t": [8, 12], "break": 8, "do": [8, 12, 13], "miss": 8, "would": [8, 10, 13], "lowest": 8, "supported_alg": 8, "therein": [8, 12], "l8tfrhx": 8, "34tv3hricrdy9zckdlpbhf42uqufwvawbf": 8, "y": [8, 12, 13, 14], "9ve4jf_ok_o64zbttlcunjajhmt6v9tdvru0cdvgrda": 8, "crv": [8, 12, 13, 14], "p": [8, 12, 13, 14], "f47c96a1": 8, "f928": 8, "4768": 8, "aa30": 8, "ef32dc78aa69": 8, "1562262616": 8, "fuhyo2r2z3dz53esnrwbb0xwxoany59iikcaqksmqeo": 8, "e0bbf2f1": 8, "8c3a": 8, "4eab": 8, "a8ac": 8, "2e8f34db8a47": 8, "miicajccadogawibag": 8, "awz": 8, "2w3": 8, "sf2": 8, "europa": [8, 12], "client_id_schem": 8, "entity_id": 8, "response_mod": 8, "direct_post": 8, "vp_token": [8, 13], "response_uri": 8, "callback": 8, "2c128e4d": 8, "fc91": 8, "4cd3": 8, "86b8": 8, "18bdea0988cb": 8, "3be39b69": 8, "6ac1": 8, "41aa": 8, "921b": 8, "3e6c07ddcb03": 8, "1672418465": 8, "1672422065": 8, "sequenc": [8, 12], "alias": 8, "suffici": 8, "entropi": 8, "reason": 8, "expir": [8, 12, 13, 14], "after": [8, 13, 14], "usag": [8, 14], "presentation_definit": [8, 13], "still": [8, 12, 13], "under": [8, 10, 13, 14], "better": 8, "input_descriptor": 8, "constraint": [8, 12], "path": [8, 12], "limit_discolusr": 8, "prefer": [8, 14], "mention": [8, 13], "condit": 8, "presentation_definition_uri": 8, "point": [8, 13], "client_metadata": 8, "client_metadata_uri": 8, "why": 8, "malici": 8, "agent": 8, "gain": 8, "plaintext": 8, "transmit": 8, "network": 8, "possibl": [8, 12], "environ": [8, 14], "emploi": [8, 14], "tl": 8, "termin": 8, "Such": 8, "techniqu": [8, 10], "webserv": 8, "handl": 8, "manner": [8, 14], "deciph": 8, "transmiss": 8, "either": 8, "forward": 8, "negoti": 8, "actual": [8, 14], "intend": [8, 12, 13], "actor": [8, 10, 14], "segment": 8, "could": [8, 10, 13, 14], "intercept": 8, "sensit": 8, "unencrypt": 8, "snif": 8, "eyjhbgcioijfuzi1nii": 8, "9t2lq": 8, "decrypt": 8, "pt0ixx0": 8, "presentation_submiss": 8, "definition_id": 8, "32f54163": 8, "7166": 8, "48f1": 8, "93d8": 8, "ff217bdb0653": 8, "04a98be3": 8, "7fb0": 8, "4cf5": 8, "af9a": 8, "31579c8b0e7d": 8, "descriptor_map": 8, "period": [8, 12, 13], "vbexjksm45xphtanncig6mcyuu4jfgnzopgukvogg9c": [8, 13], "3978344f": 8, "8596": 8, "4c3a": 8, "a978": 8, "8fcaba3903c5": 8, "1573029723": 8, "0s6_wza2mj": 8, "expos": [8, 12], "2hnofs3ync9tjicaivhwlvuj3axwggz_98urfaqme": [8, 12], "1649590602": 8, "1649417862": 8, "5s4qi": 8, "wallet_relying_parti": [8, 12], "application_typ": 8, "client_nam": 8, "x5c": [8, 12, 13], "contact": [8, 12], "op": [8, 13], "default_acr_valu": 8, "spidl2": 8, "spidl3": 8, "vp_format": [8, 12], "jwt_vp_json": [8, 13], "eddsa": [8, 12], "es256k": [8, 12], "limit_disclosur": 8, "filter": [8, 12], "const": 8, "intent_to_retain": 8, "sampl": 8, "iso": 8, "18013": 8, "fals": [8, 13], "portrait": 8, "driving_privileg": 8, "default_max_ag": 8, "1111": 8, "jarm": 8, "authorization_signed_response_alg": 8, "authorization_encrypted_response_alg": 8, "authorization_encrypted_response_enc": 8, "a192cbc": 8, "a128gcm": 8, "a192gcm": 8, "a256gcm": 8, "subject_typ": 8, "pairwis": 8, "require_auth_tim": 8, "id_token_signed_response_alg": 8, "id_token_encrypted_response_alg": 8, "id_token_encrypted_response_enc": 8, "home": 8, "polici": [8, 12, 13, 14], "tech": [8, 12], "authority_hint": [8, 12], "while": [8, 10], "spec": [8, 12], "tbd": 8, "paradigm": 10, "complet": [10, 12, 14], "ownership": [10, 14], "determin": [10, 12, 14], "abil": [10, 13, 14], "revok": [10, 12], "said": 10, "histori": 10, "tradit": 10, "signific": [10, 13], "fact": 10, "envis": 10, "compani": 10, "want": [10, 12], "anoth": 10, "becaus": 10, "someth": 10, "individu": 10, "publish": [10, 12], "educ": 10, "institut": 10, "crucial": 10, "phone": 10, "portabl": 10, "principl": 10, "character": 10, "choos": 10, "reduc": 10, "risk": [10, 13], "collect": [10, 12], "leverag": [10, 14], "advanc": 10, "avoid": [10, 13], "theft": 10, "fraud": 10, "unauthor": [10, 13, 14], "vulner": [10, 12], "central": 10, "seamless": [10, 14], "across": 10, "border": 10, "effici": [10, 12, 13], "cost": [10, 12], "reduct": 10, "elimin": 10, "repetit": 10, "purchas": 10, "physic": 10, "ag": 10, "restrict": [10, 12], "item": 10, "necessari": [10, 12, 13], "abov": [10, 12], "reveal": 10, "legitimaci": [12, 14], "distribut": 12, "mark": 12, "509": [12, 13], "appli": 12, "subordin": 12, "leaf": 12, "represent": [12, 14], "plai": [12, 14], "except": 12, "call": [12, 13], "summari": 12, "pki": 12, "make": [12, 13, 14], "build": 12, "tamper": [12, 14], "compris": 12, "forg": 12, "adversari": 12, "preserv": [12, 13, 14], "doe": [12, 13], "track": [12, 13], "against": [12, 13], "guarantor": 12, "histor": 12, "save": 12, "year": 12, "retent": 12, "rotat": 12, "flexibl": 12, "modifi": 12, "domain": [12, 14], "simultan": 12, "disabl": 12, "certainti": 12, "propag": 12, "adopt": [12, 13, 14], "effect": [12, 14], "wide": 12, "rang": 12, "softwar": 12, "kit": 12, "rapid": 12, "scalabl": [12, 13], "coverag": 12, "satisfi": 12, "onboard": 12, "recognis": 12, "similar": 12, "rest": [12, 13, 14], "publicli": 12, "summaris": 12, "itself": [12, 14], "third": [12, 13], "superior": 12, "trust_mark_id": 12, "motiv": 12, "serv": [12, 14], "plain": 12, "default": 12, "howev": 12, "enter": [12, 14], "keep": 12, "maximum": 12, "max_path_length": 12, "1649375259": 12, "1649373279": 12, "3i5vv": 12, "_": 12, "root": 12, "ca": 12, "x2zomhngsdc4zlbrcxhmt3mzrmrzog9jd3o2qjzdam51cuhhufruowd0wq": 12, "1knr9ar3mzmokyty8brvriue85nixryx4xd3k4jw7vi": 12, "slt14644zbyxyf": 12, "xmw7apdlbmuw3t1urwi4nafmtkri": 12, "ta": 12, "federation_fetch_endpoint": 12, "federation_resolve_endpoint": 12, "federation_list_endpoint": 12, "federation_trust_mark_status_endpoint": 12, "trust_mark_statu": 12, "trust_marks_issu": 12, "behalf": 12, "concern": 12, "cryptograf": 12, "entity_typ": 12, "trust_mark_issu": 12, "trustworthi": [12, 13, 14], "trust_mark_own": 12, "trust_mark": 12, "automat": [12, 13], "em3cmnzghiyfsq090n6b3op7laaqj8rghmhxgmjstqg": 12, "1649623546": 12, "1649450746": 12, "metadata_polici": 12, "subset_of": 12, "email": 12, "request_authentication_methods_support": 12, "one_of": 12, "request_object": 12, "request_authentication_signing_alg_values_support": 12, "jwt_vp": 12, "pleas": [12, 14], "allowed_leaf_entity_typ": 12, "real": 12, "onlin": 12, "unavail": 12, "concaten": 12, "pertain": 12, "produc": 12, "beyond": 12, "updat": [12, 13], "earliest": 12, "No": 12, "forc": 12, "higher": 12, "abstract": 12, "entityconfigur": 12, "signedjwt": 12, "selfissu": 12, "byleaf": 12, "entitystat": 12, "bytrustanchor": 12, "origin": 12, "eyjhbgcioijfuzi1niisimtpzci6imveuknosghwyxpwd01vrlpjmvu0ulrremmxsjrnmgrvyuu4mwvvwk5vmvuywkdsm1lqrmztv2h1uveilcj0exaioijhchbsawnhdglvbi9lbnrpdhktc3rhdgvtzw50k2p3dcj9": 12, "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": 12, "dirbryfesmi_6ogrjahayupctxsvbzbmdokvztjyygzmkep6eslixa8nuu9bwbwp_elngdkbpqusbwigx66d5w": 12, "eyjhbgcioijfuzi1niisimtpzci6ilfwunvxse5fwtjzmfdhnw5hshb3vjjkvgrtd3hirupvy2pcdk9fehnwmfext0dnmfzwqnhhbtuyt0eilcj0exaioijhchbsawnhdglvbi9lbnrpdhktc3rhdgvtzw50k2p3dcj9": 12, "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": 12, "rigdha7coap3so3znsjdwt7": 12, "8tea41an3ybw": 12, "qawfndqmuzctqrwcd4vtx6tzeeoro3keu8bjeaklikhrhzobg": 12, "eyjhbgcioijfuzi1niisimtpzci6imvvrldsakjkylhveu5tmhrhv1jrylhcmwvurlbjazv6uzbgrvftmwfnvfpeytnowk1wukturtr5y3cilcj0exaioijhchbsawnhdglvbi9lbnrpdhktc3rhdgvtzw50k2p3dcj9": 12, "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": 