index.html

<!DOCTYPE html>
<html>
  <head>
    <title>The Security Vocabulary</title>
    <meta http-equiv='Content-Type' content='text/html;charset=utf-8'/>
    <!--
      === NOTA BENE ===
      For the three scripts below, if your spec resides on dev.w3 you can check them
      out in the same tree and use relative links so that they'll work offline,
     -->
    <script src='https://www.w3.org/Tools/respec/respec-w3c-common' class='remove'></script>
    <script class='remove'>
      var respecConfig = {
          // specification status (e.g. WD, LCWD, NOTE, etc.). If in doubt use ED.
          specStatus:       "CG-DRAFT",

          // the specification's short name, as in http://www.w3.org/TR/short-name/
          shortName:        "security-vocabulary",

          // if you wish the publication date to be other than today, set this
          // publishDate:  "2009-08-06",

          // if there is a previously published draft, uncomment this and set its YYYY-MM-DD date
          // and its maturity status
          // previousPublishDate:  "1977-03-15",
          // previousMaturity:  "WD",

          // if there a publicly available Editor's Draft, this is the link
          edDraftURI:       "https://w3c-ccg.github.io/security-vocab/",

          // if this is a LCWD, uncomment and set the end of its review period
          // lcEnd: "2009-08-05",

          // if you want to have extra CSS, append them to this list
          // it is recommended that the respec.css stylesheet be kept
          //extraCSS:             ["prettify.css"],

          // editors, add as many as you like
          // only "name" is required
          editors:  [
{
name: "Manu Sporny",
url: "http://manu.sporny.org/",
company: "Digital Bazaar, Inc.",
companyURL: "https://digitalbazaar.com/"
},
{
name: "Orie Steele",
url: "https://transmute.industries/",
company: "Transmute Industries, Inc.",
companyURL: "https://transmute.industries/"
},
{
name: "Tobias Looker",
url: "https://mattr.global/",
company: "Mattr",
companyURL: "https://mattr.global/"
},
          ],

          // authors, add as many as you like.
          // This is optional, uncomment if you have authors as well as editors.
          // only "name" is required. Same format as editors.

          //authors:  [
          //  { name: "Your Name", url: "http://example.org/",
          //      company: "Your Company", companyURL: "http://example.com/" },
          //],
          github: "https://github.com/w3c-ccg/security-vocab/",

          // extend the bibliography entries
          localBiblio: {
            "ED25519-2020": {
              title: "Ed25519 Signature 2020",
              date: "November 2020",
              href: "https://w3c-ccg.github.io/lds-ed25519-2020/",
              authors: [
                "Orie Steele"
              ],
              status: "Community Group Draft",
              publisher: "W3C Credentials Community Group"
            },
            "LD-CRYPTOSUITE-REGISTRY": {
              title: "The Linked Data Cryptosuite Registry",
              date: "May 2021",
              href: "https://w3c-ccg.github.io/ld-cryptosuite-registry/",
              authors: [
                "Manu Sporny",
                "Orie Steele"
              ],
              status: "W3C Community Group Draft",
              publisher: "W3C Credentials Community Group"
            },
            "MULTIBASE": {
              title: "The Multibase Data Format",
              date: "February 2021",
              href: "https://datatracker.ietf.org/doc/html/draft-multiformats-multibase-03",
              authors: [
                "Manu Sporny"
              ],
              status: "Internet-Draft",
              publisher: "IETF"
            },
            "MULTICODEC": {
              title: "The Multicodec Data Format",
              date: "May 2021",
              href: "https://github.com/multiformats/multicodec/blob/master/table.csv",
              authors: [
                "Steven Allen",
                "David Dias"
              ],
              status: "Draft",
              publisher: "Protocol Labs"
            }
          },

          // name of the WG
          wg:       "Credentials Community Group",

          // URI of the public WG page
          wgURI:    "https://w3c-ccg.github.io/",

          // name (with the @w3c.org) of the public mailing to which comments are due
          wgPublicList: "public-credentials@w3c.org",

          // URI of the patent status for this WG, for Rec-track documents
          // !!!! IMPORTANT !!!!
          // This is important for Rec-track documents, do not copy a patent URI from a random
          // document unless you know what you're doing. If in doubt ask your friendly neighbourhood
          // Team Contact.
          wgPatentURI:  "",

          // Run the following pre-processing commands
          preProcess: []
    };
    </script>
    <script type="text/javascript" src="prettify.js" class="remove"></script>
    <script type="text/javascript" src="lang-jsonld.js" class="remove"></script>
    <script type="text/javascript" class="remove">
      var oldonload = window.onload;
      window.onload = function() {
        if (oldonload) oldonload();
        prettyPrint();
      };
    </script>
  </head>
  <body prefix="rdf: http://www.w3.org/1999/02/22-rdf-syntax-ns#
    rdfs: http://www.w3.org/2000/01/rdf-schema#
    vs: http://www.w3.org/2003/06/sw-vocab-status/ns#
    sec: https://w3id.org/security#">

    <section id='abstract'>
      <p>
The Security vocabulary is used to enable Internet-based applications to
encrypt, decrypt, and digitally sign information expressed as
<a href="http://en.wikipedia.org/wiki/Linked_data">Linked Data</a>.
It also provides vocabulary terms for the creation and management of a
decentralized
<a href="http://en.wikipedia.org/wiki/Public_key_infrastructure">Public Key Infrastructure</a>
via the Web.
      </p>
    </section>

    <section id='sotd'>
      <p>
This is an experimental vocabulary and is not intended for use in production
systems by non-experts.
      </p>
    </section>

    <section>
      <h2>Introduction</h2>
      <p>
This document describes a number of classes and properties that can be used to
express <a href="http://en.wikipedia.org/wiki/Digital_signatures">
digital signatures</a> and achieve cryptographic protection for Linked Data
resources. This specification was designed as a modular part of the
<a href="http://payswarm.com/">PaySwarm</a> decentralized payment system
for the Web.
      </p>
      <p class="issue">
This entire document is a work in progress and should be considered in beta
until it is ratified as an official document via the World Wide Web Consortium.
      </p>
    </section>

    <section>
      <h2>Classes</h2>

      <section id="EcdsaSecp256k1Signature2019" about="https://w3id.org/security#EcdsaSecp256k1Signature2019"
      typeof="rdfs:Class">
        <h3>EcdsaSecp256k1Signature2019</h3>
        <p>
        This class represents a linked data signature suite. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#ecdsa-secp256k1">ecdsa-secp256k1</a>.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">unstable</dd>
          <dt>Expected properties</dt>
          <dd>type, created, verificationMethod, proofPurpose, jws</dd>
        </dl>
        <pre class="example prettyprint language-jsonld">
{
  "type": "EcdsaSecp256k1Signature2019",
  "created": "2020-03-30T20:54:52Z",
  "verificationMethod": "did:example:123#qfknmVDhMi3Uc190IHBRfBRqMgbEEBRzWOj1E9EmzwM",
  "proofPurpose": "assertionMethod",
  "jws": "eyJhbGciOiJFUzI1NksiLCJiNjQiOmZhbHNlLCJjcml0IjpbImI2NCJdfQ..EsCNG3KD8CcurIBd354JMIYvsBr9bvF17RQbfqEg5dZy45vmSGVg1U5_rlXihjGLb3EtTK9-73X3YYYgfW2Byg"
}
        </pre>
      </section>

      <section id="EcdsaSecp256k1RecoverySignature2020" about="https://identity.foundation/EcdsaSecp256k1RecoverySignature2020#EcdsaSecp256k1RecoverySignature2020"
      typeof="rdfs:Class">
        <h3>EcdsaSecp256k1RecoverySignature2020</h3>
        <p>
        This class represents a linked data signature suite. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#ecdsasecp256k1recoverysignature2020">ecdsasecp256k1recoverysignature2020</a>.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Expected properties</dt>
          <dd>type, created, verificationMethod, proofPurpose, jws</dd>
        </dl>
        <pre class="example prettyprint language-jsonld">
{
  "type": "EcdsaSecp256k1RecoverySignature2020",
  "created": "2020-04-11T21:07:06Z",
  "verificationMethod": "did:example:123#vm-3",
  "proofPurpose": "assertionMethod",
  "jws": "eyJhbGciOiJFUzI1NkstUiIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..pp9eiLCMfN4EfSB3cbl3UxJ4TtgUaTfByDaaB6IZbXsnvIy5AUIFjbgaiFNtq9-3f8mP7foD_HXpjrdWZfzlwAE"
}
        </pre>
      </section>

      <section id="EcdsaSecp256k1VerificationKey2019" about="https://w3id.org/security#EcdsaSecp256k1VerificationKey2019"
      typeof="rdfs:Class">
        <h3>EcdsaSecp256k1VerificationKey2019</h3>
        <p>
          This class represents a linked data signature verification key. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#ecdsa-secp256k1">ecdsa-secp256k1</a>.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Expected properties</dt>
            <dd>id, type, controller, publicKeyJwk</dd>
          </dl>
          <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:123#WqzaOweASs78whhl_YvCEvj1nd89IycryVlmZMefcjU",
  "type": "EcdsaSecp256k1VerificationKey2019",
  "controller": "did:example:123",
  "publicKeyJwk": {
    "crv": "secp256k1",
    "x": "4xAbUxbGGFPv4qpHlPFAUJdzteUGR1lRK-CELCufU9w",
    "y": "EYcgCTsff1qtZjI9_ckZTXDSKAIuM0BknrKgo0BZ_Is",
    "kty": "EC",
    "kid": "WqzaOweASs78whhl_YvCEvj1nd89IycryVlmZMefcjU"
  }
}
          </pre>
      </section>


      <section id="EcdsaSecp256k1RecoveryMethod2020" about="https://identity.foundation/EcdsaSecp256k1RecoverySignature2020#EcdsaSecp256k1RecoveryMethod2020"
      typeof="rdfs:Class">
        <h3>EcdsaSecp256k1RecoveryMethod2020</h3>
        <p>
          This class represents a linked data signature verification key. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#ecdsasecp256k1recoverymethod2020">ecdsasecp256k1recoverymethod2020</a>.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Expected properties</dt>
            <dd>id, type, controller</dd>
          </dl>
<pre class="example prettyprint language-jsonld" title="Example using publicKeyJwk">
{
  "id": "did:example:123#WqzaOweASs78whhl_YvCEvj1nd89IycryVlmZMefcjU",
  "type": "EcdsaSecp256k1RecoveryMethod2020",
  "controller": "did:example:123",
  "publicKeyJwk": {
    "crv": "secp256k1",
    "x": "4xAbUxbGGFPv4qpHlPFAUJdzteUGR1lRK-CELCufU9w",
    "y": "EYcgCTsff1qtZjI9_ckZTXDSKAIuM0BknrKgo0BZ_Is",
    "kty": "EC",
    "kid": "WqzaOweASs78whhl_YvCEvj1nd89IycryVlmZMefcjU"
  }
}
          </pre>

<pre class="example prettyprint language-jsonld" title="Example using blockchainAccountId">
{
  "id": "did:example:123#keys-1",
  "type": "EcdsaSecp256k1RecoveryMethod2020",
  "controller": "did:example:123",
  "blockchainAccountId": "eip155:1:0x89a932207c485f85226d86f7cd486a89a24fcc12"
}
</pre>
      </section>


      <section id="RsaSignature2018" about="https://w3id.org/security#RsaSignature2018"
      typeof="rdfs:Class">
        <h3>RsaSignature2018</h3>

        <p>
          This class represents a linked data signature suite. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#rsa">rsa</a>.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Expected properties</dt>
            <dd>type, created, verificationMethod, proofPurpose, jws</dd>
          </dl>
          <pre class="example prettyprint language-jsonld">
{
  "type": "RsaSignature2018",
  "created": "2017-06-18T21:19:10Z",
  "proofPurpose": "assertionMethod",
  "verificationMethod": "https://example.edu/issuers/keys/1",
  "jws": "eyJhbGciOiJSUzI1NiIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..TCYt5X
    sITJX1CxPCT8yAV-TVkIEq_PbChOMqsLfRoPsnsgw5WEuts01mq-pQy7UJiN5mgRxD-WUc
    X16dUEMGlv50aqzpqh4Qktb3rk-BuQy72IFLOqV0G_zS245-kronKb78cPN25DGlcTwLtj
    PAYuNzVBAh4vGHSrQyHUdBBPM"
}
          </pre>
      </section>

