This specification defines how Verifiable Credentials can be secured using Authentic Chained Data Containers (ACDC).

Introduction

Authentic Chained Data Containers [[!ACDC]] is a means of providing an authentication and autorization layer for the payload contained within. Some of the major distinguishing features of ACDCs include normative support for chaining, use of composable JSON Schema [[!JSCH]], support for Ricardian contracts [[?RC]], support for chain-link confidentiality [[?CLC]], a well defined security model derived from KERI [[!KERI]], compact formats for resource constrained applications, simple partial disclosure mechanisms and simple selective disclosure mechanisms. ACDCs provision data using a synergy of provenance, protection, and performance.

Version 2.0

ACDC Decoding

ACDC Considerations

1. Create a JSON object.
2. If $.a.dt is present, the UNIX timestamp MUST be converted to an [XMLSCHEMA11-2] date-time, and MUST be used to set the value of the validFrom property of credentialSubject of the new JSON object.
3. The $.i attribute MUST be used to set the $.issuer.id property of the new credential JSON object.
4. The $.a.i attribute MUST be used to set the $.credentialSubject.id property of the new credential JSON object.

ACDC Data Attestation Considerations

1. Create a JSON object.
2. If $.a.dt is present, the UNIX timestamp MUST be converted to an [XMLSCHEMA11-2] date-time, and MUST be used to set the value of the validFrom property of credentialSubject of the new JSON object.
3. The $.i attribute MUST be used to set the $.issuer.id property of the new credential JSON object.
4. The $.a.d attribute MUST be used to set the $.credentialSubject.id property of the new credential JSON object.

Privacy Considerations

Security Considerations