|
Work item:
|
X.sc-sd
|
|
Subject/title:
|
Security capability for implementing selective disclosure system in the decentralized identity system
|
|
Status:
|
Under study
|
|
Approval process:
|
TAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
New
|
|
Equivalent number:
|
-
|
|
Timing:
|
2027-09 (Medium priority)
|
|
Liaison:
|
ISO/IEC JTC 1/SC 27/WG 5, ISO TC 307, W3C, OASIS, OpenID Foundation, DIF
|
|
Supporting members:
|
Korea (Republic of), Soonchunhyang University, KISA, ETRI
|
|
Summary:
|
The purpose of this document is to provides a concept to implement a selective disclosure system in the decentralized identity. Selective Disclosure in a Decentralized Identifier (DID) context refers to the ability of a credential holder to reveal only specific pieces of information (attributes) from a Verifiable Credential (VC) that was issued by a trusted issuer—without disclosing the full credential—while maintaining cryptographic verifiability through the DID trust model.
In the decentralized identity system, implementing selective disclosure — where a holder reveals only specific parts (i.e., attribute) of a credential to a verifier — it is important that each participant (issuer, holder, verifier) supports certain basic requirements and their capabilities.
Selective disclosure and data minimization are complementary principles. Data minimization ensures that only the minimum amount of personally identifiable information necessary is collected and processed. Selective disclosure builds on this by controlling what specific pieces of data are revealed in each interaction, ensuring that individuals or systems disclose only what is strictly required for the given context. Together, they reduce unnecessary exposure of personally identifiable information and strengthen privacy protection.
The selective disclosure scheme shall enable users to disclose only attributes strictly necessary for a specified transaction or purpose (e.g., proving age without revealing birthdate).
It is necessary to use a selective disclosure in the decentralized identity system to meet the data minimization. Therefore, it is very important to define a concept of selective disclosure system, to identify metadata for selective disclosure scheme using credential schema, and to develop its capabilities to implement the selective disclosure system in the decentralized identity system.
|
|
Comment:
|
-
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2025-12-11 21:02:46
|
|
Last update:
2025-12-11 21:04:49
|
|