      <section id="RsaVerificationKey2018" about="https://w3id.org/security#RsaVerificationKey2018"
      typeof="rdfs:Class">
        <h3>RsaVerificationKey2018</h3>
        <p>
          This class represents a linked data signature verification key. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#rsa">rsa</a>.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Expected properties</dt>
            <dd>id, type, controller, expires, publicKeyPem</dd>
          </dl>
          <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:123456789abcdefghi#keys-1",
  "type": "RsaVerificationKey2018",
  "controller": "did:example:123456789abcdefghi",
  "expires": "2017-02-08T16:02:20Z",
  "publicKeyPem": "-----BEGIN PUBLIC KEY...END PUBLIC KEY-----\r\n"
}
          </pre>
      </section>

      <section id="SchnorrSecp256k1Signature2019" about="https://w3id.org/security#SchnorrSecp256k1Signature2019"
      typeof="rdfs:Class">
        <h3>SchnorrSecp256k1Signature2019</h3>
      </section>

      <section id="SchnorrSecp256k1VerificationKey2019" about="https://w3id.org/security#SchnorrSecp256k1VerificationKey2019"
      typeof="rdfs:Class">
        <h3>SchnorrSecp256k1VerificationKey2019</h3>
      </section>

      <section id="ServiceEndpointProxyService" about="https://w3id.org/security#ServiceEndpointProxyService"
      typeof="rdfs:Class">
        <h3>ServiceEndpointProxyService</h3>
      </section>

      <section id="Digest" about="https://w3id.org/security#Digest"
        typeof="rdfs:Class">
        <h3>Digest</h3>
          <p>
This class represents a message digest that may be used for data integrity
verification. The digest algorithm used will determine the cryptographic
properties of the digest.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Expected properties</dt>
            <dd>digestAlgorithm, digestValue</dd>
          </dl>
        <p>
The example below describes a cryptographic digest:
        </p>
<pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@type": "Digest",
  "digestAlgorithm": "http://www.w3.org/2000/09/xmldsig#sha1",
  "digestValue": "981ec496092bf6ee18d6255d96069b528633268b"
}
</pre>
      </section>

      <section id="EncryptedMessage"
        about="https://w3id.org/security#EncryptedMessage"
        typeof="rdfs:Class">
        <h3>EncryptedMessage</h3>
          <p>
A class of messages that are obfuscated in some cryptographic manner. These
messages are incredibly difficult to decrypt without the proper decryption key.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Expected properties</dt>
            <dd>authenticationTag, cipherAlgorithm, cipherData, cipherKey,
              initializationVector, publicKey</dd>
          </dl>
        <p>
The example below expresses a message that has been encrypted using an
<a href="http://en.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a>
cipher in
<a href="http://en.wikipedia.org/wiki/GCM_mode">Galois/Counter Mode</a> and a
128-bit key (AES-128-GCM). The key has been encrypted using an RSA public key.
The encrypted message, <code>cipherData</code>, and encrypted key,
<code>cipherKey</code>, are both base64-encoded. To decrypt the message, first
the <code>cipherKey</code> must be decrypted using the private key associated
with the <code>publicKey</code>. Then, the <code>cipherData</code> can be
decrypted using the decrypted <code>cipherKey</code>,
<code>cipherAlgorithm</code>, <code>initializationVector</code>, and
<code>authenticationTag</code>.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@type": "EncryptedMessage",
  "cipherData": "VTJGc2RHVmtYMThOY3h2dnNVN290Zks1dmxWc3labi9sYkU0TGloRTdxY0dpblE4OHgrUXFNNi9l\n↩
a1JMWjdXOApRSGtrbzh6UG5XOFo3WWI4djJBUG1abnlRNW5CVGViWkRGdklpMEliczNWSzRQTGdB\n↩
UFhxYTR2aWFtemwrWGV3Cmw0eFF4ancvOW85dTlEckNURjMrMDBKMVFubGdtci9abkFRSmc5UjdV\n↩
Rk55ckpYalIxZUJuKytaQ0luUTF2cUwKcm5vcDU1eWk3RFVqVnMrRXZZSkx6RVF1VlBVQ0xxdXR4\n↩
L3lvTWd4bkdhSksxOG5ZakdiekJxSGxOYm9pVStUNwpwOTJ1Q0Y0Q2RiR1NqL0U3OUp4Vmh6OXQr\n↩
Mjc2a1V3RUlNY3o2Z3FadXZMU004KzRtWkZiakh6K2N5a1VVQ2xHCi9RcTk3b2o3N2UrYXlhZjhS\n↩
ZmtEZzlUeWk3Q2szREhSblprcy9WWDJWUGhUOEJ5c3RiYndnMnN4eWc5TXhkbHoKUkVESzFvR0FJ\n↩
UDZVQ09NeWJLTGpBUm0zMTRmcWtXSFdDY29mWFNzSGNPRmM2cnp1Wko0RnVWTFNQMGROUkFRRgpB\n↩
bFQ0QUpPbzRBZHpIb2hpTy8vVGhNOTl1U1ZER1NPQ3graFAvY3V4dGNGUFBSRzNrZS8vUk1MVFZO\n↩
YVBlaUp2Ckg4L1ZWUVU4L3dLZUEyeTQ1TzQ2K2lYTnZsOGErbGg0NjRUS3RabktFb009Cg==",
  "cipherKey": "uATtey0c4nvZIsDIfpFffuCyMYGPKRLIVJCsvedE013SpEJ+1uO7x6SK9hIG9zLWRlPpwmbar2bt\n↩
gTX5NBzYC5+c5ZkXtM1O8REwIJ7wmtLdumRYEbr/TghFl3pAgXhv0mVt8XZ+KLWlxMqXnrT+ByNw\n↩
z7u3IxpqNVcXHExjXQE=",
  "cipherAlgorithm": "aes-128-gcm",
  "authenticationTag": "q25H1CzsE731OmeyEle93w==",
  "initializationVector": "vcDU1eWTy8vVGhNOszREhSblFVqVnGpBUm0zMTRmcWtMrRX=="
  "publicKey": "https://example.com/people/john/keys/23"
}
        </pre>
      </section>

      <section id="GraphSignature2012" about="https://w3id.org/security#GraphSignature2012"
        typeof="sec:Signature">

        <h3>GraphSignature2012</h3>
          <p>
A graph signature is used for digital signatures on RDF graphs.
The default canonicalization mechanism is specified in the
RDF Graph normalization specification, which effectively deterministically
names all unnamed nodes. The default signature mechanism uses a SHA-256 digest
and RSA to perform the digital signature.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Parent Class</dt>
            <dd>Signature</dd>
            <dt>Expected properties</dt>
            <dd>creator, signatureValue</dd>
            <dt>Signature Properties</dt>
            <dd>
              <dl>
                <dt>Default Canonicalization Algorithm</dt>
                <dd>
<a rel="canonicalizationAlgorithm"
  href="https://w3id.org/rdf#URGNA2012">
https://w3id.org/rdf#URGNA2012</a>
                </dd>
                <dt>Default Signature Algorithm</dt>
                <dd>
<a rel="signatureAlgorithm"
  href="http://www.w3.org/2000/09/xmldsig#rsa-sha256">
http://www.w3.org/2000/09/xmldsig#rsa-sha256</a>
                </dd>
              </dl>
            </dd>
          </dl>
          <p>
The example below shows how a basic JSON-LD signature is expressed in a
JSON-LD snippet. Note that the signature property is directly embedded in the
object. The signature algorithm specifies how a signature can be generated
and verified.
          </p>
          <pre class="example prettyprint language-jsonld">
{
  "@context": ["https://w3id.org/security/v1", "http://json-ld.org/contexts/person.jsonld"]
  "@type": "Person",
  "name": "Manu Sporny",
  "homepage": "http://manu.sporny.org/",
  "signature": {
    "@type": "GraphSignature2012",
    "creator": "http://manu.sporny.org/keys/5",
    "signatureValue": "OGQzNGVkMzVmMmQ3ODIyOWM32MzQzNmExMgoYzI4ZDY3NjI4NTIyZTk="
  }
}
          </pre>
      </section>

      <section id="LinkedDataSignature2015"
        about="https://w3id.org/security#LinkedDataSignature2015"
        typeof="rdfs:Class">

        <h3>LinkedDataSignature2015</h3>
          <p>
A Linked Data signature is used for digital signatures on RDF Datasets.
The default canonicalization mechanism is specified in the RDF Dataset
Normalization specification, which effectively deterministically names all
unnamed nodes. The default signature mechanism
uses a SHA-256 digest and RSA to perform the digital signature. This
signature uses a algorithm for producing the data that it signs and
verifies that is different from other Linked Data signatures.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Parent Class</dt>
            <dd>Signature</dd>
            <dt>Expected properties</dt>
            <dd>creator, signatureValue</dd>
            <dt>Signature Properties</dt>
            <dd>
              <dl>
                <dt>Default Canonicalization Algorithm</dt>
                <dd>
<a rel="canonicalizationAlgorithm"
  href="https://w3id.org/rdf#URDNA2015">
https://w3id.org/rdf#URDNA2015</a>
                </dd>
                <dt>Default Signature Algorithm</dt>
                <dd>
<a rel="signatureAlgorithm"
  href="http://www.w3.org/2000/09/xmldsig#rsa-sha256">
http://www.w3.org/2000/09/xmldsig#rsa-sha256</a>
                </dd>
              </dl>
            </dd>
          </dl>
          <p>
The example below shows how a basic JSON-LD signature is expressed in a
JSON-LD snippet. Note that the signature property is directly embedded in the
object. The signature algorithm specifies how the signature can be generated
and verified.
          </p>
          <pre class="example prettyprint language-jsonld">
{
  "@context": ["https://w3id.org/security/v1", "http://json-ld.org/contexts/person.jsonld"]
  "@type": "Person",
  "name": "Manu Sporny",
  "homepage": "http://manu.sporny.org/",
  "signature": {
    "@type": "LinkedDataSignature2015",
    "creator": "http://manu.sporny.org/keys/5",
    "created": "2015-09-23T20:21:34Z",
    "signatureValue": "OGQzNGVkMzVmMmQ3ODIyOWM32MzQzNmExMgoYzI4ZDY3NjI4NTIyZTk="
  }
}
          </pre>
      </section>
      <section id="LinkedDataSignature2016">

        <h3>LinkedDataSignature2016</h3>
          <p>
A Linked Data signature is used for digital signatures on RDF Datasets.
The default canonicalization mechanism is specified in the RDF Dataset
Normalization specification, which effectively deterministically names all
unnamed nodes. The default signature mechanism
uses a SHA-256 digest and RSA to perform the digital signature.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Parent Class</dt>
            <dd>Signature</dd>
            <dt>Expected properties</dt>
            <dd>creator, signatureValue</dd>
            <dt>Signature Properties</dt>
            <dd>
              <dl>
                <dt>Default Canonicalization Algorithm</dt>
                <dd>
<a rel="canonicalizationAlgorithm"
  href="https://w3id.org/rdf#URDNA2015">
https://w3id.org/rdf#URDNA2015</a>
                </dd>
                <dt>Default Signature Algorithm</dt>
                <dd>
<a rel="signatureAlgorithm"
  href="http://www.w3.org/2000/09/xmldsig#rsa-sha256">
http://www.w3.org/2000/09/xmldsig#rsa-sha256</a>
                </dd>
              </dl>
            </dd>
          </dl>
          <p>
The example below shows how a basic JSON-LD signature is expressed in a
JSON-LD snippet. Note that the signature property is directly embedded in the
object. The signature algorithm specifies how the signature can be generated
and verified.
          </p>
          <pre class="example prettyprint language-jsonld">
{
  "@context": ["https://w3id.org/security/v1", "http://json-ld.org/contexts/person.jsonld"]
  "@type": "Person",
  "name": "Dave Longley",
  "homepage": "https://w3id.org/people/dave",
  "signature": {
    "@type": "LinkedDataSignature2016",
    "creator": "https://w3id.org/people/dave/keys/2",
    "created": "2016-11-05T03:12:54Z",
    "signatureValue": "OGQzNGVkMzVmMmQ3ODIyOWM32MzQzNmExMgoYzI4ZDY3NjI4NTIyZTk="
  }
}
          </pre>
      </section>