12, "kr2obdmfqlgcz2zqn0fgop7cwsw4clxbaj4": 12, "j_c3hc": 12, "yeeck6sllnk00bgqoee2ncmy2lqk9dyqo1iaub_zg7a": 12, "At": 12, "short": 12, "attain": 12, "compat": [12, 14], "less": 12, "24": 12, "hour": 12, "As": 12, "furthermor": [12, 14], "longer": [12, 13], "inquir": 12, "hardwar": 12, "amount": 12, "matter": 12, "line": 12, "gdpr": [12, 13], "There": 12, "especi": 12, "perimet": 12, "like": [12, 13], "jurisdict": 12, "eg": 12, "snapshot": 12, "back": 12, "cloud": 12, "explicit": 12, "permiss": 12, "overload": 12, "manipul": 13, "forgeri": 13, "attempt": 13, "fulfil": 13, "meet": 13, "guarante": [13, 14], "belong": 13, "sustain": 13, "criteria": 13, "task": 13, "light": 13, "fast": 13, "variou": [13, 14], "simplic": 13, "therebi": 13, "accur": 13, "measur": 13, "tool": 13, "reusabl": 13, "usabl": 13, "repeat": 13, "loss": 13, "delet": 13, "lost": 13, "becom": [13, 14], "pseudonymis": 13, "imposs": 13, "absenc": 13, "art": 13, "comprehens": [13, 14], "pose": 13, "theoret": 13, "databas": 13, "guard": 13, "replai": 13, "formal": 13, "now": 13, "readi": 13, "explain": 13, "var": 13, "walletinstanceattestationrequest": 13, "porvid": 13, "comma": 13, "6ec69324": 13, "60a8": 13, "4e5b": 13, "a697": 13, "a766d85790ea": 13, "4hnpti": 13, "xr2pjyrjkgmnz4wmdnqd_ujsq4r95nj98b44": 13, "liznsb39vfjhygs3k7jxe4r3": 13, "cogfqwztpbirqpnlrg": 13, "1686645115": 13, "1686652315": 13, "whose": 13, "let": 13, "openid4vc": 13, "haip": 13, "problem": 13, "limit": 13, "durat": 13, "attested_security_context": 13, "context": [13, 14], "Of": 13, "agreement": 13, "response_types_support": 13, "vp_formats_support": 13, "jwt_vc_json": 13, "request_object_sign": 13, "_alg_values_support": 13, "_uri_support": 13, "boolean": 13, "transfer": 13, "experiment": [13, 14], "5t5yypbhn": [13, 14], "egieei5iuzr6r0mr02lnvq0omekmnkcji": [13, 14], "eyjhbgcioijfuz": 13, "6s0a": 13, "jjla": 13, "h9gw": 13, "miibjdcc": 13, "xfehgkqa": 13, "basic": [13, 14], "alg_values_support": 13, "request_object_signing_alg_values_support": 13, "presentation_definition_uri_support": 13, "1687281195": 13, "1687288395": 13, "cater": 14, "asset": 14, "total": 14, "legisl": 14, "primari": 14, "conveni": 14, "These": 14, "pid\u00b9": 14, "along": 14, "short\u00b9": 14, "vital": 14, "adher": 14, "address": 14, "android": 14, "io": 14, "engag": 14, "asymmetr": 14, "exclus": 14, "Their": 14, "utmost": 14, "execut": 14, "tee": 14, "\u00b3": 14, "distinct": 14, "performed\u00b2": 14, "unlock": 14, "pin": 14, "biometr": 14, "fingerprint": 14, "facial": 14, "recognit": 14, "unambigu": 14, "providers\u00b9": 14, "parties\u00b9": 14, "share": 14, "rel": 14, "revert": 14, "circumst": 14, "voluntarili": 14, "remov": 14, "outlin": 14, "datetim": 14, "hous": 14, "attested_security_context_values_support": 14, "low": 14, "medium": 14, "grant_types_support": 14, "token_endpoint_auth_methods_suppor": 14, "ted": 14, "token_endpoint_auth_signing_alg_va": 14, "lues_support": 14, "asc_values_support": 14, "websit": 14, "qrjrj3af_b57sboirrcbm7br7woc8ynj7lhfpteffuk": 14, "1h0cwdyggvu8w": 14, "kpku_xycocunt2o0bwsliqtnpu6im": 14, "token_endpoint_auth_methods_support": 14, "token_endpoint_auth_signing_alg_values_support": 14, "es384": 14, "pagopa": 14, "1687171759": 14, "1709290159": 14, "two": 14, "our": 14, "\u00b9": 14, "inherit": 14, "write": 14, "\u00b2": 14, "depend": 14, "trusti": 14, "enclav": 14}, "objects": {}, "objtypes": {}, "objnames": {}, "titleterms": {"cryptograph": 0, "algorithm": 0, "backup": 1, "restor": 1, "rst": [1, 7, 9], "gener": [1, 7, 9, 12, 13], "properti": [1, 7, 9, 12, 13], "requir": [1, 7, 9, 12, 13, 14], "attribut": [1, 7, 9], "implement": [1, 7, 9], "consider": [1, 7, 9, 12], "librari": [1, 7, 9], "code": [1, 7, 9], "snippet": [1, 7, 9], "extern": [1, 7, 9, 14], "refer": [1, 7, 9, 14], "how": 2, "contribut": 2, "norm": [3, 5], "languag": 3, "convent": 3, "defin": 3, "term": 3, "acronym": 3, "italian": 4, "eudi": [4, 12], "wallet": [4, 12, 13, 14], "technic": 4, "specif": 4, "introduct": [4, 10], "index": 4, "content": 4, "pid": [5, 6], "q": [5, 6], "eaa": [5, 6], "data": 5, "model": [5, 12], "sd": 5, "jwt": 5, "paramet": [5, 6, 12], "verif": 5, "field": 5, "claim": 5, "non": [5, 12], "exampl": 5, "mdoc": 5, "cbor": 5, "issuanc": 6, "high": [6, 13], "level": [6, 13], "flow": [6, 8], "detail": [6, 8, 13], "push": 6, "author": [6, 8], "request": [6, 8, 13], "endpoint": [6, 12, 14], "par": 6, "http": [6, 8], "respons": [6, 8], "token": 6, "access": 6, "credenti": 6, "entiti": [6, 8, 12], "configur": [6, 8, 12], "issuer": 6, "pseudonym": 7, "reli": [8, 12], "parti": [8, 12], "solut": [8, 14], "same": 8, "devic": 8, "remot": 8, "cross": 8, "object": 8, "dpop": 8, "header": [8, 13, 14], "uri": 8, "revoc": 9, "list": 9, "self": 10, "sovereign": 10, "ident": 10, "ssi": 10, "standard": 11, "The": 12, "infrastructur": 12, "trust": 12, "feder": 12, "role": 12, "api": 12, "common": 12, "anchor": 12, "leav": 12, "intermedi": 12, "metadata": [12, 14], "type": 12, "statement": 12, "evalu": 12, "mechan": 12, "attest": [12, 13, 14], "instanc": [12, 13, 14], "chain": 12, "offlin": 12, "repudi": 12, "long": 12, "live": 12, "privaci": 12, "about": 12, "decentr": 12, "design": 13, "static": 13, "compon": 13, "view": 13, "dynam": 13, "format": 13, "payload": [13, 14], "lifecycl": 14, "initi": 14, "process": 14, "transit": 14, "valid": 14, "state": 14, "return": 14, "oper": 14, "deactiv": 14, "provid": 14, "wallet_provid": 14, "federation_ent": 14}, "envversion": {"sphinx.domains.c": 2, "sphinx.domains.changeset": 1, "sphinx.domains.citation": 1, "sphinx.domains.cpp": 6, "sphinx.domains.index": 1, "sphinx.domains.javascript": 2, "sphinx.domains.math": 2, "sphinx.domains.python": 3, "sphinx.domains.rst": 2, "sphinx.domains.std": 2, "sphinx.ext.intersphinx": 1, "sphinx.ext.todo": 2, "sphinx": 56}}) \ No newline at end of file +Search.setIndex({"docnames": ["algorithms", "backup-restore", "contribute", "defined-terms", "index", "pid-eaa-data-model", "pid-eaa-issuance", "pseudonyms", "relying-party-solution", "revocation-lists", "ssi-introduction", "standards", "trust", "wallet-instance-attestation", "wallet-solution"], "filenames": ["algorithms.rst", "backup-restore.rst", "contribute.rst", "defined-terms.rst", "index.rst", "pid-eaa-data-model.rst", "pid-eaa-issuance.rst", "pseudonyms.rst", "relying-party-solution.rst", "revocation-lists.rst", "ssi-introduction.rst", "standards.rst", "trust.rst", "wallet-instance-attestation.rst", "wallet-solution.rst"], "titles": ["Cryptographic algorithms", "backup-restore.rst", "How to contribute", "Normative Language and Conventions", "Italian EUDI Wallet Technical Specifications", "PID/(Q)EAA Data Model", "PID/(Q)EAA Issuance", "pseudonyms.rst", "Relying Party Solution", "revocation-lists.rst", "Self Sovereign Identity", "Standards", "The Infrastructure of Trust", "Wallet Instance Attestation", "Wallet Solution"], "terms": {"tutti": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "gli": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "esempi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "contenuti": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "questa": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "documentazion": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "sono": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "da": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "intendersi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "come": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "non": [0, 