DocsCredential management

Credential management

Credential management capabilities support the secure and efficient handling of credentials throughout their lifecycle which can include revocation, suspension and expiry. These capabilities ensure credential validity and accuracy are maintained and facilitate a continuous trust life cycle rather than a point in time interaction.

Credential revocation

Issuers might need to invalidate a previously issued digital credential before its expiry date. This might be required when a credential has been compromised, its status and/or claims have changed, or in cases when a credential is issued in error.

You can use MATTR VII to change the status of issued credentials. Verifiers can obtain this status of a presented credential in a way that preserves the privacy of its holder.

Revocable credentials point to a list which is managed by the issuer and contains the status of multiple credentials. When a verifier retrieves such a list, the issuer cannot tell what specific credential they are checking the status for. This means the issuer does not know how often or to whom a credential is being presented, maintaining holder privacy.

Additional resources

Docs

mDocs revocationCWT credentials revocationJSON credentials revocation

Guides

How to revoke an mDocHow to revoke a CWT credentialHow to revoke a JSON credentialHow to send a status change notification

API Reference

Update an mDoc revocation statusUpdate CWT credential revocation statusUpdate Semantic CWT credential revocation statusUpdate JSON credential revocation status
Direct issuanceJourney patterns