Intent to Extend Experiment: Digital Credentials API (issuance support)
43 views
Skip to first unread message
Chromestatus
9:57 AM (9 hours ago) 9:57 AM
to blin...@chromium.org, ashim...@google.com, ma...@chromium.org, rby...@chromium.org
Contact emails
rby...@chromium.org, ma...@chromium.org, ashim...@google.comExplainer
https://github.com/w3c-fedid/digital-credentials/blob/main/explainer.mdSpecification
https://w3c-fedid.github.io/digital-credentials
Summary
This Web Platform feature enables issuing websites (e.g., a university, government agency, or bank) to securely initiate the provisioning (issuance) process of digital credentials directly into a user's mobile wallet application. On Android, this capability leverages the Android IdentityCredential CredMan system (Credential Manager). On Desktop, it leverages cross-device approaches using the CTAP protocol similar to Digital Credentials presentation.
Blink component
Blink>Identity>DigitalCredentialsWeb Feature ID
Missing feature
TAG review
https://github.com/w3ctag/design-reviews/issues/1119
TAG review status
PendingOrigin Trial Name
Digital Credentials API - Issuance SupportGoals for experimentation
We want to gather initial feedback from production usage of end-to-end scenarios involving at least one wallet and at least one real-world issuer website including the cross-device flow.
One of the initial use cases of digital credentials issuance via the origin trial will be the Sparkasse age credential in Google Wallet. Sparkasse is a network of regional German savings banks with more than 50 million customers. Sparkasse will issue their customers an 18+ age credential from their website based on verified information with the bank to Google Wallet, that can be used online to prove their adulthood with websites and apps onlineChromium Trial Name
WebIdentityDigitalCredentialsCreationOrigin Trial documentation link
https://w3c-fedid.github.io/digital-credentialsWebFeature UseCounter name
kIdentityDigitalCredentialsCreation
Risks
Interoperability and Compatibility
There are multiple standards efforts involved here. We have been working with WebKit and Mozilla in the WICG on defining this specific API. But the greater interoperability risk will come from the data that is sent and returned via this API. Details of that are driven outside the web browser community in the OpenID Foundation.
Gecko: Negative (https://github.com/mozilla/standards-positions/issues/1003)
WebKit: Support (https://github.com/WebKit/standards-positions/issues/332) Presentation support is shipped, but timeline for adding issuance support yet.
Web developers: No signals
Other signals:
Activation
The primary activation concern is enabling existing deployments using technology like OpenID4VCI to be able to also support this API. As such we have left the request protocol unspecified at this layer, to be specified along with existing request protocols to maximize activation opportunity.WebView application risks
Does this intent deprecate or change behavior of existing APIs, such that it has potentially high risk for Android WebView-based applications?
No information providedReason this experiment is being extended
We request an extension because all planned partner participants have experienced delays, resulting in insufficient time to gather the necessary feedback on the feature.Ongoing technical constraints
No information providedDebuggability
None necessary - just new JS API.
For testing we plan to add a developer option to provide a fake wallet, but this effort is still ongoing.
Will this feature be supported on all six Blink platforms
(Windows, Mac, Linux, ChromeOS, Android, and Android WebView)?
NoIs this feature fully tested by web-platform-tests?
Yes
https://wpt.fyi/results/digital-credentials?label=experimental&label=master&aligned
Flag name on about://flags
web-identity-digital-credentials-creation
Finch feature name
WebIdentityDigitalCredentialsCreation
Requires code in //chrome?
TrueTracking bug
https://crbug.com/378330032Launch bug
https://launch.corp.google.com/launch/4418038Estimated milestones
| Origin trial desktop first | 143 |
| Origin trial desktop last | 148 |
| Origin trial extension 1 end milestone | 151 |
| DevTrial on desktop | 133 |
| Origin trial Android first | 143 |
| Origin trial Android last | 148 |
| DevTrial on Android | 133 |
Link to entry on the Chrome Platform Status
https://chromestatus.com/feature/5099333963874304?gate=6279271645577216Links to previous Intent discussions
Intent to Experiment: https://groups.google.com/a/chromium.org/d/msgid/blink-dev/68ed3208.050a0220.30571e.0360.GAE%40google.com
This intent message was generated by
Chrome Platform Status.
Vladimir Levin
11:26 AM (7 hours ago) 11:26 AM
to blink-dev, Chromestatus, ashim...@google.com, Mohamed Amir Yosef, Rick Byers
LGTM to extend experimentation to 151 inclusive.
Thanks,
Vlad
Reply all
Reply to author
Forward
0 new messages