1, 2, 3, 4, 6, 7, 8, 9, 10, 11, 13, 14], "normativi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "all": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "exampl": [0, 1, 2, 3, 4, 6, 7, 8, 9, 10, 11, 12, 13, 14], "contain": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "thi": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "document": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "ar": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "meant": [0, 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14], "norm": [0, 1, 2, 4, 6, 7, 8, 9, 10, 11, 12, 13, 14], "The": [0, 2, 3, 4, 5, 6, 8, 10, 13, 14], "follow": [0, 2, 4, 5, 6, 8, 10, 12, 13, 14], "must": [0, 3, 4, 5, 6, 8, 12, 13, 14], "support": [0, 6, 8, 12, 13, 14], "oper": [0, 4, 6, 8, 12], "refer": [0, 3, 4, 5, 6, 8, 10, 12, 13], "rs256": [0, 5, 6, 8, 12], "signatur": [0, 3, 4, 5, 6, 8, 12, 13, 14], "rfc": [0, 5, 6, 8, 12], "7518": 0, "rs512": [0, 5, 6, 12], "rsa": [0, 5, 6, 8, 12], "oaep": [0, 8], "kei": [0, 1, 3, 5, 6, 7, 8, 9, 10, 12, 13, 14], "encrypt": [0, 6, 8, 12], "256": [0, 5, 6, 8, 12, 13, 14], "7516": [0, 6, 8], "a128cbc": [0, 8], "hs256": [0, 8], "content": [0, 5, 6, 8], "a256cbc": [0, 8], "hs512": [0, 8], "recommend": [0, 3, 6, 12], "es256": [0, 6, 8, 12, 13, 14], "es512": [0, 6, 12, 14], "ps256": [0, 12], "ps512": [0, 12], "ecdh": 0, "es": [0, 13], "a128kw": 0, "a256kw": 0, "NOT": [0, 3, 5, 6, 8], "none": [0, 6, 8], "rsa_1_5": 0, "hs384": [0, 8], "length": [0, 8], "equal": [0, 6, 8], "greater": 0, "than": [0, 12], "2048": 0, "bit": 0, "A": [0, 3, 6, 8, 10, 12, 13, 14], "4096": 0, "what": [1, 4, 7, 9, 10, 12], "useful": [1, 7, 9], "todo": [1, 5, 7, 9, 11], "req": [1, 7, 8, 9], "1": [1, 5, 6, 7, 8, 9, 12, 13, 14], "2": [1, 5, 6, 7, 8, 9, 13], "tabl": [1, 5, 6, 7, 9, 12], "paramet": [1, 4, 7, 8, 9, 13, 14], "claim": [1, 3, 4, 6, 7, 8, 9, 12, 13], "descript": [1, 3, 5, 6, 7, 8, 9, 12], "valu": [1, 5, 6, 7, 8, 9, 12, 13, 14], "IT": [2, 3, 4, 5, 6], "wallet": [2, 3, 5, 6, 8, 10], "project": [2, 4], "includ": [2, 5, 6, 8, 10, 12, 13, 14], "an": [2, 3, 5, 6, 8, 10, 12, 13, 14], "open": [2, 14], "develop": [2, 4, 12], "process": [2, 3, 4, 6, 8, 10, 12], "approach": [2, 10], "ensur": [2, 4, 5, 10, 12, 13, 14], "access": [2, 4, 8, 10, 12, 14], "invit": 2, "interest": 2, "parti": [2, 3, 4, 6, 10, 13, 14], "particip": [2, 3, 4, 12], "consequ": 2, "stakehold": 2, "nation": [2, 3, 4, 5, 6, 10, 14], "intern": [2, 4, 8], "commun": [2, 4], "member": [2, 4, 6, 10, 12], "onli": [2, 3, 5, 8, 10, 12, 14], "encourag": 2, "also": [2, 3, 6, 10, 12, 13, 14], "heartili": 2, "welcom": 2, "refin": [2, 8], "technic": [2, 3, 6, 8, 12], "rule": [2, 3, 4, 5, 12], "below": [2, 3, 5, 6, 8, 12, 13, 14], "sever": [2, 13], "method": [2, 6, 8, 14], "avail": [2, 5, 8, 12, 14], "github": 2, "issu": [2, 3, 5, 6, 8, 10, 12, 13, 14], "By": [2, 5], "you": [2, 4], "can": [2, 4, 6, 8, 10, 12, 14], "seek": [2, 13], "clarif": 2, "propos": [2, 4, 8], "enhanc": [2, 4, 10, 13], "report": 2, "editori": 2, "typo": 2, "If": [2, 6, 8, 12, 13], "work": 2, "we": [2, 5, 12, 13, 14], "draft": [2, 5, 6, 8, 12], "pull": 2, "request": [2, 4, 10, 12, 14], "link": [2, 6, 13], "repres": [2, 5, 6, 8, 12, 13, 14], "activ": [2, 4, 8, 10, 12, 14], "typic": [2, 10], "alwai": [2, 3, 10, 12], "base": [2, 6, 8, 10, 13], "discuss": [2, 8, 13], "onc": [2, 6, 8, 14], "initi": [2, 4, 6], "facilit": [2, 12], "review": [2, 14], "chang": [2, 8, 12], "befor": [2, 6, 12], "thei": [2, 3, 10, 12, 13], "merg": [2, 13], "main": [2, 6, 10, 12], "branch": 2, "version": [2, 13, 14], "corrent": 2, "italia": 2, "slack": 2, "channel": 2, "messag": [2, 6, 13], "applic": [2, 3, 6, 8, 10, 12, 14], "design": [2, 4, 10, 14], "busi": [2, 4], "connect": [2, 5, 6, 12, 14], "peopl": [2, 10], "inform": [2, 5, 8, 10, 12, 13, 14], "need": [2, 6, 8, 10, 12, 13, 14], "from": [2, 4, 5, 6, 8, 12, 13, 14], "public": [2, 3, 4, 5, 6, 8, 10, 12, 13, 14], "administr": [2, 4, 10, 12], "technician": 2, "student": 2, "citizen": [2, 3, 4, 5, 10], "ha": [2, 6, 8, 12], "everyon": 2, "join": 2, "free": 2, "http": [2, 4, 5, 12, 13, 14], "where": [2, 5, 6, 8, 10, 12, 13], "learn": 2, "about": [2, 4, 8, 10, 13, 14], "partak": 2, "word": 3, "requir": [3, 4, 5, 6, 8], "shall": [3, 6], "should": [3, 5, 6, 8, 12, 13], "mai": [3, 5, 6, 8, 12, 14], "option": [3, 10], "interpret": 3, "describ": [3, 5, 6, 8, 12, 13], "bcp": 3, "14": [3, 6, 8, 13], "rfc2119": 3, "rfc8174": 3, "when": [3, 5, 6, 8, 10, 12, 14], "appear": 3, "capit": 3, "shown": [3, 8], "here": [3, 8, 14], "user": [3, 4, 5, 6, 8, 10, 12, 13, 14], "trust": [3, 4, 5, 6, 8, 10, 13, 14], "servic": [3, 4, 6, 10, 12, 13, 14], "model": [3, 4, 6, 8, 10, 13, 14], "list": [3, 4, 5, 6, 10, 12, 13, 14], "framework": [3, 4, 5, 6, 12, 14], "attribut": [3, 4, 5, 8, 10, 12, 13, 14], "electron": [3, 4, 5, 12, 13, 14], "attest": [3, 4, 6, 8, 10], "provid": [3, 4, 5, 6, 8, 10, 12, 13], "tsp": [3, 12], "person": [3, 5, 6, 8, 10, 12, 13, 14], "identif": [3, 4, 5, 6, 8, 10, 12, 14], "data": [3, 4, 6, 8, 10, 12, 13, 14], "pid": [3, 4, 8, 12, 14], "revoc": [3, 4, 6, 8, 12, 13, 14], "qualifi": [3, 12, 14], "qtsp": [3, 12], "eaa": [3, 4, 8, 12, 14], "eida": [3, 4, 5, 6, 10, 12], "arf": [3, 4, 6, 12], "definit": [3, 8, 10, 13, 14], "which": [3, 5, 6, 8, 10, 12, 13, 14], "us": [3, 4, 5, 6, 8, 10, 12, 13, 14], "further": [3, 6, 12, 14], "insight": 3, "topic": 3, "complement": 3, "interact": [3, 6, 8, 10, 12, 13, 14], "compon": [3, 4, 6, 12], "accredit": [3, 12, 13], "bodi": [3, 6, 12], "entiti": [3, 4, 13, 14], "feder": [3, 4, 6, 8, 14], "author": [3, 4, 10, 12, 13, 14], "respons": [3, 4, 12, 14], "manag": [3, 10, 13, 14], "verif": [3, 4, 6, 10, 12, 13, 14], "certif": [3, 10, 12, 13], "ecosystem": [3, 4, 10, 12, 14], "role": [3, 4, 10, 14], "digit": [3, 4, 5, 6, 8, 10, 12, 14], "ident": [3, 4, 5, 6, 14], "recogn": [3, 10], "state": [3, 4, 6, 8, 10, 12], "identifi": [3, 5, 6, 8, 12, 13, 14], "issuanc": [3, 4, 5, 8, 12, 13, 14], "master": 3, "alreadi": [3, 4, 6], "present": [3, 4, 5, 6, 8, 10, 12, 13, 14], "italian": [3, 5, 6, 12], "system": [3, 4, 6, 10, 12, 14], "govern": [3, 4, 10], "guidelin": [3, 4], "administ": 3, "directli": [3, 6], "through": [3, 5, 12, 13], "its": [3, 6, 8, 12, 13, 14], "intermediari": [3, 8, 12], "statu": [3, 5, 6, 8, 12, 14], "elig": [3, 4], "evalu": [3, 4], "It": [3, 5, 6, 8, 10, 12, 13, 14], "perform": [3, 6, 8, 13], "oversight": 3, "function": [3, 4, 5, 14], "instanc": [3, 4, 5, 6, 8], "solut": [3, 4, 6, 12, 13], "instal": [3, 6, 13, 14], "mobil": [3, 8, 10, 12, 13, 14], "devic": [3, 6, 8, 10, 12, 13, 14], "control": [3, 5, 6, 10, 14], "specif": [3, 5, 6, 8, 10, 12, 13, 14], "who": [3, 4, 6, 10, 12], "sole": 3, "owner": [3, 6, 10, 12], "enabl": [3, 5, 10, 12, 14], "fulli": [3, 12], "autonom": [3, 12], "privat": [3, 4, 5, 6, 8, 12, 13], "conform": [3, 6, 13], "profil": [3, 5, 6], "verifi": [3, 5, 6, 8, 10, 12, 13, 14], "prove": [3, 5, 10, 12], "secur": [3, 6, 8, 10, 12, 13, 14], "compliac": [3, 12], "qeaa": [3, 14], "form": [3, 5, 6, 8, 10, 12, 14], "substanti": 3, "s": [3, 5, 6, 8, 10, 12, 13, 14], "possess": [3, 5, 6, 8, 10, 12, 14], "reli": [3, 4, 6, 10, 14], "natur": [3, 5, 14], "legal": [3, 10, 12, 14], "implement": [3, 4, 6, 12, 13], "authent": [3, 4, 5, 6, 8, 10, 12, 13, 14], "submiss": 3, "mechan": [3, 4, 5, 8, 14], "complianc": [3, 4, 6, 12, 13, 14], "regulatori": 