      <section id="MerkleProof2019" about="https://w3id.org/security#MerkleProof2019">

        <h3>MerkleProof2019</h3>
          <p>
A Linked Data signature is used for digital signatures on RDF Datasets.
The default canonicalization mechanism is specified in the RDF Dataset
Normalization specification, which effectively deterministically names all
unnamed nodes. The default signature mechanism
uses a SHA-256 digest and ECDSA to perform the digital signature. More information at
              <a href="https://w3c-ccg.github.io/lds-merkle-proof-2019/">https://w3c-ccg.github.io/lds-merkle-proof-2019/</a>
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Parent Class</dt>
            <dd>LinkedDataSignature</dd>
            <dt>Expected properties</dt>
            <dd>proofValue</dd>
            <dt>Signature Properties</dt>
            <dd>
              <dl>
                <dt>Default Canonicalization Algorithm</dt>
                <dd>
                    <a rel="canonicalizationAlgorithm"
                       href="https://w3id.org/rdf#URDNA2015">
                        https://w3id.org/rdf#URDNA2015</a>
                </dd>
                <dt>Default Signature Algorithm</dt>
                <dd>
<a rel="signatureAlgorithm"
  href="https://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256">
https://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256</a>
                </dd>
              </dl>
            </dd>
          </dl>
          <p>
The example below shows how a basic JSON-LD signature is expressed in a
JSON-LD snippet. Note that the proof property is directly embedded in the
object. The signature algorithm specifies how the signature can be generated
and verified.
          </p>
          <pre class="example prettyprint language-jsonld">
{
  "@context": [
    "https://www.w3.org/2018/credentials/v1",
    "https://www.w3id.org/blockcerts/v3.0-alpha",
    "https://www.w3.org/2018/credentials/examples/v1"
  ],
  "id": "urn:uuid:bbba8553-8ec1-445f-82c9-a57251dd731c",
  "type": [
    "VerifiableCredential",
    "BlockcertsCredential"
  ],
  "issuer": "did:example:23adb1f712ebc6f1c276eba4dfa",
  "issuanceDate": "2010-01-01T19:33:24Z",
  "credentialSubject": {
    "id": "did:example:ebfeb1f712ebc6f1c276e12ec21",
    "alumniOf": {
      "id": "did:example:c276e12ec21ebfeb1f712ebc6f1"
    }
  },
  "proof": {
    "type": "MerkleProof2019",
    "created": "2020-11-03T14:13:42.808099Z",
    "proofValue": "zMcm4LfQFUZkWZyLpVrzYzaHRssD3xGQ6Yh6nEhErjfAqnxDWo7gBawdhynnbiucoqqwye54oTs5p6frH385nVvBf2UXMgRVtBZLq6tHN1MY1hQBMBBtXbWbYzj99GotAJRs7PxcvQmUQKHs8hkokZhgw92CNAtvDn2jeycvuyFPtWorxZaGP23mDkgwpberKmAqcPcsUFNooGe1UkQj8wws8D9paKHwFWxyCMvXNuYUGaBdZDaSpcd7uv3kEwgZAzAHb1jMgDeLSN1EdZA33LhPj5ACxMKs3vmwpTnjpNiALoZpJan",
    "proofPurpose": "assertionMethod",
    "verificationMethod": "did:example:23adb1f712ebc6f1c276eba4dfa#key-1"
  }
}
          </pre>
      </section>

      <section id="X25519KeyAgreementKey2019" about="https://w3id.org/security#X25519KeyAgreementKey2019"
      typeof="rdfs:Class">
        <h3>X25519KeyAgreementKey2019</h3>
        <p>
          This class represents a verification key.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Expected properties</dt>
            <dd>id, type, controller, publicKeyBase58</dd>
          </dl>
          <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:123#z6LSeu9HkTHSfLLeUs2nnzUSNedgDUevfNQgQjQC23ZCit6F",
  "type": "X25519KeyAgreementKey2019",
  "controller": "did:example:123",
  "publicKeyBase58": "96XGGce9y12gRTxEcnuvpP8tCZzE39WkpKHvUZ6DLg6d"
}
          </pre>
      </section> 

      <section id="Ed25519VerificationKey2018" about="https://w3id.org/security#Ed25519VerificationKey2018"
      typeof="rdfs:Class">
        <h3>Ed25519VerificationKey2018</h3>
        <p>
          This class represents a linked data signature verification key. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#ed25519">eddsa-ed25519</a>.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Expected properties</dt>
            <dd>id, type, controller, publicKeyBase58</dd>
          </dl>
          <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:123#z6MkkQBvgvqb6zGvS4cydworpUaRDzpszSFixq49ahbDeUTG",
  "type": "Ed25519VerificationKey2018",
  "controller": "did:example:123",
  "publicKeyBase58": "6wvt6gb9mSnTKZnGxNr1yP2RQRZ2aZ1NGp9DkRdCjFft"
}
          </pre>
      </section>

      <section id="Ed25519Signature2018">

        <h3>Ed25519Signature2018</h3>
          <p>
A Linked Data signature is used for digital signatures on RDF Datasets.
The default canonicalization mechanism is specified in the RDF Dataset
Normalization specification, which deterministically names all
unnamed nodes. The default signature mechanism
uses a SHA-256 digest and JWS to perform the digital signature.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Parent Class</dt>
            <dd>Signature</dd>
            <dt>Expected properties</dt>
            <dd>verificationMethod, jws</dd>
            <dt>Signature Properties</dt>
            <dd>
              <dl>
                <dt>Default Canonicalization Algorithm</dt>
                <dd>
<a rel="canonicalizationAlgorithm"
  href="https://w3id.org/rdf#URDNA2015">
https://w3id.org/rdf#URDNA2015</a>
                </dd>
                <dt>Default Signature Algorithm</dt>
                <dd>
<a rel="signatureAlgorithm"
  href="https://tools.ietf.org/html/rfc8037#section-3.1">
  https://tools.ietf.org/html/rfc8037#section-3.1</a>
                </dd>
              </dl>
            </dd>
          </dl>
          <p>
            The JWS used with Linked Data Signatures is the detached and unencoded payload variant. See the links below for details:
          </p>
          <ul>
            <li>
            <a href="https://tools.ietf.org/html/rfc7797">JSON Web Signature (JWS) Unencoded Payload Option</a>
          </li>
          <li>
            <a href="https://medium.com/swlh/json-web-signature-jws-and-jws-detached-for-a-five-year-old-88729b7b1a68">JSON Web Signature (JWS) and JWS Detached for a five-year-old.</a>
          </li>
        </ul>
          <p>
The example below shows how a basic JSON-LD proof is expressed in a
JSON-LD snippet. Note that the proof property is directly embedded in the
object. The signature algorithm specifies how the proof can be generated
and verified.
          </p>
          <pre class="example prettyprint language-jsonld">
{
  "@context": ["https://w3id.org/security/v1", "http://json-ld.org/contexts/person.jsonld"]
  "@type": "Person",
  "name": "Dave Longley",
  "homepage": "https://w3id.org/people/dave",
  "proof": {
    "type": "Ed25519Signature2018",
    "verificationMethod": "https://w3id.org/people/dave/keys/2",
    "created": "2016-11-05T03:12:54Z",
    "proofPurpose": "assertionMethod",
    "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..dXNHwJ-9iPMRQ4AUcv9j-7LuImTiWAG0sDYbRRDDiyAjOV9CUmjLMKiePpytoAmGNGNTHDlEOsTa4CS3dZ7yBg"
  }
}
          </pre>
      </section>

<section id="Ed25519VerificationKey2020">

<h3>Ed25519VerificationKey2020</h3>
<p>
A linked data proof suite verification method <code>type</code>
used with <code>Ed25519Signature2020</code>.
</p>

<p class="advisement">
This suite is unstable and subject to change.
</p>

<dl>
<dt>Status</dt>
<dd property="vs:term_status">unstable</dd>
<dt>Parent Class</dt>
<dd>owl:Thing</dd>
<dt>Expected properties</dt>
<dd>id, type, controller, publicKeyMultibase</dd>
</dl>
</section>

<section id="Ed25519Signature2020">

<h3>Ed25519Signature2020</h3>
<p>
A linked data proof suite proof <code>type</code>
used with the verification method type <code>Ed25519VerificationKey2020</code>.
</p>

<p class="advisement">
This suite is unstable and subject to change.
</p>

<dl>
<dt>Status</dt>
<dd property="vs:term_status">unstable</dd>
<dt>Parent Class</dt>
<dd>Signature</dd>
<dt>Expected properties</dt>
<dd>verificationMethod, proofValue</dd>
<dt>Signature Properties</dt>
<dd>
<dl>
<dt>Default Canonicalization Algorithm</dt>
<dd>
<a rel="canonicalizationAlgorithm"
href="https://w3id.org/rdf#URDNA2015">
https://w3id.org/rdf#URDNA2015</a>
</dd>
<dt>Default Signature Algorithm</dt>
<dd>
<a rel="signatureAlgorithm"
href="https://tools.ietf.org/html/rfc8032">
https://tools.ietf.org/html/rfc8032</a>
</dd>
</dl>
</dd>
</dl>
</section>


<section id="JsonWebKey2020">

<h3>JsonWebKey2020</h3>
<p>
A linked data proof suite verification method <code>type</code>
used with <code>JsonWebSignature2020</code>.
</p>

<p class="advisement">
This suite is unstable and subject to change.
</p>

<p>
See also: <a href="https://github.com/w3c-ccg/lds-jws2020">w3c-ccg/lds-jws2020</a>.
</p>
<dl>
<dt>Status</dt>
<dd property="vs:term_status">unstable</dd>
<dt>Parent Class</dt>
<dd>owl:Thing</dd>
<dt>Expected properties</dt>
<dd>id, type, controller, publicKeyJwk</dd>
</dl>

<pre class="example prettyprint language-jsonld">
{
  "id": "did:example:123#_Qq0UL2Fq651Q0Fjd6TvnYE-faHiOpRlPVQcY_-tA4A",
  "type": "JsonWebKey2020",
  "controller": "did:example:123",
  "publicKeyJwk": {
    "kty": "OKP",
    "crv": "Ed25519",
    "x": "VCpo2LMLhn6iWku8MKvSLg2ZAoC-nlOyPVQaO3FxVeQ"
  }
}
</pre>
      </section>

      <section id="JsonWebSignature2020">

        <h3>JsonWebSignature2020</h3>
          <p>
A Linked Data signature is used for digital signatures on RDF Datasets.
The default canonicalization mechanism is specified in the RDF Dataset
Normalization specification, which deterministically names all
unnamed nodes. The default signature mechanism
uses a SHA-256 digest and JWS to perform the digital signature.
          </p>
<p class="advisement">
This suite is unstable and subject to change.
</p>

<p>
See also: <a href="https://github.com/w3c-ccg/lds-jws2020">w3c-ccg/lds-jws2020</a>.
</p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Parent Class</dt>
            <dd>Signature</dd>
            <dt>Expected properties</dt>
            <dd>verificationMethod, jws</dd>
            <dt>Signature Properties</dt>
            <dd>
              <dl>
                <dt>Default Canonicalization Algorithm</dt>
                <dd>
<a rel="canonicalizationAlgorithm"
  href="https://w3id.org/rdf#URDNA2015">
https://w3id.org/rdf#URDNA2015</a>
                </dd>
                <dt>Default Signature Algorithm</dt>
                <dd>
<a rel="signatureAlgorithm"
  href="https://tools.ietf.org/html/rfc8037#section-3.1">
  https://tools.ietf.org/html/rfc8037#section-3.1</a>
                </dd>
              </dl>
            </dd>
          </dl>
          <p>
            The JWS used with Linked Data Signatures is the detached and unencoded payload variant. See the links below for details:
          </p>
          <ul>
            <li>
            <a href="https://tools.ietf.org/html/rfc7797">JSON Web Signature (JWS) Unencoded Payload Option</a>
          </li>
          <li>
            <a href="https://medium.com/swlh/json-web-signature-jws-and-jws-detached-for-a-five-year-old-88729b7b1a68">JSON Web Signature (JWS) and JWS Detached for a five-year-old.</a>
          </li>
        </ul>
          <p>
The example below shows how a basic JSON-LD proof is expressed in a
JSON-LD snippet. Note that the proof property is directly embedded in the
object. The signature algorithm specifies how the proof can be generated
and verified.
          </p>
          <pre class="example prettyprint language-jsonld">
{
  "@context": ["https://w3id.org/security/v1", "http://json-ld.org/contexts/person.jsonld"]
  "@type": "Person",
  "name": "Dave Longley",
  "homepage": "https://w3id.org/people/dave",
  "proof": {
    "type": "JsonWebSignature2020",
    "verificationMethod": "https://w3id.org/people/dave/keys/2",
    "created": "2016-11-05T03:12:54Z",
    "proofPurpose": "assertionMethod",
    "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..dXNHwJ-9iPMRQ4AUcv9j-7LuImTiWAG0sDYbRRDDiyAjOV9CUmjLMKiePpytoAmGNGNTHDlEOsTa4CS3dZ7yBg"
  }
}
          </pre>
      </section>

      <section id="BbsBlsSignature2020" about="https://w3id.org/security#BbsBlsSignature2020"
      typeof="rdfs:Class">

