12. Digital Credential Flows

Digital Credential Flows Table of Contents

• 12.1. Digital Credential Issuance
  • 12.1.1. Credential Issuance High-Level Flows
    • 12.1.1.1. High-Level PID flow
    • 12.1.1.2. High-Level (Q)EAA flow
  • 12.1.2. Credential Issuance Low-Level Flows
    • 12.1.2.1. Low-Level Issuance Flow
    • 12.1.2.2. Refresh Token Flow
    • 12.1.2.3. Re-Issuance Flow
  • 12.1.3. eID Substantial Authentication with MRTD Verification for PID Issuance
    • 12.1.3.1. Design Principles
    • 12.1.3.2. System Architecture
    • 12.1.3.3. High-Level Flow
    • 12.1.3.4. Session Management
    • 12.1.3.5. Low-Level Flow
    • 12.1.3.6. Error Management
    • 12.1.3.7. Security Considerations
    • 12.1.3.8. Implementation Considerations
• 12.2. Digital Credential Presentation
  • 12.2.1. Remote Flow
    • 12.2.1.1. Authorization Request
    • 12.2.1.2. Request URI Request
    • 12.2.1.3. Request URI Response
    • 12.2.1.4. Authorization Response
    • 12.2.1.5. Relying Party Response
    • 12.2.1.6. Status Endpoint
    • 12.2.1.7. Redirect URI
  • 12.2.2. Proximity Flow
    • 12.2.2.1. DeviceEngagement over QR Code
    • 12.2.2.2. DeviceEngagement over NFC
    • 12.2.2.3. SessionEstablishment over BLE
    • 12.2.2.4. SessionData over BLE
    • 12.2.2.5. SessionEstablishment over NFC
    • 12.2.2.6. SessionData over NFC
    • 12.2.2.7. Device Engagement