|||

IT-Wallet Technical Documentation - Editor's Copy

Quick search

Table of Contents

  • 1. Introduction
  • 2. Brand Identity
  • 3. Architecture Overview
  • 4. Onboarding System
  • 5. User Experience Design
  • 6. The Infrastructure of Trust
  • 7. Registry Infrastructure
  • 8. Entity Onboarding
  • 9. X.509 Certificate Management Operations
  • 10. Entities
  • 11. Digital Credential Management
  • 12. Digital Credential Flows
    • 12.1. Digital Credential Issuance
    • 12.2. Digital Credential Presentation
  • 13. Endpoints
  • 14. Cryptographic Algorithms
  • 15. Security and Privacy Considerations
  • 16. General Log Retention Policies
  • 17. Defined Terms and References
  • 18. How to contribute
  • 19. Open Source Releases
  • 20. Appendix

12. Digital Credential FlowsΒΆ

Digital Credential Flows Table of Contents

  • 12.1. Digital Credential Issuance
    • 12.1.1. Credential Issuance High-Level Flows
      • 12.1.1.1. High-Level PID flow
      • 12.1.1.2. High-Level (Q)EAA flow
    • 12.1.2. Credential Issuance Low-Level Flows
      • 12.1.2.1. Low-Level Issuance Flow
      • 12.1.2.2. Refresh Token Flow
      • 12.1.2.3. Re-Issuance Flow
    • 12.1.3. eID Substantial Authentication with MRTD Verification for PID Issuance
      • 12.1.3.1. Design Principles
      • 12.1.3.2. System Architecture
      • 12.1.3.3. High-Level Flow
      • 12.1.3.4. Session Management
      • 12.1.3.5. Low-Level Flow
      • 12.1.3.6. Error Management
      • 12.1.3.7. Security Considerations
      • 12.1.3.8. Implementation Considerations
  • 12.2. Digital Credential Presentation
    • 12.2.1. Remote Flow
      • 12.2.1.1. Authorization Request
      • 12.2.1.2. Request URI Request
      • 12.2.1.3. Request URI Response
      • 12.2.1.4. Authorization Response
      • 12.2.1.5. Relying Party Response
      • 12.2.1.6. Status Endpoint
      • 12.2.1.7. Redirect URI
    • 12.2.2. Proximity Flow
      • 12.2.2.1. DeviceEngagement over QR Code
      • 12.2.2.2. DeviceEngagement over NFC
      • 12.2.2.3. SessionEstablishment over BLE
      • 12.2.2.4. SessionData over BLE
      • 12.2.2.5. SessionEstablishment over NFC
      • 12.2.2.6. SessionData over NFC
      • 12.2.2.7. Device Engagement
<11.2. Digital Credential Lifecycle
12.1. Digital Credential Issuance>
Last updated on 21/10/2025. Created using Sphinx 7.4.5.