        <h3>BbsBlsSignature2020</h3>
          <p>
A Linked Data signature is used for digital signatures on RDF Datasets.
The default canonicalization mechanism is specified in the RDF Dataset
Normalization specification, which deterministically names all
unnamed nodes. Importantly, a BbsBlsSignature digests each of the statements
produced by the normalization process individually to enable selective disclosure.
The signature mechanism uses Blake2B as the digest for each statement and produces a single
output digital signature.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Expected properties</dt>
            <dd>verificationMethod, proofValue</dd>
            <dt>Signature Properties</dt>
            <dd>
              <dl>
                <dt>Default Canonicalization Algorithm</dt>
                <dd>
<a rel="canonicalizationAlgorithm"
  href="https://w3id.org/rdf#URDNA2015">
https://w3id.org/rdf#URDNA2015</a>
                </dd>
                <dt>Default Signature Algorithm</dt>
                <dd>
<a rel="signatureAlgorithm"
  href="https://mattrglobal.github.io/bbs-signatures-spec/#name-sign">
  https://mattrglobal.github.io/bbs-signatures-spec/#name-sign</a>
                </dd>
              </dl>
            </dd>
          </dl>
        </ul>
        <p>
A Bbs signature is a cryptographic digital signature that works with any pairing friendly elliptic
curve, a BbsBls signature is a BBS signature using keys from the BLS12-381 curve:
        </p>
          <p>
The example below shows how a basic JSON-LD proof is expressed in a
JSON-LD snippet. Note that the proof property is directly embedded in the
object. The signature algorithm specifies how the proof can be generated
and verified.
          </p>
          <pre class="example prettyprint language-jsonld">
{
  "@context": ["https://w3id.org/security/v1", "http://json-ld.org/contexts/person.jsonld"]
  "@type": "Person",
  "name": "Dave Longley",
  "homepage": "https://w3id.org/people/dave",
  "proof": {
    "type": "BbsBlsSignature2020",
    "verificationMethod": "https://w3id.org/people/dave/keys/2",
    "created": "2016-11-05T03:12:54Z",
    "proofPurpose": "assertionMethod",
    "proofValue": "pTy8PJCw93RrD+X55McbjHfrlW5SJYNhF84Eggafnlb2CH8QtfXfNsTnVuTQp8UfKKbKqOp6ASwv2kmKtXJJpK+n7+mNKMbeBqw/fuwbu5w/QjvCgYZH3WhlZq6zTmRN9MwO1lQOxntcnKP8xmaoAw=="
  }
}
          </pre>
      </section>

      <section id="BbsBlsSignatureProof2020" about="https://w3id.org/security#BbsBlsSignatureProof2020"
      typeof="rdfs:Class">

        <h3>BbsBlsSignatureProof2020</h3>
          <p>
A Linked Data signature is used for digital signatures on RDF Datasets.
The default canonicalization mechanism is specified in the RDF Dataset
Normalization specification, which deterministically names all
unnamed nodes. Importantly, a BbsBlsSignatureProof2020 is in fact a proof of knowledge
of an unrevealed <a href="BbsBlsSignature2020">BbsBlsSignature2020</a> enabling the
ability to selectively reveal information from the set that was originally signed.
Each of the statements produced by the normalizing process for a JSON-LD document featuring a
"BbsBlsSignatureProof2020" represent statements that were
originally signed in producing the <a href="BbsBlsSignature2020">BbsBlsSignature2020</a>
and represent the denomination under which information can be selectively disclosed.
The signature mechanism uses Blake2B as the digest for each statement and produces
a single output digital signature.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Parent Class</dt>
            <dd>Signature</dd>
            <dt>Expected properties</dt>
            <dd>verificationMethod, proofValue</dd>
            <dt>Signature Properties</dt>
            <dd>
              <dl>
                <dt>Default Canonicalization Algorithm</dt>
                <dd>
<a rel="canonicalizationAlgorithm"
  href="https://w3id.org/rdf#URDNA2015">
https://w3id.org/rdf#URDNA2015</a>
                </dd>
                <dt>Default Signature Algorithm</dt>
                <dd>
<a rel="signatureAlgorithm"
  href="https://mattrglobal.github.io/bbs-signatures-spec/#name-blindmessagesproofgen">
  https://mattrglobal.github.io/bbs-signatures-spec/#name-blindmessagesproofgen</a>
                </dd>
              </dl>
            </dd>
          </dl>
        </ul>
        <p>
A Bbs signature proof is a cryptographic digital proof of knowledge derived from a Bbs signature
that works with any pairing friendly elliptic curve, a BbsBls signature proof is one that uses
keys from the BLS12-381 curve:
        </p>
          <p>
The example below shows how a basic JSON-LD proof is expressed in a
JSON-LD snippet. Note that the proof property is directly embedded in the
object. The signature algorithm specifies how the proof can be generated
and verified.
          </p>
          <pre class="example prettyprint language-jsonld">
{
  "@context": ["https://w3id.org/security/v1", "http://json-ld.org/contexts/person.jsonld"]
  "@type": "Person",
  "name": "Dave Longley",
  "homepage": "https://w3id.org/people/dave",
  "proof": {
    "type": "BbsBlsSignature2020",
    "verificationMethod": "https://w3id.org/people/dave/keys/2",
    "created": "2016-11-05T03:12:54Z",
    "proofPurpose": "assertionMethod",
    "proofValue": "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"
  }
}
          </pre>
      </section>

      <section id="Bls12381G1Key2020" about="https://w3id.org/security#Bls12381G1Key2020"
      typeof="rdfs:Class">
        <h3>Bls12381G1Key2020</h3>
        <p>
          This class represents a linked data signature key. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#ed25519">eddsa-ed25519</a>.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Expected properties</dt>
            <dd>id, type, controller, publicKeyBase58</dd>
          </dl>
          <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:489398593#test",
  "type": "Bls12381G1Key2020",
  "controller": "did:example:489398593",
  "publicKeyBase58": "4N9Kg9BxmDXtf2QgRH2j1UfFAcQAmgu9Xpwe2fLbSNQHPQHBK5dHrQfFvexvux"
}
          </pre>
      </section>

      <section id="Bls12381G2Key2020" about="https://w3id.org/security#Bls12381G2Key2020"
      typeof="rdfs:Class">
        <h3>Bls12381G2Key2020</h3>
        <p>
          This class represents a linked data signature key. See <a href="https://w3c-ccg.github.io/ld-cryptosuite-registry/#ed25519">eddsa-ed25519</a>.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">unstable</dd>
            <dt>Expected properties</dt>
            <dd>id, type, controller, publicKeyBase58</dd>
          </dl>
          <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:489398593#test",
  "type": "Bls12381G2Key2020",
  "controller": "did:example:489398593",
  "publicKeyBase58": "oqpWYKaZD9M1Kbe94BVXpr8WTdFBNZyKv48cziTiQUeuhm7sBhCABMyYG4kcMrseC68YTFFgyhiNeBKjzdKk9MiRWuLv5H4FFujQsQK2KTAtzU8qTBiZqBHMmnLF4PL7Ytu"
}
          </pre>
      </section>


      <section id="Key" about="https://w3id.org/security#Key"
        typeof="rdfs:Class">
        <h3>Key</h3>
          <p>
This class represents a cryptographic key that may be used for encryption,
decryption, or digitally signing data.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Expected properties</dt>
            <dd>controller, privateKeyPem, publicKeyPem</dd>
          </dl>
        <p>
The example below describes a cryptographic key that contains both the
public and private key as well as the controller of the key. The controller property
is described in the <a href="https://w3id.org/commerce">Commerce Vocabulary</a>.
        </p>
<pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/i/bob/keys/1",
  "@type": "Key",
  "controller": "https://payswarm.example.com/i/bob",
  "privateKeyPem": "-----BEGIN PRIVATE KEY-----\nMIIBG0BA...OClDQAB\n-----END PRIVATE KEY-----\n",
  "publicKeyPem": "-----BEGIN PUBLIC KEY-----\nMII8YbF3s8q3c...j8Fk88FsRa3K\n-----END PUBLIC KEY-----\n"
}
</pre>
      </section>

      <section id="Signature" about="https://w3id.org/security#Signature"
        typeof="rdfs:Class">
        <h3>Signature</h3>
          <p>
This class represents a digital signature on serialized data. It is an abstract
class and should not be used other than for Semantic Web reasoning purposes,
such as by a reasoning agent.
          </p>
          <dl>
            <dt>Status</dt>
            <dd property="vs:term_status">stable</dd>
            <dt>Properties</dt>
            <dd>none</dd>
          </dl>
          <p class="note">
A Signature class MUST NOT be used as an RDF type. It should instead be used
as the base class for all signature classes. A signature sub-class SHOULD
express at least three signature algorithm properties:
canonicalizationAlgorithm, digestAlgorithm, and signatureAlgorithm.
          </p>
      </section>

    </section>

    <section>
      <h2>Properties</h2>

      <section id="cipherAlgorithm" about="https://w3id.org/security#cipherAlgorithm"
        typeof="rdf:Property">
        <h3>cipherAlgorithm</h3>
        <p>
The cipher algorithm describes the mechanism used to encrypt a message. It is
typically a string expressing the cipher suite, the strength of the cipher,
and a block cipher mode.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
The example below expresses a message that has been encrypted using an
<a href="http://en.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a>
cipher in
<a href="http://en.wikipedia.org/wiki/GCM_mode">Galois/Counter Mode</a> and a
128-bit key (AES-128 GCM). The key has been encrypted using an RSA public key.
The encrypted message, <code>cipherData</code>, and encrypted key,
<code>cipherKey</code> are both base64-encoded. To decrypt the message, first
the <code>cipherKey</code> must be decrypted using the private key associated
with the <code>publicKey</code>. Then, the <code>cipherData</code> can be
decrypted using the decrypted <code>cipherKey</code>,
<code>cipherAlgorithm</code>, <code>initializationVector</code>, and
<code>authenticationTag</code>.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@type": "EncryptedMessage",
  "cipherData": "VTJGc2RHVmtYMThOY3h2dnNVN290Zks1dmxWc3labi9sYkU0TGloRTdxY0dpblE4OHgrUXFNNi9l\n↩
a1JMWjdXOApRSGtrbzh6UG5XOFo3WWI4djJBUG1abnlRNW5CVGViWkRGdklpMEliczNWSzRQTGdB\n↩
UFhxYTR2aWFtemwrWGV3Cmw0eFF4ancvOW85dTlEckNURjMrMDBKMVFubGdtci9abkFRSmc5UjdV\n↩
Rk55ckpYalIxZUJuKytaQ0luUTF2cUwKcm5vcDU1eWk3RFVqVnMrRXZZSkx6RVF1VlBVQ0xxdXR4\n↩
L3lvTWd4bkdhSksxOG5ZakdiekJxSGxOYm9pVStUNwpwOTJ1Q0Y0Q2RiR1NqL0U3OUp4Vmh6OXQr\n↩
Mjc2a1V3RUlNY3o2Z3FadXZMU004KzRtWkZiakh6K2N5a1VVQ2xHCi9RcTk3b2o3N2UrYXlhZjhS\n↩
ZmtEZzlUeWk3Q2szREhSblprcy9WWDJWUGhUOEJ5c3RiYndnMnN4eWc5TXhkbHoKUkVESzFvR0FJ\n↩
UDZVQ09NeWJLTGpBUm0zMTRmcWtXSFdDY29mWFNzSGNPRmM2cnp1Wko0RnVWTFNQMGROUkFRRgpB\n↩
bFQ0QUpPbzRBZHpIb2hpTy8vVGhNOTl1U1ZER1NPQ3graFAvY3V4dGNGUFBSRzNrZS8vUk1MVFZO\n↩
YVBlaUp2Ckg4L1ZWUVU4L3dLZUEyeTQ1TzQ2K2lYTnZsOGErbGg0NjRUS3RabktFb009Cg==",
  "cipherKey": "uATtey0c4nvZIsDIfpFffuCyMYGPKRLIVJCsvedE013SpEJ+1uO7x6SK9hIG9zLWRlPpwmbar2bt\n↩
gTX5NBzYC5+c5ZkXtM1O8REwIJ7wmtLdumRYEbr/TghFl3pAgXhv0mVt8XZ+KLWlxMqXnrT+ByNw\n↩
z7u3IxpqNVcXHExjXQE=",
  "cipherAlgorithm": "aes-128-gcm",
  "authenticationTag": "q25H1CzsE731OmeyEle93w==",
  "initializationVector": "vcDU1eWTy8vVGhNOszREhSblFVqVnGpBUm0zMTRmcWtMrRX=="
  "publicKey": "https://example.com/people/john/keys/23"
}
        </pre>
      </section>

