light-mode-image
Learn
Journey patterns

mDocs remote web presentation journey pattern

This journey pattern assumes that the wallet is presenting a credential to a verifier using MATTR verification capabilities. However, the same pattern can be applied to any ISO/IEC 18013-7 compliant verifier.

This journey pattern is used to verify an mDoc remotely by presenting it to an app installed on the same mobile device as the digital wallet, as per ISO/IEC 18013-7:2025 and OID4VP.

Overview

  • Issuance channel: Remote, unsupervised
  • Device/s: Same-device
  • Formats: mDocs
  • Information assurance level: High
  • Identity assurance level: High

Journey flow

mDocs Mobile Verification

Accessing the service
1

Accessing the service

Samantha opens a mobile application on her phone. She begins an interaction that requires her to verify her identity.

1 / 8

Architecture

Remote verification mobile architecture

Interacting with the mobile application

The user accesses a mobile app that embeds the MATTR Pi Verifier Mobile SDK. The app initiates and handles the entire verification flow on the same device.

Requesting a credential for verification

The Verifier Mobile SDK sends a verification request to a configured MATTR VII verifier tenant, defining:

  • The credentials and claims required
  • The supported interaction mode (same-device)

The MATTR VII verifier tenant is configured with:

  • Which apps or domains can issue verification requests
  • The workflows it supports (same-device and/or cross-device)
  • The protocols it supports (e.g. OID4VP, Apple’s Verify with Wallet API)
  • Which wallet applications it can invoke on the same device

The verifier tenant responds with a custom URI or universal link. The Verifier Mobile SDK uses this to launch the wallet app directly.

Presenting request details to the user

The wallet retrieves the presentation request and displays:

  • The credentials requested
  • The claims that will be shared
  • Whether the relying party is trusted by the Digital Trust Service
  • Which of the user’s credentials match the request

The user authenticates and consents to share the requested information.

Verifying the credential

The MATTR VII verifier tenant verifies the credential by checking:

  • Validating the digital signature to confirm the data has not been tampered with
  • Checking that the credential has not been revoked or suspended, using a revocation list (if applicable)
  • Verifying that the credential is currently valid, based on its “valid from” and “valid until” dates
  • Ensuring the credential was issued by a trusted issuer, based on information retrieved from a Digital Trust Service

The issuer of the credential is not informed that the presentation has occurred. No data about the verifier, the context of use, or the interaction itself is shared with the issuer. The only interaction with the issuer is a potential call to an online revocation endpoint, if revocation checking is required.

Displaying verification results

Once verification is complete, the wallet app redirects the user back to the mobile application using the provided redirect URI. The Verifier Mobile SDK receives the result and displays it within the app interface.

The MATTR VII verifier tenant can also be configured to share the verification results with a configured back-end rather than the front-end directly.

How would you rate this page?

Web

Previous Page

Quickstart

Next Page

On this page

OverviewJourney flowArchitectureInteracting with the mobile applicationRequesting a credential for verificationPresenting request details to the userVerifying the credentialDisplaying verification results