3, "cryptograph": [3, 4, 5, 6, 8, 10, 12, 14], "cannot": [3, 5, 12], "repudi": [3, 4], "over": [3, 5, 10, 12, 13, 14], "time": [3, 5, 6, 8, 12, 13, 14], "relat": [3, 4, 5, 6, 8, 12, 13], "particular": [3, 12], "layer": [3, 8], "architectur": [3, 4, 6, 12, 13, 14], "establish": [3, 4, 6, 10, 14], "reliabl": [3, 5, 12, 13, 14], "level": [3, 4, 8, 10, 14], "assur": [3, 5, 13, 14], "degre": 3, "confid": [3, 14], "vet": 3, "credenti": [3, 4, 5, 8, 10, 12, 13], "same": [3, 6, 8, 12], "whom": [3, 10, 12], "wa": [3, 4, 6, 8, 13], "oid4vp": [3, 8], "openid": [3, 5, 6, 8, 12, 14], "vc": [3, 5, 6, 8], "vp": [3, 8], "api": [3, 4, 14], "program": 3, "interfac": [3, 6, 14], "loa": [3, 5, 6, 13, 14], "stand": 4, "commonli": 4, "name": [4, 5, 6, 8, 12, 14], "eu": [4, 8, 12, 14], "regul": [4, 10], "910": 4, "2014": 4, "transact": [4, 6, 14], "market": 4, "repeal": 4, "old": 4, "direct": [4, 13], "1999": 4, "93": 4, "ec": [4, 8, 12, 13, 14], "new": [4, 5, 6, 10, 13], "european": [4, 10], "overcom": 4, "dissimilar": 4, "both": [4, 5, 10, 12, 14], "technolog": 4, "experi": [4, 10, 14], "term": [4, 12, 13, 14], "exist": [4, 14], "among": [4, 12, 13, 14], "21": 4, "eid": [4, 6, 14], "current": [4, 5, 6], "within": [4, 6, 8, 12, 14], "mani": 4, "16": [4, 6, 8], "creat": [4, 6, 8, 12, 13], "improv": [4, 10], "respond": 4, "input": [4, 14], "receiv": [4, 6, 13], "area": 4, "innov": 4, "decentr": 4, "awar": 4, "To": [4, 8, 13, 14], "date": [4, 5, 6, 12, 13], "three": [4, 14], "coexist": 4, "itali": [4, 6], "web": [4, 6, 8, 12, 13, 14], "card": 4, "cie": [4, 5, 6], "spid": [4, 6, 8, 12], "health": 4, "ts": 4, "cn": 4, "result": [4, 6, 12, 13], "difficult": 4, "thu": [4, 5, 6, 12, 14], "costli": 4, "maintain": [4, 10, 13], "multipl": [4, 10, 12, 13], "therefor": [4, 10, 12], "streamlin": [4, 10], "optim": 4, "alloc": 4, "resourc": [4, 6, 8, 12], "simplifi": 4, "integr": [4, 5, 6, 8, 10, 13, 14], "certifi": [4, 6, 12, 13, 14], "strengthen": 4, "promot": [4, 10], "inclus": 4, "consolid": 4, "best": 4, "practic": [4, 13], "maxim": 4, "deploy": 4, "qualiti": [4, 8], "infrastructur": [4, 10], "provis": [4, 5], "adequ": 4, "accommod": [4, 12], "basi": 4, "acquir": [4, 10, 14], "full": [4, 10], "In": [4, 5, 6, 8, 10, 12, 14], "order": [4, 5, 8, 14], "achiev": 4, "object": [4, 5, 6, 12, 13], "notifi": [4, 6, 8, 12, 14], "scheme": [4, 5, 6, 8, 10], "evolut": 4, "envisag": 4, "progress": 4, "wai": [4, 6, 8, 12], "migrat": 4, "purpos": [4, 8, 10, 14], "defin": [4, 5, 6, 8, 12, 13, 14], "involv": [4, 6, 10, 12], "find": [4, 8], "accord": [4, 5, 6, 8, 12, 13, 14], "realiabl": 4, "set": [4, 5, 6, 8, 12, 13, 14], "mdl": [4, 8], "cbor": 4, "format": [4, 5, 6, 8, 12, 14], "sd": [4, 6, 8], "jwt": [4, 6, 8, 12, 13, 14], "gener": [4, 5, 6, 14], "jw": [4, 6, 8, 12, 13, 14], "openid4vci": [4, 6, 12], "openid4vp": [4, 6, 8, 12], "pseudonym": 4, "siopv2": [4, 8], "backup": 4, "restor": 4, "self": 4, "sovereign": 4, "ssi": 4, "languag": 4, "convent": 4, "acronym": 4, "properti": [4, 5], "endpoint": [4, 8, 13], "configur": [4, 13, 14], "common": 4, "anchor": [4, 6, 13], "leav": 4, "intermedi": [4, 10], "metadata": [4, 5, 6, 8, 10, 13], "type": [4, 5, 6, 8, 13, 14], "statement": [4, 6, 8, 14], "chain": [4, 5, 6, 8, 13], "offlin": 4, "long": 4, "live": 4, "privaci": [4, 6, 8, 10, 13, 14], "consider": [4, 8], "q": [4, 8, 12, 14], "field": [4, 6, 8, 10, 13], "mdoc": [4, 8], "high": [4, 5, 8, 14], "flow": [4, 5, 12], "detail": [4, 5, 10, 12, 14], "push": 4, "par": 4, "token": [4, 5, 8, 13, 14], "issuer": [4, 5, 8, 10, 12, 13], "lifecycl": 4, "transit": 4, "valid": [4, 5, 6, 8, 10, 12, 13], "return": [4, 6, 8, 12, 13], "deactiv": 4, "header": [4, 5, 6, 12], "payload": [4, 5, 6, 8], "wallet_provid": [4, 12], "federation_ent": [4, 6, 8, 12], "extern": 4, "static": [4, 8, 12], "view": [4, 14], "dynam": [4, 6, 12], "remot": [4, 5, 12], "protocol": [4, 6, 12], "dpop": [4, 6], "uri": [4, 6], "rst": 4, "librari": [4, 12], "code": [4, 5, 6, 8, 12], "snippet": 4, "algorithm": [4, 5, 6, 8, 12, 13, 14], "how": [4, 8, 12, 13], "contribut": 4, "standard": [4, 12, 14], "law": 5, "allow": [5, 6, 8, 10, 12, 13, 14], "authenitc": 5, "carri": [5, 6, 8, 10, 12], "famili": [5, 6], "first": [5, 6, 8], "birth": [5, 6], "place": [5, 6], "uniqu": [5, 6, 8, 12, 13, 14], "taxpay": 5, "number": [5, 6, 8, 12, 14], "extend": [5, 6, 14], "oidc": [5, 6, 8, 10, 12], "ida": 5, "bind": [5, 6, 8, 12, 13], "give": [5, 6, 8, 12], "evid": 5, "proof": [5, 6, 8, 10, 12, 14], "procedur": [5, 10], "underli": [5, 14], "proxim": 5, "recipi": 5, "know": [5, 10, 12], "sourc": [5, 10], "rp": [5, 6, 8, 12, 13], "section": [5, 6, 8, 12, 13, 14], "select": [5, 6, 8], "disclosur": [5, 8, 13], "specifi": [5, 6, 13, 14], "terbu": 5, "latest": 5, "sign": [5, 6, 8, 10, 12, 13, 14], "_sd_alg": 5, "5": [5, 6, 8, 12, 13], "other": [5, 6, 10, 12, 14], "some": [5, 6, 12], "them": [5, 8, 10, 12, 13, 14], "disclos": [5, 6, 8, 10, 12], "indic": [5, 6, 8, 12, 13], "hash": [5, 6, 8], "digest": 5, "salt": 5, "one": [5, 6, 8, 10, 12, 13], "omit": [5, 6], "instead": [5, 8, 10, 12], "respect": [5, 6, 14], "decoi": 5, "arrai": [5, 6, 8, 12, 13, 14], "_sd": [5, 8], "each": [5, 6, 8, 12, 13, 14], "map": [5, 8, 12], "calcul": 5, "random": [5, 6, 8], "sent": [5, 6, 8], "holder": [5, 8, 10, 12, 13], "togeth": 5, "combin": [5, 12], "seri": [5, 14], "base64url": [5, 6], "encod": [5, 6, 8], "separ": [5, 8, 13], "next": 5, "singl": [5, 6, 8, 10, 12], "tild": 5, "charact": [5, 6], "n": [5, 6, 8, 12], "see": [5, 6, 12, 13], "more": [5, 6, 8, 12, 14], "jose": [5, 6, 8], "mandatori": [5, 6, 12, 13], "typ": [5, 6, 8, 12, 13, 14], "rfc7515": [5, 6, 8], "4": [5, 6, 8, 12, 13], "9": [5, 6, 8, 13], "alg": [5, 6, 8, 12, 13, 14], "kid": [5, 6, 8, 12, 13, 14], "8": [5, 6, 8, 13], "trust_chain": [5, 8, 12, 13], "json": [5, 6, 8, 12, 13], "fed": [5, 8, 12], "3": [5, 6, 8, 12, 13, 14], "i": [5, 13], "e": [5, 6, 8, 10, 12, 13, 14], "iss": [5, 6, 8, 12, 13, 14], "url": [5, 6, 8, 12, 13, 14], "string": [5, 6, 8, 12, 13, 14], "rfc7519": [5, 6], "sub": [5, 6, 8, 12, 13, 14], "thumbprint": [5, 6, 13, 14], "jwk": [5, 6, 8, 12, 13, 14], "cnf": [5, 6, 8, 13], "jti": [5, 6, 8, 13], "id": [5, 6, 8, 12, 13], "uuid4": [5, 6], "7": [5, 6, 8, 12, 13], "iat": [5, 6, 8, 12, 13, 14], "unix": [5, 6, 8, 12, 13, 14], "timestamp": [5, 6, 8, 12, 13, 14], "numericd": [5, 6, 8, 12], "7519": [5, 6, 8, 12], "6": [5, 6, 8, 12], "exp": [5, 6, 8, 12, 13, 14], "expiri": [5, 6, 12], "materi": [5, 6], "confirm": [5, 6], "declar": 5, "rfc7800": 5, "obtain": [5, 6, 8, 12, 13, 14], "For": [5, 6, 12, 14], "case": [5, 6, 12, 13, 14], "personidentificationdata": [5, 6, 8], "verified_claim": [5, 8], "element": [5, 10], "regard": [5, 12, 13], "addit": [5, 6, 8, 12, 13], "whether": [5, 6, 12, 13], "nsd": 5, "structur": [5, 14], "trust_framework": 5, "oid": 5, "assurance_level": 5, "dure": [5, 10, 12, 13, 14], "convei": [5, 12], "least": [5, 6, 8, 14], "electronic_record": 5, "record": 5, "have": [5, 6, 10, 12, 13, 14], "eudi": [5, 6, 8, 14], "gov": [5, 8], "mean": [5, 6], "cointain": 5, "follwo": 5, "organization_nam": [5, 6, 8, 12, 14], "organ": [5, 6, 8, 10, 12, 13, 14], "act": [5, 6, 8], "organization_id": 5, "ipa": 5, "urn": [5, 6, 14], "namespac": [5, 8], "ipa_cod": 5, "country_cod": 5, "countri": 5, "iso3166": 5, "alpha": 5, "g": [5, 6, 10, 12, 14], "syntax": 5, "note": [5, 12, 14], "without": [5, 6, 8, 10, 12, 13], "given_nam": [5, 6, 8, 12], "core": [5, 6], "0": [5, 6, 8, 12, 13, 14], "family_nam": [5, 