Interworking Architecture

Marcus Hardt, Wolfgang Pempe

Apr 2024

ToIP Trust

ToIP Trust

ToIP Layers

ToIP Layers

Title

Title

IAM General Flow

IAM General Data Flow

IAM General Trust Flow

json

sd-jwt

  • Issuer sends sd-jwt and sd-jwt-svc to holder
    • sd-jwt:
      • claims and hashes (no values)
      • signed
    • sd-jwt-svc:
      • salt value container
      • use salt with crypto to verify hash
  • Holder relaeses sd-jwt-r
    • R for reduced
    • subset of sd-jwt-svg
    • Holder can see actual values released
  • Verifier obtains sd-jwt and sd-jwt-r
    • Verify hashes
    • Trust values

json-ld

  • JSON with Linked Data
  • @context points to a descriptive schema of the json
  • Several @ extensions
  • Allows very flexible support of arbitrary jsons

OID-Fed

OID-Fed

  • Framework to model trust
    • Two Dimensions (2D): Trust anchors + Trustmarks
  • Transition from eduGAIN in developmenat