Issuing VCs

The VC issuance process typically involves three actors:

1. Issuer: A trusted entity (e.g., government agency, university) authorized to issue VCs.

2. Holder: The individual to whom the VC is issued (user within the SSI ecosystem).

3. Verifier: An entity requiring proof of certain attributes from the holder (e.g., service provider, website).

A breakdown of the VC issuance process:

1. Credential Definition: The issuer defines the schema for the VC, specifying the types of attributes it can contain (e.g., name, date of birth). AnonCreds schemas might include boolean attributes like "ageOver21" instead of specific values.

2. User Registration and Proof of Identity: The holder undergoes a registration process with the issuer and provides proof of their identity (often through a separate VC). This establishes trust and verifies the user's eligibility for the VC.

3. Attribute Verification: The issuer verifies the specific attributes that will be included in the VC. This could involve additional steps like document checks or knowledge-based authentication.

4. VC Issuance:

   • The issuer utilizes Hyperledger Indy to create a cryptographic credential for the holder, containing the verified attributes.

   • AnonCreds techniques are employed to allow the holder to prove possession of certain attributes (e.g., being over 21) without revealing the actual values.

   • Our solution facilitates secure communication between the issuer and holder for credential issuance & management.

5. VC Delivery to Holder: The issuer transmits the signed VC to the holder's secure wallet within the SSI ecosystem. The wallet stores the VC and allows the holder to manage and share it as needed.

Advantages of this process in VC Issuance:

• Enhanced User Privacy: AnonCreds ensure users only reveal minimal personal information while obtaining VCs. This protects user data and minimizes the risk of identity theft.

• Improved Security: Hyperledger Indy's cryptographic protocols guarantee the authenticity and integrity of issued VCs, preventing unauthorized credential issuance or manipulation.

• Streamlined User Experience: afj simplifies communication channels between issuers and holders, facilitating a smooth and secure VC issuance process.

Our solution empowers a secure and privacy-conscious approach to VC issuance within the SSI solution. Users gain control over their data, issuers can maintain trust within the ecosystem and verifiers can effectively confirm user attributes without compromising user privacy.