6, 8], "birthdat": [5, 6], "place_of_birth": [5, 6], "subclaim": 5, "local": [5, 6], "unique_id": [5, 6, 8], "anpr": 5, "given": [5, 6, 12, 13], "regist": [5, 6], "resid": [5, 13], "popul": [5, 8], "tax_id_cod": [5, 6], "tax": [5, 6], "etsi": 5, "en": [5, 6], "319": 5, "412": 5, "tinit": 5, "italiantaxidentificationnumb": 5, "ministero": 5, "dell": 5, "interno": 5, "m_it": 5, "xxxxxxxx": 5, "xxxx": 5, "xxxxxxxxxxxx": 5, "mario": 5, "rossi": 5, "1980": 5, "01": 5, "10": [5, 6, 8, 13], "rome": 5, "xxxxxxxxxxxxxxxx": 5, "correspond": [5, 6, 8, 12, 13], "verson": 5, "db67gl7ck3tfiiaf7n6_7shvqk0mdymeqcogglkuaaw": [5, 6], "nehrderpynlhy3m5wldwtwz2auhm": 5, "eyjhbgcioijsuzi1niisimtpzci6": 5, "ikjydmzybg5oqu11sfiwn2fqvw1b": 5, "pidprovid": 5, "org": [5, 6, 8, 12, 13, 14], "nzblsxh8udccd7nowxfzafhkxzsrgc9x": 5, "uuid": [5, 6, 8], "6c5c0a49": 5, "b589": 5, "431d": 5, "bae7": 5, "219122a9ec2c": 5, "1541493724": [5, 8], "kty": [5, 6, 8, 12, 13, 14], "sig": [5, 6, 8], "1ta": [5, 6, 8], "se": [5, 6, 8], "aqab": [5, 6, 8, 12], "yhnfs3ync9tjicaivhwlvuj3axwggz_98urfaqme": [5, 8], "ogm7ryxgt5xzlevp": 5, "hu": 5, "utk0a": 5, "txaapaobqv1piwmfw": 5, "8jjozbfovmnvq3hflmpwy4o19gpxs61fwhjzebu589": 5, "bomgktw1rbikntw8fzx_bel4ybandr6ahsdgpatfcig": 5, "cflgzentgnrfngnlvvqvcoafi05r6rjux": 5, "rdbldefew": 5, "ju_stahcngs32x": 5, "0ajhrd1": 5, "hclckpt5yqgcfqme168w": 5, "vqi": 5, "s1mt1kxfq2o8j9io7xmmx2mixag9m9pejvqrmca": 5, "zvdghcmclmvwluggsgpskcpkehz4u9owj1sliblcc1o": 5, "sha": [5, 6], "wyiyr0xdndjzs1f2zunmr2zyeu5stjl3iiwgimv2awrlbmnliiwgw3sidhlw": 5, "zsi6icjlbgvjdhjvbmljx3jly29yzcisicjyzwnvcmqioib7inr5cguioiai": 5, "zwlkyxmuaxquy2lliiwginnvdxjjzsi6ihsib3jnyw5pemf0aw9ux25hbwui": 5, "oiaitwluaxn0zxjvigrlbgwnsw50zxjubyisicjvcmdhbml6yxrpb25fawqi": 5, "oiaibv9pdcisicjjb3vudhj5x2nvzguioiaisvqifx19xv0": 5, "2glc42skqvecfgfrynrn9w": 5, "wyjlbhvwnu9nm2dttkljoevzbnn4qv9biiwginvuaxf1zv9pzcisicj4ehh4": 5, "ehh4ec14ehh4lxh4ehgtehh4ec14ehh4ehh4ehh4ehgixq": 5, "eluv5og3gsnii8eynsxa_a": 5, "wyi2swo3de0tytvpvlbhym9tnxrtdlzbiiwgimdpdmvux25hbwuilcaitwfi": 5, "aw8ixq": 5, "6ij7tm": 5, "a5ivpgbos5tmvva": 5, "wyjlsthav205uw5luhbougvozw5izghriiwgimzhbwlsev9uyw1liiwgiljv": 5, "c3npil0": 5, "ei8zwm9qnkppnpenenhdhq": 5, "wyjrz19pnjr6cuf4ztqxmmexmdhpcm9biiwgimjpcnrozgf0zsisicixotgw": 5, "ltaxltewil0": 5, "qg_o64zqaxe412a108iroa": 5, "wyjbsngtmdk1vlbycfr0tjrrtu9xuk9biiwginbsywnlx29mx2jpcnroiiwg": 5, "eyjjb3vudhj5ijogikluiiwgimxvy2fsaxr5ijogiljvbwuifv0": 5, "ajx": 5, "095vprpttn4qmoqroa": 5, "wyjqyzmzsk0ytgnoy1vfbehnz3zfdwzriiwginrhef9pzf9jb2rliiwgilrj": 5, "tklulvhywfhywfhywfhywfhywfgixq": 5, "pc33jm2lchcu_lhggv_ufq": 5, "eyj0exaioij2yytzzc1qd3qilcjhbgcioijsuzuxmiisimtpzci6imqxmjzhnme4ntzmnzcyndu2mdq4ngzhowrjntlkmtk1iiwidhj1c3rfy2hhaw4iolsitkvoumrfunbzbmxiwtnnnvdszfduv1oyyvvobsauli4ilcjleupoykdjau9pslnvekkxtmljc0ltdhbaq0k2ic4uliisiklrsllkbvp5ykc1b1fvmtftrkl3tjjgcvzxmuigli4uil19": 5, "eyjpc3mioijodhrwczovl3bpzhbyb3zpzgvylmv4yw1wbguub3jniiwic3viijoitnpithnyadh1renjzddub1dyrlpbzkhrefpzukddovhzli4uiiwianrpijoidxjuonv1awq6nmm1yzbhndktyju4os00mzfklwjhztctmje5mtiyytllyzjjiiwiawf0ijoxntqxndkznzi0lcjlehaioje1nde0otm3mjqsinn0yxr1cyi6imh0dhbzoi8vcglkchjvdmlkzxiuzxhhbxbszs5vcmcvc3rhdhvziiwiy25mijp7imp3ayi6eyjrdhkioijsu0eilcj1c2uioijzawcilcjuijoimvrhlxnfiokapiisimuioijbuufciiwia2lkijoiwwhorlmzww5doxrqaunhaxzov0xwvuozqxh3r0d6xzk4dvjgyxfnruvzin19lcj0exblijoiugvyc29uswrlbnrpzmljyxrpb25eyxrhiiwidmvyawzpzwrfy2xhaw1zijp7inzlcmlmawnhdglvbii6eyjfc2qiolsit0dtn3j5wgd0nvh6bgv2cc1ids1vvgswys1ueefhuefvynf2mxbjv01mdyjdlcj0cnvzdf9mcmftzxdvcmsioijlawrhcyisimfzc3vyyw5jzv9szxzlbci6imhpz2gifswiy2xhaw1zijp7il9zzci6wyi4smpvekjmb3zntnzrm0hmbg1qv3k0tze5r3b4czyxrldialplylu1odlfiiwiqm9nr2t0vzfyymlrbnr3oez6ef9czuw0wwjbbmrynkfic2rncgf0rknpzyisikngted6zw50r05srm5nbkxwvlfwy29brmkwnxi2ukpvwc1yzgjmzevmzxcilcjkvv9zvgfiq25nuzmywc0wywpicmqxluhdtenrcfq1wxfny2zrbwuxnjh3iiwivlfjlvmxbvqxs3hmctjvoeo5aw83ee1nwdjnsxhhrzlnovblslzxck1jqsisinpwzgdoy21dbe1wv2xvz0dzr3bta0nqa0viwjr1ow9xajftbelcbenjmw8ixx19lcjfc2rfywxnijoic2hhlti1nij9": 5, "wzeifaojnobqisjtq92jtkexrn": 5, "2sgvjklpu4idc_ct2t6tm8z6sqbvy6n94aaev": 5, "hfsv5jost6yjpdngzoxn_w_131rilu8yaint8w31nrgivhjjic0w": 5, "hhicg1lmvjshsmct3rheaprcmso7xkhwmusjt37dozeageti5i47hnzabu7vwxsvulbnnn8v7tjblspo2q0vnwhedx1hq7ih1b8okh": 5, "_aqrhwvm9bcs9cg8o6n9iqubcspfi6gty4zzgheb95knetvhw8il10z9p_hr9twxzqaccc8xrnh4afwr9tidqztr92m7luyvdfmzvghcponi7vbhqmrqzvyqydhq6ejbtrtisyenla5nskbjv8etdlec94vjahznzue9anuqexae55v5m5o9wlowhgv2vl4xv5c": 5, "n5s5uzs08gaxo": 5, "cuanod3bqe9vfrt47ibcm4hucnvdise_awncekoqabv1j9_tv9lwzsecvuuuwwwelhcuxgdyia3qtutxz": 5, "pdnd": 5, "ragioneria": 5, "general": 5, "dello": 5, "stato": 5, "qlhcfc": 5, "previou": [5, 6, 8, 13], "decod": [5, 6, 8, 13], "d126a6a856f7724560484fa9dc59d195": 5, "oians5wycwk4wftestvycn_xow9edkmngh33_q6_pbi0xaty7p3apugjo0ivk5c1nqavy6pzmcpq8p1y0cbac9strmzvtvdqcooclhvy2zlcxtu39ooglnra8_lqsama386lo_qmw4": 5, "uy6dbgzy4vhkscvac9fizydpafqwbequnv2qofmh5vpoihctkhwmgxnzbatyobg57xsoux": 5, "bvho_sfmm3k4rvsxcr3mfojahlfwutu_jk9k7n9kr_mnc5ipioyhzw_sumf6samrqsspp42kd10hpmw0yjtdmyxbdhrmfesmhyimy4obbt43__a55zili_cnik4241wovgvw": 5, "healthinsurancedata": 5, "2jir18gfeashygb27s7ss3s_iq4xxfixcryiohrbfn": 5, "1iztq7bov64xtybdkwfc44_vjwe029hzqxeuiloqun4": 5, "enno31jfzfp8y2dw0r": 5, "fimewwe7elgvgohmwmbpu14": 5, "fv2cdnwutqtgohaftvvaumbf0olmnyxmswyf4uixrhi": 5, "dzwjq7mjssx": 5, "xti_hwue8b2x6idm5l": 5, "dod_ybpkjao": 5, "ghyi19frbd_i4boawenojc3lcnmj4pbgnqcsbj_qm4q": 5, "zwlkyxmuaxqucgruzcisicjzb3vyy2uioib7im9yz2fuaxphdglvbl9uyw1l": 5, "ijogiljhz2lvbmvyawegr2vuzxjhbgugzgvsbg8gu3rhdg8ilcaib3jnyw5p": 5, "emf0aw9ux2lkijogilfmsengqyisicjjb3vudhj5x2nvzguioiaisvqifx19": 5, "xv0": 5, "wyjlbhvwnu9nm2dttkljoevzbnn4qv9biiwgimdpdmvux25hbwuilcaitwfyaw8ixq": 5, "wyi2swo3de0tytvpvlbhym9tnxrtdlzbiiwgimzhbwlsev9uyw1liiwgiljvc3npil0": 5, "wyjlsthav205uw5luhbougvozw5izghriiwgimjpcnrozgf0zsisicixotgwltaxltewil0": 5, "wyjrz19pnjr6cuf4ztqxmmexmdhpcm9biiwginbsywnlx29mx2jpcnroiiwg": 5, "wyjbsngtmdk1vlbycfr0tjrrtu9xuk9biiwginrhef9pzf9jb2rliiwgilrj": 5, "eyjpc3mioijodhrwczovl2lzc3vlci5legftcgxllm9yzyisinn1yii6ik56ykxzwgg4durdy2q3bm9xwezaqwzia3hac1jhqzlycy4uliisimp0asi6invybjp1dwlkojzjnwmwytq5lwi1odktndmxzc1iywu3ltixoteymme5zwmyyyisimlhdci6mtu0mtq5mzcyncwizxhwijoxntqxndkznzi0lcjzdgf0dxmioijodhrwczovl2lzc3vlci5legftcgxllm9yzy9zdgf0dxmilcjjbmyionsiandrijp7imt0esi6iljtqsisimuioijbuufciiwidxnlijoic2lniiwia2lkijoizdeynme2ytg1nmy3nzi0ntywndg0zme5zgm1owqxotuilcjhbgcioijsuzi1niisim4ioijvawfuczv3wunxazr3rnrfu3rwwwnux3hpdzllzetntkdimznfctzfcejjmfhhvfk3udnhcfvnak8waxzrnwmxtlfbvlk2ufpty1brofaxwtbjqkfdovnuum16dlr2rffjt29jtghwetjabgnyvhuzow9pr0xocme4x0xrc2fnqtm4nmxpx3fnvzqtdvk2rgjhwlk0dkhru2n2qum5rklawurqywzxv0jfuvvovjjrt0znsdvwug9paenus0h3tudyblpcyxrzt2jnntd4u09vwc1idmhpx3ngtw0zazrsdnnyy3iztuzvakfotgz3dxr1x2plows3tjllul9ttmm1sxbpt3lowndfc1vtrjztyw1scxntuha0mktemtboue1xmflkvernwxhczehytuzlu01iwulnwtrvqkjundnfx2e1nxpjtelfq25jazqyndf3t3zhdncifx0sinr5cguioijizwfsdghjbnn1cmfuy2veyxrhiiwidmvyawzpzwrfy2xhaw1zijp7inzlcmlmawnhdglvbii6eyjfc2qiolsimmpjuje4z2zlqvniwudcmjdzn3ntm1nfave0ehhgsxhdunlpb2hyqmzucyjdlcj0cnvzdf9mcmftzxdvcmsioijlawrhcyisimfzc3vyyw5jzv9szxzlbci6imhpz2gifswiy2xhaw1zijp7il9zzci6wyixaxp0ctdib3y2nhhuwwjea1dgyzq0x1zqv2uwmjlownfyzvvjbg9xvu40iiwiru5obzmxamz6rna4wtjevzbslwzjtwvxd2u3ruxhdkdvse13tujwdte0rsisikzwmknetld1vhfuz09iywz0dlzhdw1crjbpbg1uexhnc3d5zjr1sxhyafkilcjkwldqctdtslntwc1yvelfsfd1rthcmng2swrnnwxflwrvrf95qnblsmfviiwiz0hzate5znjirf9pnejvyvdftk9qyznsq25najrwykdouwnzqmpfuu00usjdfx0sil9zzf9hbgcioijzagetmju2in0": 