      <section id="cipherData" about="https://w3id.org/security#cipherData"
        typeof="rdf:Property">
        <h3>cipherData</h3>
        <p>
Cipher data an opaque blob of information that is used to specify an encrypted
message.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
The example below expresses a message that has been encrypted using an
<a href="http://en.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a>
cipher in
<a href="http://en.wikipedia.org/wiki/GCM_mode">Galois/Counter Mode</a> and a
128-bit key (AES-128 GCM). The key has been encrypted using an RSA public key.
The encrypted message, <code>cipherData</code>, and encrypted key,
<code>cipherKey</code> are both base64-encoded. To decrypt the message, first
the <code>cipherKey</code> must be decrypted using the private key associated
with the <code>publicKey</code>. Then, the <code>cipherData</code> can be
decrypted using the decrypted <code>cipherKey</code>,
<code>cipherAlgorithm</code>, <code>initializationVector</code>, and
<code>authenticationTag</code>.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@type": "EncryptedMessage",
  "cipherData": "VTJGc2RHVmtYMThOY3h2dnNVN290Zks1dmxWc3labi9sYkU0TGloRTdxY0dpblE4OHgrUXFNNi9l\n↩
a1JMWjdXOApRSGtrbzh6UG5XOFo3WWI4djJBUG1abnlRNW5CVGViWkRGdklpMEliczNWSzRQTGdB\n↩
UFhxYTR2aWFtemwrWGV3Cmw0eFF4ancvOW85dTlEckNURjMrMDBKMVFubGdtci9abkFRSmc5UjdV\n↩
Rk55ckpYalIxZUJuKytaQ0luUTF2cUwKcm5vcDU1eWk3RFVqVnMrRXZZSkx6RVF1VlBVQ0xxdXR4\n↩
L3lvTWd4bkdhSksxOG5ZakdiekJxSGxOYm9pVStUNwpwOTJ1Q0Y0Q2RiR1NqL0U3OUp4Vmh6OXQr\n↩
Mjc2a1V3RUlNY3o2Z3FadXZMU004KzRtWkZiakh6K2N5a1VVQ2xHCi9RcTk3b2o3N2UrYXlhZjhS\n↩
ZmtEZzlUeWk3Q2szREhSblprcy9WWDJWUGhUOEJ5c3RiYndnMnN4eWc5TXhkbHoKUkVESzFvR0FJ\n↩
UDZVQ09NeWJLTGpBUm0zMTRmcWtXSFdDY29mWFNzSGNPRmM2cnp1Wko0RnVWTFNQMGROUkFRRgpB\n↩
bFQ0QUpPbzRBZHpIb2hpTy8vVGhNOTl1U1ZER1NPQ3graFAvY3V4dGNGUFBSRzNrZS8vUk1MVFZO\n↩
YVBlaUp2Ckg4L1ZWUVU4L3dLZUEyeTQ1TzQ2K2lYTnZsOGErbGg0NjRUS3RabktFb009Cg==",
  "cipherKey": "uATtey0c4nvZIsDIfpFffuCyMYGPKRLIVJCsvedE013SpEJ+1uO7x6SK9hIG9zLWRlPpwmbar2bt\n↩
gTX5NBzYC5+c5ZkXtM1O8REwIJ7wmtLdumRYEbr/TghFl3pAgXhv0mVt8XZ+KLWlxMqXnrT+ByNw\n↩
z7u3IxpqNVcXHExjXQE=",
  "cipherAlgorithm": "aes-128-gcm",
  "authenticationTag": "q25H1CzsE731OmeyEle93w==",
  "initializationVector": "vcDU1eWTy8vVGhNOszREhSblFVqVnGpBUm0zMTRmcWtMrRX=="
  "publicKey": "https://example.com/people/john/keys/23"
}
        </pre>
      </section>
      <section id="digestAlgorithm" about="https://w3id.org/security#digestAlgorithm"
        typeof="rdf:Property">
        <h3>digestAlgorithm</h3>
        <p>
The digest algorithm is used to specify the cryptographic function to use when
generating the data to be digitally signed. Typically, data that is to be signed
goes through three steps: 1) canonicalization, 2) digest, and 3) signature.
This property is used to specify the algorithm that should be used for step #2.
A signature class typically specifies a default digest method, so this
property is typically used to specify information for a signature algorithm.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>IRI, xsd:string</dd>
        </dl>
        <p>
The following example shows how the digest algorithm can be specified for
a particular signature type:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://w3id.org/security#GraphSignature2012",
  "@type": "Signature",
  "canonicalizationAlgorithm": "https://w3id.org/jsonld#UGNA2012",
  "digestAlgorithm": "http://example.com/digests#sha512",
  "signatureAlgorithm": "http://www.w3.org/2000/09/xmldsig#rsa-sha1",
}
        </pre>
      </section>

      <section id="digestValue" about="https://w3id.org/security#digestValue"
        typeof="rdf:Property">
        <h3>digestValue</h3>
        <p>
The digest value is used to express the output of the digest algorithm
expressed in Base-16 (hexadecimal) format.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Domain</dt>
          <dd>Digest</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
The following example shows how the output of the digest algorithm can be
encoded in JSON-LD:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": [
    "https://w3id.org/security/v1",
    {
      "dc": "https://w3id.org/dc/terms/",
      "foaf": "http://xmlns.com/foaf/0.1/"
    }
  ],
  "@id": "http://example.com/logo.jpg",
  "@type": "foaf:Image",
  "dc:title": "Example Logo",
  "digest":
  {
    "@type": "Digest",
    "digestAlgorithm": "http://www.w3.org/2000/09/xmldsig#sha1",
    "digestValue": "981ec496092bf6ea18d6251d36068b52b633268b"
  }
}
        </pre>
      </section>

      <section id="cipherKey" about="https://w3id.org/security#cipherKey"
        typeof="rdf:Property">
        <h3>cipherKey</h3>
        <p>
A cipher key is a symmetric key that is used to encrypt or decrypt a piece of
information. The key itself may be expressed in clear text or encrypted.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
The example below expresses a message that has been encrypted using an
<a href="http://en.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a>
cipher in
<a href="http://en.wikipedia.org/wiki/GCM_mode">Galois/Counter Mode</a> and a
128-bit key (AES-128 GCM). The key has been encrypted using an RSA public key.
The encrypted message, <code>cipherData</code>, and encrypted key,
<code>cipherKey</code> are both base64-encoded. To decrypt the message, first
the <code>cipherKey</code> must be decrypted using the private key associated
with the <code>publicKey</code>. Then, the <code>cipherData</code> can be
decrypted using the decrypted <code>cipherKey</code>,
<code>cipherAlgorithm</code>, <code>initializationVector</code>, and
<code>authenticationTag</code>.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@type": "EncryptedMessage",
  "cipherData": "VTJGc2RHVmtYMThOY3h2dnNVN290Zks1dmxWc3labi9sYkU0TGloRTdxY0dpblE4OHgrUXFNNi9l\n↩
a1JMWjdXOApRSGtrbzh6UG5XOFo3WWI4djJBUG1abnlRNW5CVGViWkRGdklpMEliczNWSzRQTGdB\n↩
UFhxYTR2aWFtemwrWGV3Cmw0eFF4ancvOW85dTlEckNURjMrMDBKMVFubGdtci9abkFRSmc5UjdV\n↩
Rk55ckpYalIxZUJuKytaQ0luUTF2cUwKcm5vcDU1eWk3RFVqVnMrRXZZSkx6RVF1VlBVQ0xxdXR4\n↩
L3lvTWd4bkdhSksxOG5ZakdiekJxSGxOYm9pVStUNwpwOTJ1Q0Y0Q2RiR1NqL0U3OUp4Vmh6OXQr\n↩
Mjc2a1V3RUlNY3o2Z3FadXZMU004KzRtWkZiakh6K2N5a1VVQ2xHCi9RcTk3b2o3N2UrYXlhZjhS\n↩
ZmtEZzlUeWk3Q2szREhSblprcy9WWDJWUGhUOEJ5c3RiYndnMnN4eWc5TXhkbHoKUkVESzFvR0FJ\n↩
UDZVQ09NeWJLTGpBUm0zMTRmcWtXSFdDY29mWFNzSGNPRmM2cnp1Wko0RnVWTFNQMGROUkFRRgpB\n↩
bFQ0QUpPbzRBZHpIb2hpTy8vVGhNOTl1U1ZER1NPQ3graFAvY3V4dGNGUFBSRzNrZS8vUk1MVFZO\n↩
YVBlaUp2Ckg4L1ZWUVU4L3dLZUEyeTQ1TzQ2K2lYTnZsOGErbGg0NjRUS3RabktFb009Cg==",
  "cipherKey": "uATtey0c4nvZIsDIfpFffuCyMYGPKRLIVJCsvedE013SpEJ+1uO7x6SK9hIG9zLWRlPpwmbar2bt\n↩
gTX5NBzYC5+c5ZkXtM1O8REwIJ7wmtLdumRYEbr/TghFl3pAgXhv0mVt8XZ+KLWlxMqXnrT+ByNw\n↩
z7u3IxpqNVcXHExjXQE=",
  "cipherAlgorithm": "aes-128-gcm",
  "authenticationTag": "q25H1CzsE731OmeyEle93w==",
  "initializationVector": "vcDU1eWTy8vVGhNOszREhSblFVqVnGpBUm0zMTRmcWtMrRX=="
  "publicKey": "https://example.com/people/john/keys/23"
}
        </pre>
      </section>

      <section id="blockchainAccountId" about="https://w3id.org/security#blockchainAccountId"
      typeof="rdf:Property">
        <h3>blockchainAccountId</h3>
        <p>
A <code>blockchainAccountId</code> property is used to specify a blockchain account identifier, as per the
<a href="https://github.com/ChainAgnostic/CAIPs/blob/master/CAIPs/caip-10.md">CAIP-10 Account ID Specification</a>.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">unstable</dd>
          <dt>Domain</dt>
          <dd>Key</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
    The following example demonstrates the expression of a Mainnet Ethereum address.
        </p>
        <pre class="example prettyprint language-jsonld">
{
    "id": "did:example:123#blockchainAccountId",
    "type": "EcdsaSecp256k1RecoverySignature2020",
    "blockchainAccountId":"eip155:1:0xab16a96d359ec26a11e2c2b3d8f8b8942d5bfcdb"
}
        </pre>

        <p>
          The following example demonstrates the expression of a Mainnet Bitcoin address.
              </p>
       <pre class="example prettyprint language-jsonld">
      {
          "id": "did:example:123#blockchainAccountId",
          "type": "EcdsaSecp256k1RecoverySignature2020",
          "blockchainAccountId":"bip122:000000000019d6689c085ae165831e93:128Lkh3S7CkDTBZ8W7BbpsN3YYizJMp8p6"
      }
       </pre>

       <p>
        The following example demonstrates the expression of a Cosmos address.
            </p>
     <pre class="example prettyprint language-jsonld">
    {
        "id": "did:example:123#blockchainAccountId",
        "type": "EcdsaSecp256k1RecoverySignature2020",
        "blockchainAccountId":"cosmos:cosmos:1t2uflqwqe0fsj0shcfkrvpukewcw40yjj6hdc0"
    }
     </pre>
      </section>

      <section id="ethereumAddress" about="https://w3id.org/security#ethereumAddress"
      typeof="rdf:Property">
        <h3>ethereumAddress</h3>
        <p>
An <code>ethereumAddress</code> property is used to specify the Ethereum address (as per the
<a href="https://ethereum.github.io/yellowpaper/paper.pdf">Ethereum Yellow Paper: ETHEREUM: A SECURE DECENTRALISED
GENERALISED TRANSACTION LEDGER</a> composed of the prefix "0x", a common identifier for hexadecimal, concatenated
with the rightmost 20 bytes of the Keccak-256 hash (big endian) of the ECDSA public key (the curve used is the
so-called secp256k1). In hexadecimal, 2 digits represent a byte, meaning addresses contain 40 hexadecimal digits.
The Ethereum address should also contain a checksum as per <a href="https://eips.ethereum.org/EIPS/eip-55">EIP-55</a>
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">unstable</dd>
          <dt>Domain</dt>
          <dd>Key</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
    The following example demonstrates the expression of an Ethereum address in hex format.
        </p>
        <pre class="example prettyprint language-jsonld">
{
    "id": "did:example:123#ethereumAddress",
    "type": "EcdsaSecp256k1RecoverySignature2020",
    "ethereumAddress":"0xb794f5ea0ba39494ce839613fffba74279579268"
}
        </pre>
      </section>

