See the thread here: https://github.com/w3c/vc-jose-cose/issues/136#issuecomment-1679064532
Because the payload has to be transformed to be secured with selective disclosure, and transformed again during verification, its possible that some additional parameters might be useful when registering the media type application/sd-jwt or the structured suffix +sd-jwt. Is there a need to signal the content type of the "verified payload"? What is the recommended way to do this? OS -- ORIE STEELE Chief Technology Officer www.transmute.industries <https://transmute.industries>
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