5, "prvt9qpf1wmforkncgxw6lokranomsl": 5, "foxmqmuiyk2ao0twm5laveqret9bb5a0fpq7rxnqlu57ngv3o8vzklhfkbkm1_wta5xuzxbfz0qgcmip6tzqu9yavxy162h6_i4foinyhol8i5mnpfthfy0nbytyvkcscfbc2ccv4i7rsalbpbpvitpoyvbzfwtdokuumed5xwkpw9": 5, "vf_jk11yajj880walzu5tz3xaob0kkfus3scmskko5wmm1seas7xl5iipsnamtmrlmke6qcwakddx": 5, "hnegzncwbjhastwb2udayk8c": 5, "wfgdwrrwgq3mu0rfuxmifkjv4gdi8q": 5, "relev": [6, 10, 14], "releas": [6, 8, 10], "compliant": 6, "thes": 6, "genuin": [6, 13], "entir": [6, 8, 12, 13], "product": [6, 14], "own": [6, 10, 12, 14], "offer": [6, 8, 14], "being": [6, 10, 13], "assess": [6, 12], "cab": 6, "compos": [6, 8, 13], "oidc4vci": 6, "13": [6, 8, 13], "saml2": [6, 10], "end": [6, 8], "idp": 6, "preexist": 6, "send": [6, 8, 13, 14], "prior": 6, "start": [6, 8, 12, 13], "fig": 6, "show": 6, "highlight": 6, "step": [6, 14], "pictur": 6, "setup": 6, "preliminari": 6, "phase": [6, 10, 12, 13], "out": [6, 12], "consist": [6, 14], "assert": [6, 13, 14], "queri": [6, 8], "fetch": [6, 12], "ani": [6, 8, 10, 12, 13], "interoper": [6, 10, 12], "fresh": [6, 8], "pair": [6, 13, 14], "check": [6, 8, 12], "iam": [6, 10], "proxi": [6, 8], "happen": 6, "consent": [6, 8], "bound": [6, 12], "held": 6, "expand": 6, "assumpt": 6, "store": [6, 10, 12, 14], "most": 6, "been": [6, 12], "9126": 6, "pkce": 6, "exchang": [6, 8, 10, 14], "7636": 6, "consid": [6, 8, 12, 13], "immedi": [6, 12], "discoveri": [6, 8, 12], "part": [6, 8, 12], "well": [6, 8, 12, 13, 14], "known": [6, 8, 12, 14], "oauth2": 6, "client": [6, 8, 12, 14], "sinc": [6, 8, 10, 12], "protect": [6, 8], "7521": 6, "insid": [6, 12], "client_assert": 6, "authorization_detail": 6, "rar": 6, "9396": 6, "post": [6, 8, 12, 14], "host": [6, 8], "x": [6, 8, 12, 13, 14], "www": [6, 8], "urlencod": [6, 8], "response_typ": [6, 8, 13], "client_id": [6, 8], "thumprint": 6, "code_challeng": 6, "e9melhoa2owvfremtjguchaoek1t8urwbugjsstw": 6, "cm": 6, "code_challenge_method": 6, "s256": 6, "eyjhbgcioijsuzi1niisimtpzci6imsyymrjin0": 6, "ew0kic": 6, "jpc3mioiaiczzcagrsa3f0myisdqogimf1zci6icjodhrwczovl3nlcnzlci5legftcgxllmnvbsisdqo": 6, "ginjlc3bvbnnlx3r5cguioiaiy29kzsbpzf90b2tlbiisdqogimnsawvudf9pzci6icjznkjozfjrcxqz": 6, "iiwnciaicmvkaxjly3rfdxjpijogimh0dhbzoi8vy2xpzw50lmv4yw1": 6, "client_assertion_typ": 6, "ietf": [6, 14], "param": [6, 14], "oauth": [6, 8, 13, 14], "walletinstanceattest": [6, 8, 13], "fifyx03bnosd8m6gyqifnhnp9cm_sam9tc5nlloiirc": [6, 12], "fyziol9lf2cekunt2jzxilrdink0upcd": 6, "openid_credenti": 6, "credential_definit": 6, "redirect_uri": [6, 8], "eudiw": [6, 8, 12, 13], "201": 6, "cach": 6, "request_uri": [6, 8], "bwc4jk": 6, "esc0w8acc191": 6, "y1ltc2": 6, "expires_in": 6, "60": 6, "get": [6, 8, 12, 14], "3aietf": 6, "3aparam": 6, "3aoauth": 6, "3arequest_uri": 6, "3abwc4jk": 6, "perspect": [6, 12], "11": [6, 8], "redirect": [6, 8], "univers": 6, "app": [6, 13, 14], "so": 6, "latter": 6, "resolv": [6, 12, 13], "pass": [6, 8], "302": [6, 8], "found": [6, 8], "locat": [6, 8, 10], "splxlobezqqybys6wxsbia": 6, "3a": [6, 8], "2f": [6, 8], "2fpid": 6, "12": [6, 8], "certain": 6, "sender": 6, "draft16": 6, "mitig": 6, "misus": [6, 10], "leak": 6, "stolen": 6, "attack": [6, 13], "code_verifi": 6, "private_key_jwt": [6, 14], "eyj0exaioijkcg9wk2p3dcisimfszyi6ikvtmju2iiwiandrijp7imt0esi6ik": 6, "vdiiwieci6imw4dezyahgtmzr0vjnoukldukrzoxpda0rscejorjqyvvfvzldwqvdcr": 6, "nmilcj5ijoiovzfngpmx09rx282nhpivfrsy3vosmfqsg10nny5verwcluwq2r2r1j": 6, "qsisimnydii6ilatmju2in19": 6, "eyjqdgkioiitqnddm0vtyzzhy2mybfrjiiwiahrtij": 6, "oiue9tvcisimh0dsi6imh0dhbzoi8vc2vydmvylmv4yw1wbguuy29tl3rva2vuiiwia": 6, "wf0ijoxntyymjyynje2fq": 6, "gxa6t8lp4vfrg8v": 6, "fdwp0a0zdrj8igimlvqrmuvwnqg": 6, "4ptflbdlxiossx0x7nvi": 6, "fnyjk70nfbv37xrzt3lg": 6, "grant_typ": [6, 14], "authorization_cod": 6, "dbjftjez4cvp": 6, "mb92k27uhbuju1p1r_ww1gfwfoejxk": 6, "bearer": 6, "eyjhbgcioijiuzi1nii": 6, "15": [6, 8, 13], "success": 6, "c_nonc": 6, "200": 6, "ok": 6, "access_token": 6, "kz": 6, "8mxk1ealyznwh": 6, "lc": 6, "1fbao": 6, "4ljp": 6, "zspe_neo": 6, "gxu": 6, "token_typ": 6, "2677": 6, "tzign": 6, "snfbp": 6, "c_nonce_expires_in": 6, "86400": 6, "18": [6, 8], "Then": 6, "19": [6, 8], "schema": [6, 8, 12], "registr": [6, 12], "later": 6, "nmilcj5ijoiovzfngpmx09rx282nhpivfrsy3vosmfqsg10nny5verwcluwq2r2r": 6, "1jeqsisimnydii6ilatmju2in19": 6, "eyjqdgkioijlmwozvl9is2ljoc1mquvciiwiahrtij": 6, "oir0vuiiwiahr1ijoiahr0chm6ly9yzxnvdxjjzs5legftcgxllm9yzy9wcm90zwn0z": 6, "wryzxnvdxjjzsisimlhdci6mtu2mji2mjyxocwiyxroijoizlvieu8ycjjam0rantnf": 6, "c05yv0jimhhxwg9htnk1oulps0nbcwtzbvffbyj9": 6, "2ow9rp35yrqzhrtnp86l": 6, "ey71": 6, "optxrimpptoa1plemagr6pxhf8y6": 6, "yqyvnmcw6fy1dqd": 6, "jfxsyomxhajplja": 6, "7b": 6, "22type": 6, "22": 6, "5b": 6, "22personidentificationdata": 6, "5d": 6, "7d": 6, "22proof_typ": 6, "ace0": 6, "9c5210e16c32": 6, "proof_typ": 6, "eyjrawqioijkawq6zxhhbxbsztplym": 6, "0b434530": 6, "e151": 6, "4c40": 6, "98b7": 6, "74c75a5ef760": 6, "aud": [6, 8, 13], "1504699136": 6, "nonc": [6, 8, 13], "20": [6, 8], "suitabl": 6, "succe": 6, "proceed": 6, "storag": [6, 12], "pragma": 6, "lupixvcwjk0eot4cxqe1nxk": 6, "wzwmhmn9oqp6yxx0a2l": 6, "fgff7": 6, "ukhla": 6, "6749": 6, "challeng": 6, "deriv": [6, 12], "grant": [6, 8, 10, 12, 14], "per": [6, 8], "iana": [6, 8], "registri": [6, 8, 10, 12], "symmetr": [6, 8], "mac": [6, 8], "7638": 6, "section_3": 6, "assum": [6, 8, 13], "implicit": 6, "session": [6, 8], "side": 6, "32": [6, 8, 13], "alphanumer": 6, "authrequest": 6, "top": 6, "media": [6, 8, 12, 13, 14], "8259": 6, "strong": [6, 14], "pseudorandom": 6, "lifetim": 6, "second": 6, "posit": 6, "integ": 6, "server": 6, "browser": 6, "serial": 6, "ad": 6, "abl": [6, 12, 13], "deleg": [6, 13], "submit": [6, 8], "accept": [6, 8], "invalid": [6, 12, 13], "error": [6, 8], "invalid_dpop_proof": 6, "7515": [6, 8], "8725": [6, 8], "chosen": [6, 8, 13, 14], "rfc7517": [6, 8], "7517": [6, 8, 12], "assign": [6, 8, 12], "v4": [6, 8], "4122": [6, 8], "htm": [6, 8], "attach": [6, 8], "9110": [6, 8], "htu": [6, 8], "target": [6, 8], "fragment": [6, 8], "accomplish": [6, 14], "methodolog": 6, "match": [6, 14], "9068": 6, "princip": 6, "subject": [6, 12], "subjectidtyp": 6, "taken": [6, 8], "prevent": [6, 8, 13, 14], "reus": 6, "reject": 6, "jkt": 6, "approv": 6, "upon": 6, "ath": [6, 8], "ascii": 6, "associ": [6, 13, 14], "previous": [6, 12, 13], "denot": 6, "mso_mdoc": [6, 8], "doctyp": [6, 8], "appendix": 6, "renew": [6, 12], "openid_credential_issu": [6, 12], "fanfs3ync9tjicaivhwlvuj3axwggz_98urfaqme": 6, "1649610249": 6, "1649437449": 6, "credential_issu": 6, "authorization_endpoint": [6, 13], "token_endpoint": [6, 14], "pushed_authorization_request_endpoint": 6, "dpop_signing_alg_values_support": 6, "credential_endpoint": 6, "credentials_support": 6, "cryptographic_binding_methods_support": 6, "cryptographic_suites_support": 6, "displai": 6, "italiano": 6, "di": 6, "esempio": 6, "logo": [6, 8, 12, 13, 14], "svg": [6, 8, 12, 13, 14], "alt_text": 6, "questo": 6, "background_color": 6, "12107c": 6, "text_color": 6, "ffffff": 6, "credentialsubject": [6, 8], "true": [6, 8, 13], "nome": 6, "cognom": 6, "nascita": 6, "luogo": 6, "identificativo": 6, "univoco": 6, "codic": 6, "fiscal": 6, "homepage_uri": [6, 8, 12, 14], "policy_uri": [6, 8, 13, 14], "privacy_polici": [6, 13, 14], "tos_uri": [6, 13, 14], "info_polici": [6, 13, 14], "logo_uri": [6, 8, 12, 13, 14], "openid_relying_parti": [6, 12], "doc": 