      <section id="expires" about="https://w3id.org/security#expires"
        typeof="rdf:Property">
        <h3>expires</h3>
        <p>
The expiration time is typically associated with a <a href="#Key">Key</a> and
specifies when the validity of the key will expire. It is considered a best
practice to only create keys that have very definite expiration periods. This
period is typically set to between six months and two years. An digital
signature created using an expired key MUST be marked as invalid by any
software attempting to verify the signature.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>xsd:dateTime</dd>
        </dl>
        <p>
The following example shows a key that was created on January 3rd 2012 and
that expires on January 3rd 2014:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/i/bob/keys/1",
  "@type": "Key",
  "created": "2012-01-03T14:34:57+0000",
  "expires": "2014-01-03T14:34:57+0000",
  "controller": "https://payswarm.example.com/i/bob",
  "publicKeyPem": "-----BEGIN PUBLIC KEY-----\nMII8YbF3s8q3c...j8Fk88FsRa3K\n-----END PUBLIC KEY-----\n"
}
        </pre>
      </section>

      <section id="initializationVector"
        about="https://w3id.org/security#initializationVector"
        typeof="rdf:Property">
        <h3>initializationVector</h3>
        <p>
The <em>initialization vector</em> (IV) is a byte stream that is typically
used to initialize certain block cipher encryption schemes. For a receiving
application to be able to decrypt a message, it must know the decryption
key and the initialization vector. The value is typically base-64 encoded.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Domain</dt>
          <dd>EncryptedMessage</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
The example below expresses a message that has been encrypted using an
<a href="http://en.wikipedia.org/wiki/Advanced_Encryption_Standard">AES</a>
cipher in
<a href="http://en.wikipedia.org/wiki/GCM_mode">Galois/Counter Mode</a> and a
128-bit key (AES-128 GCM). The key has been encrypted using an RSA public key.
The encrypted message, <code>cipherData</code>, and encrypted key,
<code>cipherKey</code> are both base64-encoded. To decrypt the message, first
the <code>cipherKey</code> must be decrypted using the private key associated
with the <code>publicKey</code>. Then, the <code>cipherData</code> can be
decrypted using the decrypted <code>cipherKey</code>,
<code>cipherAlgorithm</code>, <code>initializationVector</code>, and
<code>authenticationTag</code>.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@type": "EncryptedMessage",
  "cipherData": "VTJGc2RHVmtYMThOY3h2dnNVN290Zks1dmxWc3labi9sYkU0TGloRTdxY0dpblE4OHgrUXFNNi9l\n↩
a1JMWjdXOApRSGtrbzh6UG5XOFo3WWI4djJBUG1abnlRNW5CVGViWkRGdklpMEliczNWSzRQTGdB\n↩
UFhxYTR2aWFtemwrWGV3Cmw0eFF4ancvOW85dTlEckNURjMrMDBKMVFubGdtci9abkFRSmc5UjdV\n↩
Rk55ckpYalIxZUJuKytaQ0luUTF2cUwKcm5vcDU1eWk3RFVqVnMrRXZZSkx6RVF1VlBVQ0xxdXR4\n↩
L3lvTWd4bkdhSksxOG5ZakdiekJxSGxOYm9pVStUNwpwOTJ1Q0Y0Q2RiR1NqL0U3OUp4Vmh6OXQr\n↩
Mjc2a1V3RUlNY3o2Z3FadXZMU004KzRtWkZiakh6K2N5a1VVQ2xHCi9RcTk3b2o3N2UrYXlhZjhS\n↩
ZmtEZzlUeWk3Q2szREhSblprcy9WWDJWUGhUOEJ5c3RiYndnMnN4eWc5TXhkbHoKUkVESzFvR0FJ\n↩
UDZVQ09NeWJLTGpBUm0zMTRmcWtXSFdDY29mWFNzSGNPRmM2cnp1Wko0RnVWTFNQMGROUkFRRgpB\n↩
bFQ0QUpPbzRBZHpIb2hpTy8vVGhNOTl1U1ZER1NPQ3graFAvY3V4dGNGUFBSRzNrZS8vUk1MVFZO\n↩
YVBlaUp2Ckg4L1ZWUVU4L3dLZUEyeTQ1TzQ2K2lYTnZsOGErbGg0NjRUS3RabktFb009Cg==",
  "cipherKey": "uATtey0c4nvZIsDIfpFffuCyMYGPKRLIVJCsvedE013SpEJ+1uO7x6SK9hIG9zLWRlPpwmbar2bt\n↩
gTX5NBzYC5+c5ZkXtM1O8REwIJ7wmtLdumRYEbr/TghFl3pAgXhv0mVt8XZ+KLWlxMqXnrT+ByNw\n↩
z7u3IxpqNVcXHExjXQE=",
  "cipherAlgorithm": "aes-128-gcm",
  "authenticationTag": "q25H1CzsE731OmeyEle93w==",
  "initializationVector": "vcDU1eWTy8vVGhNOszREhSblFVqVnGpBUm0zMTRmcWtMrRX=="
  "publicKey": "https://example.com/people/john/keys/23"
}
        </pre>
      </section>

      <section id="nonce" about="https://w3id.org/security#nonce"
        typeof="rdf:Property">
        <h3>nonce</h3>
        <p>
This property is used in conjunction with the input to the signature hashing
function in order to protect against
<a href="http://en.wikipedia.org/wiki/Replay_attack">replay attacks</a>.
Typically, receivers need to track all nonce values used within a certain time
period in order to ensure that an attacker cannot merely re-send a compromised
packet in order to execute a privileged request.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
The following example shows a fairly sensitive request that is digitally
signed with a nonce. How the nonce is used is up to the signature algorithm,
but the value is typically included as input to the signature hashing function
in order to protect against
<a href="http://en.wikipedia.org/wiki/Replay_attack">replay attacks</a>.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": [
    "https://w3id.org/security/v1",
    { "ex": "http://example.org/vocab#" }
  ],
  "@graph": {
    "ex:request": "DELETE /private/2840-credit-card-log"
  },
  "signature": {
    "@type": "GraphSignature2012",
    "creator": "http://example.com/people/john-doe#key-5",
    "nonce": "8495723045.84957",
    "signatureValue": "Q3ODIyOGQzNGVkMzVm4NTIyZ43OWM32NjITkZDYMmMzQzNmExMgoYzI="
  }
}
        </pre>
      </section>

      <section id="canonicalizationAlgorithm"
        about="https://w3id.org/security#canonicalizationAlgorithm"
        typeof="rdf:Property">
        <h3>canonicalizationAlgorithm</h3>
        <p>
The canonicalization algorithm is used to transform the input data into a form
that can be passed to a cryptographic digest method. The digest is then
digitally signed using a digital signature algorithm. Canonicalization ensures
that a piece of software that is generating a digital signature is able to do
so on the same set of information in a deterministic manner.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>IRI, xsd:string</dd>
        </dl>
        <p>
The example below shows the establishment of a new signature class, using the
three pieces of information that are typically required for a signature -
the canonicalization algorithm, the digest algorithm and the signature
algorithm:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://w3id.org/security#GraphSignature2012",
  "@type": "Signature",
  "canonicalizationAlgorithm": "https://w3id.org/jsonld#UGNA2012",
  "digestAlgorithm": "http://example.com/digests#sha512",
  "signatureAlgorithm": "http://www.w3.org/2000/09/xmldsig#rsa-sha1",
}
        </pre>
      </section>

      <section id="controller" about="https://w3id.org/security#controller"
        typeof="rdf:Property">
        <h3>controller</h3>
        <p>
A controller is an entity that claims control over a particular resource. Note
that control is best validated as a two-way relationship where the controller
claims control over a particular resource, and the resource clearly
identifies its controller.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>IRI</dd>
        </dl>
        <p>
The example below shows a cryptographic key that is owned by an entity
identified by a URL. Presumably, this key is under the control of the controller
and can be used to infer that any digitally signed content using the key was
signed by a software agent of the controller:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/i/bob/keys/1",
  "@type": "Key",
  "controller": "https://payswarm.example.com/i/bob",
  "publicKeyPem": "-----BEGIN PUBLIC KEY-----\nMII8YbF3s8q3c...j8Fk88FsRa3K\n-----END PUBLIC KEY-----\n"
}
        </pre>
      </section>

      <section id="owner" about="https://w3id.org/security#owner"
        typeof="rdf:Property">
        <h3>owner</h3>
        <p class="note" title="The owner property is deprecated.">
The `owner` property is deprecated. New cryptography suite creators
and developers are advised to use the `controller` property for
encoding public key parameters.
        </p>
        <p>
An owner is an entity that claims control over a particular resource. Note
that ownership is best validated as a two-way relationship where the owner
claims ownership over a particular resource, and the resource clearly
identifies its owner.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">deprecated</dd>
          <dt>Range</dt>
          <dd>IRI</dd>
        </dl>
        <p>
The example below shows a cryptographic key that is owned by an entity
identified by a URL. Presumably, this key is under the control of the owner
and can be used to infer that any digitally signed content using the key was
signed by a software agent of the owner:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/i/bob/keys/1",
  "@type": "Key",
  "owner": "https://payswarm.example.com/i/bob",
  "publicKeyPem": "-----BEGIN PUBLIC KEY-----\nMII8YbF3s8q3c...j8Fk88FsRa3K\n-----END PUBLIC KEY-----\n"
}
        </pre>
      </section>

      <section id="password" about="https://w3id.org/security#password"
        typeof="rdf:Property">
        <h3>password</h3>
        <p>
A secret that is used to generate a key that can be used to encrypt or decrypt
message. It is typically a string value.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
      </section>

      <section id="privateKeyPem" about="https://w3id.org/security#privateKeyPem"
        typeof="rdf:Property">
        <h3>privateKeyPem</h3>
        <p>
A private key PEM property is used to specify the
<a href="http://en.wikipedia.org/wiki/Privacy_Enhanced_Mail">PEM-encoded</a>
version of the private key. This encoding is compatible with almost every
Secure Sockets Layer library implementation and typically plugs directly into
functions intializing private keys.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Domain</dt>
          <dd>Key</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
The following example demonstrates the expression of a private key in
PEM format. The elipsis ("...") in the middle of the string denotes more data
that has been abbreviated for the sake of the readability of the example.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/i/bob/keys/1",
  "@type": "Key",
  "controller": "https://payswarm.example.com/i/bob",
  "privateKeyPem": "-----BEGIN PRIVATE KEY-----\nMIIBG0BA...OClDQAB\n-----END PRIVATE KEY-----\n"
}
        </pre>
      </section>

      <section id="verificationMethod" about="https://w3id.org/security#verificationMethod"
      typeof="rdf:Property">
        <h3>verificationMethod</h3>
        <p>
          A verificationMethod property is used to specify a URL that contains information used for proof verification.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>IRI</dd>
                  </dl>
                  <p>
          The following example demonstrates the expression of a public key verificationMethod belonging
          to the identity <code>https://payswarm.example.com/i/bob</code>.
                  </p>
                  <pre class="example prettyprint language-jsonld">
          {
            "@context": "https://w3id.org/security/v1",
            "@id": "https://payswarm.example.com/i/bob/keys/1",
            "@type": "Key",
            "controller": "https://payswarm.example.com/i/bob",
            "publicKeyPem": "-----BEGIN PUBLIC KEY-----\nMII8YbF3s8q3c...j8Fk88FsRa3K\n-----END PUBLIC KEY-----\n"
          }
                  </pre>
      </section>

      <section id="publicKey" about="https://w3id.org/security#publicKey"
        typeof="rdf:Property">
        <h3>publicKey</h3>
        <p>
A public key property is used to specify a URL that contains information about
a public key.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>IRI</dd>
        </dl>
        <p>
The following example demonstrates the expression of a public key belonging
to the identity <code>https://payswarm.example.com/i/bob</code>.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/i/bob/keys/1",
  "@type": "Key",
  "controller": "https://payswarm.example.com/i/bob",
  "publicKeyPem": "-----BEGIN PUBLIC KEY-----\nMII8YbF3s8q3c...j8Fk88FsRa3K\n-----END PUBLIC KEY-----\n"
}
        </pre>
      </section>

      <section id="assertionMethod" about="https://w3id.org/security#assertionMethod"
      typeof="rdf:Property">
        <h3>assertionMethod</h3>
        <p>
          An assertionMethod property is used to specify a URL that contains information about
          a verificationMethod used for assertions.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>IRI</dd>
                  </dl>
                  <p>
          The following example demonstrates the expression of a verificationMethod used for assertions belonging
          to the identity <code>did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q</code>.
                  </p>

