oauth2.dev

...

IETF

Registry Context

A special array-element placeholder in an SD-JWT that carries the digest of the hidden Disclosure for that array position.

Technical Summary

For a selectively disclosable array element, an object of the form {"...":"<digest>"} is added at the original claim value's position. The object contains no other keys.

When Used

When embedding a Disclosure digest for a selectively disclosable array element in an SD-JWT.

Normative Requirements

Issuer

MUST NOT
1
  1. RFC 9901 - Section 4.2.4.2

    Include any other keys in the array-element digest object..

    Condition: When embedding a Disclosure digest for an array element.

    There MUST NOT be any other keys in the object.

MUST
2
  1. RFC 9901 - Section 4.2.4.2

    Use the string `...` as the key in the array-element digest object..

    Condition: When embedding a Disclosure digest for an array element.

    The key MUST always be the string ... (three dots).

  2. RFC 9901 - Section 4.2.4.2

    Set the object's value to the digest of the Disclosure created as described in Section 4.2.3..

    Condition: When embedding a Disclosure digest for an array element.

    The value MUST be the digest of the Disclosure created as described in Section 4.2.3.

Validation Guidance

error

Verify that each array-element digest object occupies the same array position as the original claim value.

error

Verify that the object has exactly one property and that its name is `...`.

error

Verify that the property value is the digest of the corresponding Disclosure created as described in Section 4.2.3.

Reference

Details

Entry Id
...
Claim Name
...
Claim Description
Digest of the Disclosure for an array element
Change Controller
IETF
Reference
RFC9901 - Section 4.2.4.2