6, "ask": [8, 10, 14], "demonstr": 8, "cross": [8, 12], "differ": [8, 10, 13], "analyz": 8, "chapter": 8, "take": 8, "account": 8, "scenario": [8, 10, 12], "detect": 8, "requestor": 8, "workstationm": 8, "qr": 8, "frame": 8, "page": [8, 14], "login": [8, 10], "button": 8, "scope": [8, 12], "extract": 8, "invok": 8, "capabl": [8, 12, 13, 14], "deselect": 8, "17": 8, "successfulli": 8, "base64": 8, "ones": 8, "remov": [8, 14], "fqdn": 8, "download": 8, "pre": 8, "authz": 8, "request_uri_endpoint": 8, "2fverifi": 8, "2fcb": 8, "2frequest_uri_endpoint": 8, "under": [8, 10, 13, 14], "experiment": [8, 13, 14], "retriev": [8, 13, 14], "correct": 8, "quartili": 8, "up": [8, 12], "25": 8, "good": [8, 10, 13], "balanc": 8, "between": [8, 10, 12, 14], "densiti": 8, "space": 8, "remain": [8, 10], "readabl": 8, "even": [8, 10, 12], "damag": 8, "partial": 8, "obscur": 8, "raw": 8, "zxvkaxc6ly9hdxrob3jpemu": 8, "y2xpzw50x2lkpwh0dhbzoi8vdmvyawzpzxiuzxhhbxbszs5vcmcmcmvxdwvzdf91cmk9ahr0chm6ly92zxjpzmllci5legftcgxllm9yzy9yzxf1zxn0x3vyaq": 8, "action": [8, 10, 14], "made": [8, 12], "scan": 8, "legitim": 8, "walletinstanceattestationproofofpossess": 8, "dedic": [8, 12], "herein": 8, "doesn": [8, 12], "t": [8, 12], "break": 8, "do": [8, 12, 13], "miss": 8, "would": [8, 10, 13], "lowest": 8, "supported_alg": 8, "therein": [8, 12], "l8tfrhx": 8, "34tv3hricrdy9zckdlpbhf42uqufwvawbf": 8, "y": [8, 12, 13, 14], "9ve4jf_ok_o64zbttlcunjajhmt6v9tdvru0cdvgrda": 8, "crv": [8, 12, 13, 14], "p": [8, 12, 13, 14], "f47c96a1": 8, "f928": 8, "4768": 8, "aa30": 8, "ef32dc78aa69": 8, "1562262616": 8, "fuhyo2r2z3dz53esnrwbb0xwxoany59iikcaqksmqeo": 8, "e0bbf2f1": 8, "8c3a": 8, "4eab": 8, "a8ac": 8, "2e8f34db8a47": 8, "miicajccadogawibag": 8, "awz": 8, "2w3": 8, "sf2": 8, "europa": [8, 12], "client_id_schem": 8, "entity_id": 8, "response_mod": 8, "direct_post": 8, "vp_token": [8, 13], "response_uri": 8, "callback": 8, "2c128e4d": 8, "fc91": 8, "4cd3": 8, "86b8": 8, "18bdea0988cb": 8, "3be39b69": 8, "6ac1": 8, "41aa": 8, "921b": 8, "3e6c07ddcb03": 8, "1672418465": 8, "1672422065": 8, "sequenc": [8, 12], "alias": 8, "suffici": 8, "entropi": 8, "reason": 8, "expir": [8, 12, 13, 14], "after": [8, 13, 14], "usag": [8, 14], "presentation_definit": [8, 13], "still": [8, 12, 13], "better": 8, "input_descriptor": 8, "constraint": [8, 12], "path": [8, 12], "limit_discolusr": 8, "prefer": [8, 14], "mention": [8, 13], "condit": 8, "futur": 8, "presentation_definition_uri": 8, "point": [8, 13], "client_metadata": 8, "client_metadata_uri": 8, "why": 8, "malici": 8, "agent": 8, "gain": 8, "plaintext": 8, "transmit": 8, "network": 8, "possibl": [8, 12], "environ": [8, 14], "emploi": [8, 14], "tl": 8, "termin": 8, "Such": 8, "techniqu": [8, 10], "webserv": 8, "handl": 8, "manner": [8, 14], "deciph": 8, "transmiss": 8, "either": 8, "forward": 8, "negoti": 8, "actual": [8, 14], "intend": [8, 12, 13], "actor": [8, 10, 14], "segment": 8, "could": [8, 10, 13, 14], "intercept": 8, "sensit": 8, "unencrypt": 8, "snif": 8, "eyjhbgcioijfuzi1nii": 8, "9t2lq": 8, "decrypt": 8, "pt0ixx0": 8, "presentation_submiss": 8, "definition_id": 8, "32f54163": 8, "7166": 8, "48f1": 8, "93d8": 8, "ff217bdb0653": 8, "04a98be3": 8, "7fb0": 8, "4cf5": 8, "af9a": 8, "31579c8b0e7d": 8, "descriptor_map": 8, "period": [8, 12, 13], "vbexjksm45xphtanncig6mcyuu4jfgnzopgukvogg9c": [8, 13], "3978344f": 8, "8596": 8, "4c3a": 8, "a978": 8, "8fcaba3903c5": 8, "1573029723": 8, "origin": [8, 12], "datetim": [8, 14], "beyond": [8, 12], "longer": [8, 12, 13], "audienc": 8, "expos": [8, 12], "2hnofs3ync9tjicaivhwlvuj3axwggz_98urfaqme": [8, 12], "1649590602": 8, "1649417862": 8, "5s4qi": 8, "wallet_relying_parti": [8, 12], "application_typ": 8, "client_nam": 8, "x5c": [8, 12, 13], "contact": [8, 12], "op": [8, 13], "default_acr_valu": 8, "spidl2": 8, "spidl3": 8, "vp_format": [8, 12], "jwt_vp_json": [8, 13], "eddsa": [8, 12], "es256k": [8, 12], "limit_disclosur": 8, "filter": [8, 12], "const": 8, "intent_to_retain": 8, "sampl": 8, "iso": 8, "18013": 8, "fals": [8, 13], "portrait": 8, "driving_privileg": 8, "default_max_ag": 8, "1111": 8, "jarm": 8, "authorization_signed_response_alg": 8, "authorization_encrypted_response_alg": 8, "authorization_encrypted_response_enc": 8, "a192cbc": 8, "a128gcm": 8, "a192gcm": 8, "a256gcm": 8, "subject_typ": 8, "pairwis": 8, "require_auth_tim": 8, "id_token_signed_response_alg": 8, "id_token_encrypted_response_alg": 8, "id_token_encrypted_response_enc": 8, "home": 8, "polici": [8, 12, 13, 14], "tech": [8, 12], "authority_hint": [8, 12], "while": [8, 10], "spec": [8, 12], "tbd": 8, "paradigm": 10, "complet": [10, 12, 14], "ownership": [10, 14], "determin": [10, 12, 14], "abil": [10, 13, 14], "revok": [10, 12], "said": 10, "histori": 10, "tradit": 10, "signific": [10, 13], "fact": 10, "envis": 10, "compani": 10, "want": [10, 12], "anoth": 10, "becaus": 10, "someth": 10, "individu": 10, "publish": [10, 12], "educ": 10, "institut": 10, "crucial": 10, "phone": 10, "portabl": 10, "principl": 10, "character": 10, "choos": 10, "reduc": 10, "risk": [10, 13], "collect": [10, 12], "leverag": [10, 14], "advanc": 10, "avoid": [10, 13], "theft": 10, "fraud": 10, "unauthor": [10, 13, 14], "vulner": [10, 12], "central": 10, "seamless": [10, 14], "across": 10, "border": 10, "effici": [10, 12, 13], "cost": [10, 12], "reduct": 10, "elimin": 10, "repetit": 10, "purchas": 10, "physic": 10, "ag": 10, "restrict": [10, 12], "item": 10, "necessari": [10, 12, 13], "abov": [10, 12], "reveal": 10, "legitimaci": [12, 14], "distribut": 12, "mark": 12, "509": [12, 13], "appli": 12, "subordin": 12, "leaf": 12, "represent": [12, 14], "plai": [12, 14], "except": 12, "call": [12, 13], "summari": 12, "pki": 12, "make": [12, 13, 14], "build": 12, "tamper": [12, 14], "compris": 12, "forg": 12, "adversari": 12, "preserv": [12, 13, 14], "doe": [12, 13], "track": [12, 13], "against": [12, 13], "guarantor": 12, "histor": 12, "save": 12, "year": 12, "retent": 12, "rotat": 12, "flexibl": 12, "modifi": 12, "domain": [12, 14], "simultan": 12, "disabl": 12, "certainti": 12, "propag": 12, "adopt": [12, 13, 14], "effect": [12, 14], "wide": 12, "rang": 12, "softwar": 12, "kit": 12, "rapid": 12, "scalabl": [12, 13], "coverag": 12, "satisfi": 12, "onboard": 12, "recognis": 12, "similar": 12, "rest": [12, 13, 14], "publicli": 12, "summaris": 12, "itself": [12, 14], "third": [12, 13], "superior": 12, "trust_mark_id": 12, "motiv": 12, "serv": [12, 14], "plain": 12, "default": 12, "howev": 12, "enter": [12, 14], "keep": 12, "maximum": 12, "max_path_length": 12, "1649375259": 12, "1649373279": 12, "3i5vv": 12, "_": 12, "root": 12, "ca": 12, "x2zomhngsdc4zlbrcxhmt3mzrmrzog9jd3o2qjzdam51cuhhufruowd0wq": 12, "1knr9ar3mzmokyty8brvriue85nixryx4xd3k4jw7vi": 12, "slt14644zbyxyf": 12, "xmw7apdlbmuw3t1urwi4nafmtkri": 12, "ta": 12, "federation_fetch_endpoint": 12, "federation_resolve_endpoint": 12, "federation_list_endpoint": 12, "federation_trust_mark_status_endpoint": 12, "trust_mark_statu": 12, "trust_marks_issu": 12, "behalf": 12, "concern": 12, "cryptograf": 12, "entity_typ": 12, "trust_mark_issu": 12, "trustworthi": [12, 13, 14], "trust_mark_own": 12, "trust_mark": 12, "final": 12, "automat": [12, 13], "em3cmnzghiyfsq090n6b3op7laaqj8rghmhxgmjstqg": 12, "1649623546": 12, "1649450746": 12, "metadata_polici": 12, "subset_of": 12, "email": 12, "request_authentication_methods_support": 12, "one_of": 12, "request_object": 