        <pre class="example prettyprint language-jsonld">
{
  ...
  "publicKey": [{
    "id": "did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q",
    "type": "EcdsaSecp256k1VerificationKey2019",
    "controller": "did:example:123",
    "publicKeyJwk": {
      "crv": "secp256k1",
      "x": "NtngWpJUr-rlNNbs0u-Aa8e16OwSJu6UiFf0Rdo1oJ4",
      "y": "qN1jKupJlFsPFc1UkWinqljv4YE0mq_Ickwnjgasvmo",
      "kty": "EC",
      "kid": "WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q"
    }
  }],
  "assertionMethod": [{
    "id": "did:example:123#z6MkpzW2izkFjNwMBwwvKqmELaQcH8t54QL5xmBdJg9Xh1y4",
    "type": "Ed25519VerificationKey2018",
    "controller": "did:example:123",
    "publicKeyBase58": "BYEz8kVpPqSt5T7DeGoPVUrcTZcDeX5jGkGhUQBWmoBg"
  },
  "did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q"
  ]
}
      </pre>
      </section>

      <section id="authenticationMethod" about="https://w3id.org/security#authenticationMethod"
      typeof="rdf:Property">
        <h3>authentication (authenticationMethod)</h3>

        <p>
          An authentication property is used to specify a URL that contains information about
          a verificationMethod used for authentication.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>IRI</dd>
                  </dl>
                  <p>
          The following example demonstrates the expression of a verificationMethod used for authentication belonging
          to the identity <code>did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q</code>.
                  </p>

        <pre class="example prettyprint language-jsonld">
{
  ...
  "publicKey": [{
    "id": "did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q",
    "type": "EcdsaSecp256k1VerificationKey2019",
    "controller": "did:example:123",
    "publicKeyJwk": {
      "crv": "secp256k1",
      "x": "NtngWpJUr-rlNNbs0u-Aa8e16OwSJu6UiFf0Rdo1oJ4",
      "y": "qN1jKupJlFsPFc1UkWinqljv4YE0mq_Ickwnjgasvmo",
      "kty": "EC",
      "kid": "WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q"
    }
  }],
  "authentication": [{
    "id": "did:example:123#z6MkpzW2izkFjNwMBwwvKqmELaQcH8t54QL5xmBdJg9Xh1y4",
    "type": "Ed25519VerificationKey2018",
    "controller": "did:example:123",
    "publicKeyBase58": "BYEz8kVpPqSt5T7DeGoPVUrcTZcDeX5jGkGhUQBWmoBg"
  },
  "did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q"
  ]
}
      </pre>
      </section>

      <section id="capabilityDelegationMethod" about="https://w3id.org/security#capabilityDelegationMethod"
      typeof="rdf:Property">
        <h3>capabilityDelegation (capabilityDelegationMethod)</h3>

        <p>
A capabilityDelegation property is used to express that one or more
verificationMethods are authorized to verify cryptographic proofs
that were created for the purpose of delegating capabilities.
        </p>
        <p>
A verificationMethod may be referenced by its identifier (a URL) or expressed
in full.
        </p>
        <p>
The aforementioned proofs are created to prove that some entity is delegating
the authority to take some action to another entity. A verifier of the proof
should expect the proof to express a proofPurpose of capabilityDelegation and
reference a verificationMethod to verify it. The dereferenced
verificationMethod MUST have a controller property that has a property of
capabilityDelegation that references the verificationMethod. This indicates
that the controller has authorized it for the expressed proofPurpose.
        </p>
        <p class="note">
How capabilities are expressed is application-specific.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">unstable</dd>
          <dt>Range</dt>
          <dd>IRI</dd>
        </dl>
        <p>
The following example demonstrates the expression of a verificationMethod used for capability delegation belonging
to the identity <code>did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q</code>.
        </p>

        <pre class="example prettyprint language-jsonld">
{
  ...
  "publicKey": [{
    "id": "did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q",
    "type": "EcdsaSecp256k1VerificationKey2019",
    "controller": "did:example:123",
    "publicKeyJwk": {
      "crv": "secp256k1",
      "x": "NtngWpJUr-rlNNbs0u-Aa8e16OwSJu6UiFf0Rdo1oJ4",
      "y": "qN1jKupJlFsPFc1UkWinqljv4YE0mq_Ickwnjgasvmo",
      "kty": "EC",
      "kid": "WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q"
    }
  }],
  "capabilityDelegation": [{
    "id": "did:example:123#z6MkpzW2izkFjNwMBwwvKqmELaQcH8t54QL5xmBdJg9Xh1y4",
    "type": "Ed25519VerificationKey2018",
    "controller": "did:example:123",
    "publicKeyBase58": "BYEz8kVpPqSt5T7DeGoPVUrcTZcDeX5jGkGhUQBWmoBg"
  },
  "did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q"
  ]
}
        </pre>
      </section>

      <section id="capabilityInvocationMethod" about="https://w3id.org/security#capabilityInvocationMethod"
      typeof="rdf:Property">
        <h3>capabilityInvocation (capabilityInvocationMethod)</h3>

        <p>
A capabilityInvocation property is used to express that one or more
verificationMethods are authorized to verify cryptographic proofs
that were created for the purpose of invoking capabilities.
        </p>
        <p>
A verificationMethod MAY be referenced by its identifier (a URL) or expressed
in full.
        </p>
        <p>
The aforementioned proofs are created to prove that some entity is
attempting to exercise some authority they possess to take an action. A
verifier of the proof should expect the proof to express a proofPurpose of
capabilityInvocation and reference a verificationMethod to verify it. The
dereferenced verificationMethod MUST have a controller property that, when
dereferenced, has a property of capabilityInvocation that references the
verificationMethod. This indicates that the controller has authorized it for
the expressed proofPurpose.
        </p>
        <p class="note">
How capabilities are expressed is application-specific.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">unstable</dd>
          <dt>Range</dt>
          <dd>IRI</dd>
        </dl>
        <p>
The following example demonstrates the expression of a verificationMethod used for capability invocation belonging
to the identity <code>did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q</code>.
        </p>

        <pre class="example prettyprint language-jsonld">
{
  ...
  "publicKey": [{
    "id": "did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q",
    "type": "EcdsaSecp256k1VerificationKey2019",
    "controller": "did:example:123",
    "publicKeyJwk": {
      "crv": "secp256k1",
      "x": "NtngWpJUr-rlNNbs0u-Aa8e16OwSJu6UiFf0Rdo1oJ4",
      "y": "qN1jKupJlFsPFc1UkWinqljv4YE0mq_Ickwnjgasvmo",
      "kty": "EC",
      "kid": "WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q"
    }
  }],
  "capabilityInvocation": [{
    "id": "did:example:123#z6MkpzW2izkFjNwMBwwvKqmELaQcH8t54QL5xmBdJg9Xh1y4",
    "type": "Ed25519VerificationKey2018",
    "controller": "did:example:123",
    "publicKeyBase58": "BYEz8kVpPqSt5T7DeGoPVUrcTZcDeX5jGkGhUQBWmoBg"
  },
  "did:example:123#WjKgJV7VRw3hmgU6--4v15c0Aewbcvat1BsRFTIqa5Q"
  ]
}
        </pre>
      </section>

      <section id="keyAgreementMethod" about="https://w3id.org/security#keyAgreementMethod"
      typeof="rdf:Property">
        <h3>keyAgreement (keyAgreementMethod)</h3>

        <p>
          An keyAgreement property is used to specify a URL that contains information about
          a verificationMethod used for key agreement.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>IRI</dd>
                  </dl>
                  <p>
          The following example demonstrates the expression of a verificationMethod used for key agreement belonging
          to the identity <code>did:example:123#zC9ByQ8aJs8vrNXyDhPHHNNMSHPcaSgNpjjsBYpMMjsTdS</code>.
                  </p>

        <pre class="example prettyprint language-jsonld">
{
  ...
  "keyAgreement": [
    {
      "id": "did:example:123#zC9ByQ8aJs8vrNXyDhPHHNNMSHPcaSgNpjjsBYpMMjsTdS",
      "type": "X25519KeyAgreementKey2019",
      "controller": "did:example:123",
      "publicKeyBase58": "9hFgmPVfmBZwRvFEyniQDBkz9LmV7gDEqytWyGZLmDXE"
    }
  ]
}
      </pre>
      </section>

      <section id="publicKeyBase58" about="https://w3id.org/security#publicKeyBase58"
      typeof="rdf:Property">
        <h3>publicKeyBase58</h3>
        <p class="note" title="The publicKeyBase58 property is deprecated.">
The `publicKeyBase58` property is deprecated. New cryptography suite creators
and developers are advised to use the `publicKeyMultibase` property for
encoding public key parameters.
        </p>
        <p>
          A public key Base58 property is used to specify the base58-encoded version of the
          public key.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Domain</dt>
                    <dd>Key</dd>
                    <dt>Range</dt>
                    <dd>xsd:string</dd>
                  </dl>
                  <p>
          The following example demonstrates the expression of a public key
          in base58 format.
                  </p>
                  <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:123#ZC2jXTO6t4R501bfCXv3RxarZyUbdP2w_psLwMuY6ec",
  "type": "Ed25519VerificationKey2018",
  "controller": "did:example:123",
  "publicKeyBase58": "H3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV"
}
                  </pre>

      </section>


      <section id="publicKeyJwk" about="https://w3id.org/security#publicKeyJwk"
        typeof="rdf:Property">
        <h3>publicKeyJwk</h3>
        <p>
        See <a href="https://www.iana.org/assignments/jose/jose.xhtml">IANA JOSE</a>.
        See also <a href="https://tools.ietf.org/html/rfc7517">RFC 7517</a>.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Domain</dt>
          <dd>Key</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>

        <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:123#_Qq0UL2Fq651Q0Fjd6TvnYE-faHiOpRlPVQcY_-tA4A",
  "type": "JsonWebKey2020",
  "controller": "did:example:123",
  "publicKeyJwk": {
    "crv": "Ed25519",
    "x": "VCpo2LMLhn6iWku8MKvSLg2ZAoC-nlOyPVQaO3FxVeQ",
    "kty": "OKP",
    "kid": "_Qq0UL2Fq651Q0Fjd6TvnYE-faHiOpRlPVQcY_-tA4A"
  }
}
        </pre>
      </section>


      <section id="publicKeyPem" about="https://w3id.org/security#publicKeyPem"
        typeof="rdf:Property">
        <h3>publicKeyPem</h3>
        <p>
A public key PEM property is used to specify the PEM-encoded version of the
public key. This encoding is compatible with almost every Secure Sockets Layer
library implementation and typically plugs directly into functions intializing
public keys.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Domain</dt>
          <dd>Key</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
The following example demonstrates the expression of a public key
in PEM format. The elipsis ("...") in the middle of the string denotes more
data that has been abbreviated for the sake of the readability of the example.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/i/bob/keys/1",
  "controller": "https://payswarm.example.com/i/bob",
  "publicKeyPem": "-----BEGIN PUBLIC KEY-----\nMII8YbF3s8q3c...j8Fk88FsRa3K\n-----END PUBLIC KEY-----\n"
}
        </pre>
      </section>

      <section id="publicKeyHex" about="https://w3id.org/security#publicKeyHex"
      typeof="rdf:Property">
        <h3>publicKeyHex</h3>
        <p class="note" title="The publicKeyHex property is deprecated.">
The `publicKeyHex` property is deprecated. New cryptography suite creators
and developers are advised to use the `publicKeyMultibase` property for encoding
public key parameters.
        </p>
        <p>
A <code>publicKeyHex</code> property is used to specify the hex-encoded version of the public key, based on <a href="https://tools.ietf.org/html/rfc4648#section-8">section 8 of rfc4648</a>. Hex encoding is also known as Base16 encoding.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">unstable</dd>
          <dt>Domain</dt>
          <dd>Key</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
    The following example demonstrates the expression of a public key
    in hex format.
        </p>
        <pre class="example prettyprint language-jsonld">
{
    "id": "did:example:123#hexKey",
    "controller": "did:example:123",
    "type": "EcdsaSecp256k1RecoveryMethod2020",
    "publicKeyHex":"027560AF3387D375E3342A6968179EF3C6D04F5D33B2B611CF326D4708BADD7770"
}
        </pre>
      </section>

      <section id="publicKeyMultibase" about="https://w3id.org/security#publicKeyMultibase"
      typeof="rdf:Property">
        <h3>publicKeyMultibase</h3>
        <p>
The public key multibase [[MULTIBASE]] property is used to specify the
multibase-encoded version of a public key. The contents of the property
are defined by specifications such as [[ED25519-2020]] and listed in the
Linked Data Cryptosuite Registry [[LD-CRYPTOSUITE-REGISTRY]]. Most public key
type definitions are expected to:
        </p>

