...
Actor | Role in the use case |
---|---|
Holder | Holds a mobile credential with a picture. Wants to take a trip or enter a (e.g.) sports venue. |
PDP - Seller | Policy Determination Point is the role. Seller is the entity which may take on other roles as well. Is a web site that is accessed by the Holder and creates the ticket using one or more mobile credential. |
PEP - Verifier | Policy Enforcement Point is the role. Verifier is the entity. Biometric scanner verifies the person as the holder of the ticket (access token). |
Policy Maker | Government or business that creates a policy that is used for access check. Some policies may be subject to fairly frequent updates. Many real-world use cases will need to accommodate policies from multiple governments and other organizations. |
Issuers | of the various mobile credentials held in the user's wallet. For this example case they are (1) Driver's license, (2) Covid COVID Immunization, and (3) Credit Card |
...
Access Token | The holder of the mobile credential may given yet another credential with provides access to the venue. This proof that can be used if the biometric check fails. In this case the seller also take on the role as issuer of the access token. Access tokens from many use cases will require credentials from multiple sources in order to be verifiable. |
Presentation | Most credentials will have more data that the holder wants to release. The wallet will need the ability to selectively disclose attributes into the presentation to the verifier. |
Data Retained
The seller may maintain the holder's legal name for as long as a relationship exists with the holder. The holder may terminate the relationship at any time. The seller will delete all references to the holder as soon as legally permitted.
...