12, "request_authentication_signing_alg_values_support": 12, "jwt_vp": 12, "pleas": [12, 14], "allowed_leaf_entity_typ": 12, "real": 12, "onlin": 12, "unavail": 12, "concaten": 12, "pertain": 12, "produc": 12, "updat": [12, 13], "earliest": 12, "No": 12, "forc": 12, "higher": 12, "abstract": 12, "entityconfigur": 12, "signedjwt": 12, "selfissu": 12, "byleaf": 12, "entitystat": 12, "bytrustanchor": 12, "eyjhbgcioijfuzi1niisimtpzci6imveuknosghwyxpwd01vrlpjmvu0ulrremmxsjrnmgrvyuu4mwvvwk5vmvuywkdsm1lqrmztv2h1uveilcj0exaioijhchbsawnhdglvbi9lbnrpdhktc3rhdgvtzw50k2p3dcj9": 12, "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": 12, "dirbryfesmi_6ogrjahayupctxsvbzbmdokvztjyygzmkep6eslixa8nuu9bwbwp_elngdkbpqusbwigx66d5w": 12, "eyjhbgcioijfuzi1niisimtpzci6ilfwunvxse5fwtjzmfdhnw5hshb3vjjkvgrtd3hirupvy2pcdk9fehnwmfext0dnmfzwqnhhbtuyt0eilcj0exaioijhchbsawnhdglvbi9lbnrpdhktc3rhdgvtzw50k2p3dcj9": 12, "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": 12, "rigdha7coap3so3znsjdwt7": 12, "8tea41an3ybw": 12, "qawfndqmuzctqrwcd4vtx6tzeeoro3keu8bjeaklikhrhzobg": 12, "eyjhbgcioijfuzi1niisimtpzci6imvvrldsakjkylhveu5tmhrhv1jrylhcmwvurlbjazv6uzbgrvftmwfnvfpeytnowk1wukturtr5y3cilcj0exaioijhchbsawnhdglvbi9lbnrpdhktc3rhdgvtzw50k2p3dcj9": 12, "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": 12, "kr2obdmfqlgcz2zqn0fgop7cwsw4clxbaj4": 12, "j_c3hc": 12, "yeeck6sllnk00bgqoee2ncmy2lqk9dyqo1iaub_zg7a": 12, "At": 12, "short": 12, "attain": 12, "compat": [12, 14], "less": 12, "24": 12, "hour": 12, "As": 12, "furthermor": [12, 14], "inquir": 12, "hardwar": 12, "amount": 12, "matter": 12, "line": 12, "gdpr": [12, 13], "There": 12, "especi": 12, "perimet": 12, "like": [12, 13], "jurisdict": 12, "eg": 12, "snapshot": 12, "back": 12, "cloud": 12, "explicit": 12, "permiss": 12, "overload": 12, "manipul": 13, "forgeri": 13, "attempt": 13, "fulfil": 13, "meet": 13, "guarante": [13, 14], "belong": 13, "sustain": 13, "criteria": 13, "task": 13, "light": 13, "fast": 13, "variou": [13, 14], "simplic": 13, "therebi": 13, "accur": 13, "measur": 13, "tool": 13, "reusabl": 13, "usabl": 13, "repeat": 13, "loss": 13, "delet": 13, "lost": 13, "becom": [13, 14], "pseudonymis": 13, "imposs": 13, "absenc": 13, "art": 13, "comprehens": [13, 14], "pose": 13, "theoret": 13, "databas": 13, "guard": 13, "replai": 13, "formal": 13, "now": 13, "readi": 13, "explain": 13, "var": 13, "walletinstanceattestationrequest": 13, "porvid": 13, "comma": 13, "6ec69324": 13, "60a8": 13, "4e5b": 13, "a697": 13, "a766d85790ea": 13, "4hnpti": 13, "xr2pjyrjkgmnz4wmdnqd_ujsq4r95nj98b44": 13, "liznsb39vfjhygs3k7jxe4r3": 13, "cogfqwztpbirqpnlrg": 13, "1686645115": 13, "1686652315": 13, "whose": 13, "let": 13, "openid4vc": 13, "haip": 13, "problem": 13, "limit": 13, "durat": 13, "attested_security_context": 13, "context": [13, 14], "Of": 13, "agreement": 13, "response_types_support": 13, "vp_formats_support": 13, "jwt_vc_json": 13, "request_object_sign": 13, "_alg_values_support": 13, "_uri_support": 13, "boolean": 13, "transfer": 13, "5t5yypbhn": [13, 14], "egieei5iuzr6r0mr02lnvq0omekmnkcji": [13, 14], "eyjhbgcioijfuz": 13, "6s0a": 13, "jjla": 13, "h9gw": 13, "miibjdcc": 13, "xfehgkqa": 13, "basic": [13, 14], "alg_values_support": 13, "request_object_signing_alg_values_support": 13, "presentation_definition_uri_support": 13, "1687281195": 13, "1687288395": 13, "cater": 14, "asset": 14, "total": 14, "legisl": 14, "primari": 14, "conveni": 14, "These": 14, "pid\u00b9": 14, "along": 14, "short\u00b9": 14, "vital": 14, "adher": 14, "address": 14, "android": 14, "io": 14, "engag": 14, "asymmetr": 14, "exclus": 14, "Their": 14, "utmost": 14, "execut": 14, "tee": 14, "\u00b3": 14, "distinct": 14, "performed\u00b2": 14, "unlock": 14, "pin": 14, "util": 14, "biometr": 14, "fingerprint": 14, "facial": 14, "recognit": 14, "unambigu": 14, "providers\u00b9": 14, "parties\u00b9": 14, "share": 14, "rel": 14, "revert": 14, "circumst": 14, "voluntarili": 14, "outlin": 14, "hous": 14, "attested_security_context_values_support": 14, "low": 14, "medium": 14, "grant_types_support": 14, "token_endpoint_auth_methods_suppor": 14, "ted": 14, "token_endpoint_auth_signing_alg_va": 14, "lues_support": 14, "asc_values_support": 14, "websit": 14, "qrjrj3af_b57sboirrcbm7br7woc8ynj7lhfpteffuk": 14, "1h0cwdyggvu8w": 14, "kpku_xycocunt2o0bwsliqtnpu6im": 14, "token_endpoint_auth_methods_support": 14, "token_endpoint_auth_signing_alg_values_support": 14, "es384": 14, "pagopa": 14, "1687171759": 14, "1709290159": 14, "two": 14, "our": 14, "\u00b9": 14, "inherit": 14, "write": 14, "\u00b2": 14, "depend": 14, "trusti": 14, "enclav": 14}, "objects": {}, "objtypes": {}, "objnames": {}, "titleterms": {"cryptograph": 0, "algorithm": 0, "backup": 1, "restor": 1, "rst": [1, 7, 9], "gener": [1, 7, 9, 12, 13], "properti": [1, 7, 9, 12, 13], "requir": [1, 7, 9, 12, 13, 14], "attribut": [1, 7, 9], "implement": [1, 7, 9], "consider": [1, 7, 9, 12], "librari": [1, 7, 9], "code": [1, 7, 9], "snippet": [1, 7, 9], "extern": [1, 7, 9, 14], "refer": [1, 7, 9, 14], "how": 2, "contribut": 2, "norm": [3, 5], "languag": 3, "convent": 3, "defin": 3, "term": 3, "acronym": 3, "italian": 4, "eudi": [4, 12], "wallet": [4, 12, 13, 14], "technic": 4, "specif": 4, "introduct": [4, 10], "index": 4, "content": 4, "pid": [5, 6], "q": [5, 6], "eaa": [5, 6], "data": 5, "model": [5, 12], "sd": 5, "jwt": 5, "paramet": [5, 6, 12], "verif": 5, "field": 5, "claim": 5, "non": [5, 12], "exampl": 5, "mdoc": 5, "cbor": 5, "issuanc": 6, "high": [6, 13], "level": [6, 13], "flow": [6, 8], "detail": [6, 8, 13], "push": 6, "author": [6, 8], "request": [6, 8, 13], "endpoint": [6, 12, 14], "par": 6, "http": [6, 8], "respons": [6, 8], "token": 6, "access": 6, "credenti": 6, "entiti": [6, 8, 12], "configur": [6, 8, 12], "issuer": 6, "pseudonym": 7, "reli": [8, 12], "parti": [8, 12], "solut": [8, 14], "remot": 8, "protocol": 8, "object": 8, "dpop": 8, "header": [8, 13, 14], "uri": 8, "revoc": 9, "list": 9, "self": 10, "sovereign": 10, "ident": 10, "ssi": 10, "standard": 11, "The": 12, "infrastructur": 12, "trust": 12, "feder": 12, "role": 12, "api": 12, "common": 12, "anchor": 12, "leav": 12, "intermedi": 12, "metadata": [12, 14], "type": 12, "statement": 12, "evalu": 12, "mechan": 12, "attest": [12, 13, 14], "instanc": [12, 13, 14], "chain": 12, "offlin": 12, "repudi": 12, "long": 12, "live": 12, "privaci": 12, "about": 12, "decentr": 12, "design": 13, "static": 13, "compon": 13, "view": 13, "dynam": 13, "format": 13, "payload": [13, 14], "lifecycl": 14, "initi": 14, "process": 14, "transit": 14, "valid": 14, "state": 14, "return": 14, "oper": 14, "deactiv": 14, "provid": 14, "wallet_provid": 14, "federation_ent": 14}, "envversion": {"sphinx.domains.c": 2, "sphinx.domains.changeset": 1, "sphinx.domains.citation": 1, "sphinx.domains.cpp": 6, "sphinx.domains.index": 1, "sphinx.domains.javascript": 2, "sphinx.domains.math": 2, "sphinx.domains.python": 3, "sphinx.domains.rst": 2, "sphinx.domains.std": 2, "sphinx.ext.intersphinx": 1, "sphinx.ext.todo": 2, "sphinx": 56}}) \ No newline at end of file diff --git a/versione-corrente/en/ssi-introduction.html b/versione-corrente/en/ssi-introduction.html index a6c01b1d0..f4e7d8b5a 100644 --- a/versione-corrente/en/ssi-introduction.html +++ b/versione-corrente/en/ssi-introduction.html @@ -693,8 +693,7 @@

                                                        {{ item.title }}

                                                    • Relying Party Solution