Feature Friday n°6: Verification Policies

Written By Tamino Baumann

Introduction

Hey friends,

Welcome to Feature Friday! Each week, this series highlights new identity features available with the walt.id tooling. Check out last week's lesson on Verifiable Credential Templates! For feedback or episode suggestions, connect with us on Discord!

Today, we dive into verification policies, which are customizable, adaptable rulesets that simplify the process of verifying credentials in both common and complex use cases.

What Verification Policies Are

  • Rulesets: Verification policies are rulesets that outline the criteria a credential must meet to be considered valid. This can include rules on whom the issuer is, what information the credential must contain, how recent the information is, among other things.

What Verification Policies Enable

  • Improved Processes: Enabling streamlined, adaptable, and efficient credential verification processes, accommodating various credential types and use-cases from simple to complex.

What Types Of Policies We Offer

  • Predefined Static: These are ready-to-use policies designed for common use cases. They include policies such as SignaturePolicy, JsonSchemaPolicy, ValidFromBeforePolicy, ExpirationDateAfterPolicy, and more.

  • Predefined Parameterised: These are flexible predefined policies that require certain parameters or arguments for their execution. They provide a more dynamic approach to verification while still offering the simplicity of predefined rules, allowing developers to adjust verifications easily to meet their needs.

  • Custom (Static & Parameterised): For more complex scenarios, custom static or parameterised policies can be created using a policy execution engine like the Open Policy Agent. This allows developers to establish their own unique rules and conditions for verification.

Credential Policy Features

With our open source tools, you can:

  1. Create custom verification policies using Open Policy Agent and the rego language.

  2. Manage custom verification policies

  3. Use custom and predefined policies for Verifiable Credential verification across ecosystems and credential formats

… but wait there’s more:

  • Works Across Programming Languages: You can create, manage and use policies easily with walt.id’s SSI-Kit, offering a CLI tool, a REST service and a Java and Kotlin library.

  • Works Across Verifiable Credential Ecosystems: Our supported DID methods range from key, web, ebsi, iota, jwk, cheqd and velocity with new ones added continuously.

  • Flexible, Extensible and Open-Source: Using our tools you can leverage the wide range of already supported ecosystems and credential formats or extend our modular system bringing support for your own did:method, credential format or status type.

Demo

Watch our short demo, showcasing how you can use policies to verify credentials using the walt.id SSI-Kit

 
 

Get Started

Please note, that the demo shown used the SSI-Kit which is no longer maintained by walt.id. However, all the features are now available via the community stack.
You can get started with the new libs and APIs here.

Join us for the upcoming Feature Friday to learn about Login with Verifiable Credentials in web2.

Now, here's your dose of tech humour for the day:

Why was the JavaScript developer sad?

Because he didn't Node how to Express his feelings.

See you next Friday, and in the meantime, let’s connect on discord!

Best,

Tamino from walt.id

Tamino Baumann
Previous

Feature Friday n°7: Login with SSI in web2
Next

Feature Friday n°5: Credential Templates