        <ul>
          <li>
Specify only a single encoding base per public key type as it reduces
implementation burden and increases the chances of reaching broad
interoperability.
          </li>
          <li>
Specify a multicodec [[MULTICODEC]] header on the encoded public key to aid
encoding and decoding applications in confirming that they are serializing and
deserializing an expected public key type.
          </li>
          <li>
Use compressed binary formats to ensure efficient key sizes.
          </li>
        </ul>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Domain</dt>
                    <dd>Key</dd>
                    <dt>Range</dt>
                    <dd>xsd:string</dd>
                  </dl>
                  <p>
          The following example demonstrates the expression of a public key
          in multibase format.
                  </p>
                  <pre class="example prettyprint language-jsonld">
{
  "id": "did:example:123#zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV",
  "type": "Ed25519VerificationKey2020",
  "controller": "did:example:123",
  "publicKeyMultibase": "zH3C2AVvLMv6gmMNam3uVAjZpfkcJCwDwnZn6z3wXmqPV"
}
                  </pre>

      </section>

      <section id="publicKeyService" about="https://w3id.org/security#publicKeyService"
        typeof="rdf:Property">
        <h3>publicKeyService</h3>
        <p>
The publicKeyService property is used to express the REST URL that provides
public key management services.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">unstable</dd>
          <dt>Range</dt>
          <dd>URL</dd>
        </dl>
        <p>
The following example shows how a website can publish the location of a
public keys service via the .well-known file. The publicKeyService can be found
at the <code>https://payswarm.example.com/public-keys</code> URL.
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/.well-known/services",
  "publicKeyService": "https://payswarm.example.com/public-keys"
}
        </pre>
      </section>

      <section id="revoked" about="https://w3id.org/security#revoked"
        typeof="rdf:Property">
        <h3>revoked</h3>
        <p>
The revocation time is typically associated with a <a href="#Key">Key</a> that
has been marked as invalid as of the date and time associated with the
property. Key revocations are often used when a key is compromised, such as
the theft of the private key, or during the course of best-practice key
rotation schedules.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>xsd:dateTime</dd>
        </dl>
        <p>
The following example shows a key that was created on January 3rd 2012 and
revoked on May 5th 2012:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://payswarm.example.com/i/bob/keys/1",
  "@type": "Key",
  "created": "2012-01-03T14:34:57+0000",
  "revoked": "2012-05-01T18:11:19+0000",
  "controller": "https://payswarm.example.com/i/bob",
  "publicKeyPem": "-----BEGIN PUBLIC KEY-----\nMII8YbF3s8q3c...j8Fk88FsRa3K\n-----END PUBLIC KEY-----\n"
}
        </pre>
      </section>

      <section id="proof" about="https://w3id.org/security#proof"
      typeof="rdf:Property">
        <h3>proof</h3>
        <p>
          The proof property is used to associate a proof with a graph of
          information. The proof property is typically not included
          in the canonicalized graph that is then digested, and digitally signed.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof on the graph identified by
          the subject <code>http://example.com/people#jane</code> is expressed using
          a JSON-LD proof:
                  </p>
                  <pre class="example prettyprint language-jsonld">
          {
            "@context": [
              "https://w3id.org/security/v1",
              { "foaf": "http://xmlns.com/foaf/0.1/" }
            ]
            "@graph": {
              "@id": "http://example.com/people#jane",
              "@type": "foaf:Person",
              "foaf:name": "Jane Doe",
              "foaf:homepage": "http://example.org/jane"
            },
            "proof": {
              "type": "Ed25519Signature2018",
              "created": "2020-04-03T18:03:33Z",
              "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..ktzmVCTovhKWKxnMwDtMnmpUAUF1n7sqbdNmOV0TkxCTb2eHATO6iP7wqjyl_CMehHKnqgW6t9SW4q9TdbCxAg",
              "proofPurpose": "assertionMethod",
              "verificationMethod": "did:key:z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y#z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y"
            }
          }
                  </pre>
      </section>

      <section id="jws" about="https://w3id.org/security#jws"
      typeof="rdf:Property">
        <h3>jws</h3>
        <p>
          The jws property is used to associate a <a href="https://tools.ietf.org/html/rfc7797">Detached Json Web Signature</a> with a proof.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof expressed using
          a JSON-LD proof with detached jws:
                  </p>
                  <pre class="example prettyprint language-jsonld">
          {
            ...
            "proof": {
              "type": "Ed25519Signature2018",
              "created": "2020-04-03T18:03:33Z",
              "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..ktzmVCTovhKWKxnMwDtMnmpUAUF1n7sqbdNmOV0TkxCTb2eHATO6iP7wqjyl_CMehHKnqgW6t9SW4q9TdbCxAg",
              "proofPurpose": "assertionMethod",
              "verificationMethod": "did:key:z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y#z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y"
            }
          }
                  </pre>
      </section>

      <section id="proofPurpose" about="https://w3id.org/security#proofPurpose"
      typeof="rdf:Property">
        <h3>proofPurpose</h3>
        <p>
          The proofPurpose property is used to associate a purpose, such as <code>assertionMethod</code> or <code>authentication</code> with a proof.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof is expressed using
          a JSON-LD proof with <code>assertionMethod</code>:
                  </p>
                  <pre class="example prettyprint language-jsonld">
          {
            ...
            "proof": {
              "type": "Ed25519Signature2018",
              "created": "2020-04-03T18:03:33Z",
              "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..ktzmVCTovhKWKxnMwDtMnmpUAUF1n7sqbdNmOV0TkxCTb2eHATO6iP7wqjyl_CMehHKnqgW6t9SW4q9TdbCxAg",
              "proofPurpose": "assertionMethod",
              "verificationMethod": "did:key:z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y#z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y"
            }
          }
                  </pre>
      </section>

      <section id="challenge" about="https://w3id.org/security#challenge"
      typeof="rdf:Property">
        <h3>challenge</h3>
        <p>
          The challenge property is used to associate a challenge with a proof, for use with a proofPurpose such as <code>authentication</code>.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof is expressed using
          a JSON-LD proof with purpose <code>authentication</code> and <code>challenge</code>:
                  </p>
                  <pre class="example prettyprint language-jsonld">
{
  "@context": "https://www.w3.org/2018/credentials/v1",
  "type": "VerifiablePresentation",
  "holder": "did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
  "proof": {
    "type": "Ed25519Signature2018",
    "created": "2020-04-02T18:21:44Z",
    "verificationMethod": "did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd#z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
    "proofPurpose": "authentication",
    "challenge": "99612b24-63d9-11ea-b99f-4f66f3e4f81a",
    "domain": "issuer.interop.transmute.world",
    "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..2xjpkHW6EY-cKD8DrMIkkiB2Q_k6kHynTbR7XGgtYR92blQWpL6Q-2nTdQi1rNhJtmHw1wWWssKMO0EdIEnsCw"
  }
}
                  </pre>
      </section>

      <section id="domain" about="https://w3id.org/security#domain"
      typeof="rdf:Property">
        <h3>domain</h3>
        <p>
          The domain property is used to associate a domain with a proof, for use with a proofPurpose such as <code>authentication</code>.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof is expressed using
          a JSON-LD proof with purpose <code>authentication</code> and <code>domain</code>:
                  </p>
                  <pre class="example prettyprint language-jsonld">
{
  "@context": "https://www.w3.org/2018/credentials/v1",
  "type": "VerifiablePresentation",
  "holder": "did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
  "proof": {
    "type": "Ed25519Signature2018",
    "created": "2020-04-02T18:21:44Z",
    "verificationMethod": "did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd#z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
    "proofPurpose": "authentication",
    "challenge": "99612b24-63d9-11ea-b99f-4f66f3e4f81a",
    "domain": "issuer.interop.transmute.world",
    "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..2xjpkHW6EY-cKD8DrMIkkiB2Q_k6kHynTbR7XGgtYR92blQWpL6Q-2nTdQi1rNhJtmHw1wWWssKMO0EdIEnsCw"
  }
}
                  </pre>
      </section>


      <section id="expiration" about="https://w3id.org/security#expiration"
      typeof="rdf:Property">
        <h3>expirationDate</h3>
        <p>
          The expirationDate property is used to associate an expirationDate with a proof.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof is expressed using
          a JSON-LD proof with purpose <code>authentication</code> and <code>expirationDate</code>:
                  </p>
                  <pre class="example prettyprint language-jsonld">
{
  "@context": "https://www.w3.org/2018/credentials/v1",
  "type": "VerifiablePresentation",
  "holder": "did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
  "proof": {
    "type": "Ed25519Signature2018",
    "created": "2020-04-02T18:21:44Z",
    "verificationMethod": "did:key:z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd#z6MkjRagNiMu91DduvCvgEsqLZDVzrJzFrwahc4tXLt9DoHd",
    "proofPurpose": "authentication",
    "challenge": "99612b24-63d9-11ea-b99f-4f66f3e4f81a",
    "expirationDate": "2020-05-02T18:21:44Z",
    "domain": "issuer.interop.transmute.world",
    "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..2xjpkHW6EY-cKD8DrMIkkiB2Q_k6kHynTbR7XGgtYR92blQWpL6Q-2nTdQi1rNhJtmHw1wWWssKMO0EdIEnsCw"
  }
}
                  </pre>
      </section>

      <section id="proofValue" about="https://w3id.org/security#proofValue"
      typeof="rdf:Property">
        <h3>proofValue</h3>
        <p>
          The proofValue property is used to associate a proof value with a proof.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof is expressed using
          a JSON-LD proofValue:
                  </p>
                  <pre class="example prettyprint language-jsonld">
{
  ...
  "proof": {
    "type": "MerkleProof2019",
    "creator": "did:example:abcdefghij0123456789",
    "created": "2017-09-23T20:21:34Z",
    "domain": "example.org",
    "nonce": "2bbgh3dgjg2302d-d2b3gi423d42",
    "proofValue": "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"
  }
}
                  </pre>
      </section>

      <section id="signature" about="https://w3id.org/security#signature"
        typeof="rdf:Property">
        <h3>signature</h3>
        <p>
The signature property is used to associate a signature with a graph of
information. The signature property is typically not included
in the canonicalized graph that is then digested, and digitally signed.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Range</dt>
          <dd>Signature</dd>
        </dl>
        <p>
The following example demonstrates how a signature on the graph identified by
the subject <code>http://example.com/people#jane</code> is expressed using
a JSON-LD signature:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": [
    "https://w3id.org/security/v1",
    { "foaf": "http://xmlns.com/foaf/0.1/" }
  ]
  "@graph": {
    "@id": "http://example.com/people#jane",
    "@type": "foaf:Person",
    "foaf:name": "Jane Doe",
    "foaf:homepage": "http://example.org/jane"
  },
  "signature": {
    "@type": "GraphSignature2012",
    "creator": "http://example.com/people/john-doe#key-5",
    "signatureValue": "OGQzNGVkMzVm4NTIyZTkZDYMmMzQzNmExMgoYzI43Q3ODIyOWM32NjI="
  }
}
        </pre>
      </section>

      <section id="signatureValue" about="https://w3id.org/security#signatureValue"
        typeof="rdf:Property">
        <h3>signatureValue</h3>
        <p>
The signature value is used to express the output of the signature algorithm
expressed in base-64 format.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">stable</dd>
          <dt>Domain</dt>
          <dd>Signature</dd>
          <dt>Range</dt>
          <dd>xsd:string</dd>
        </dl>
        <p>
The following example shows how the output of the signature algorithm can be
encoded in JSON-LD:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": [
    "https://w3id.org/security/v1",
    { "foaf": "http://xmlns.com/foaf/0.1/" }
  ]
  "@graph": {
    "@id": "http://example.com/people#jane",
    "@type": "foaf:Person",
    "foaf:name": "Jane Doe",
    "foaf:homepage": "http://example.org/jane"
  },
  "signature": {
    "@type": "GraphSignature2012",
    "creator": "http://example.com/people/john-doe#key-5",
    "signatureValue": "OGQzNGVkMzVm4NTIyZTkZDYMmMzQzNmExMgoYzI43Q3ODIyOWM32NjI="
  }
}
        </pre>
      </section>

      <section id="signatureAlgorithm" about="https://w3id.org/security#signatureAlgorithm"
        typeof="rdf:Property">
        <h3>signatureAlgorithm</h3>
        <p>
The signature algorithm is used to specify the cryptographic signature
function to use when digitally signing the digest data. Typically, text to be
signed goes through three steps: 1) canonicalization, 2) digest, and
3) signature. This property is used to specify the algorithm that should be
used for step #3. A signature class typically specifies a default signature
algorithm, so this property rarely needs to be used in practice when specifying
digital signatures.
        </p>
        <dl>
          <dt>Status</dt>
          <dd property="vs:term_status">unstable</dd>
          <dt>Domain</dt>
          <dd>Signature</dd>
          <dt>Range</dt>
          <dd>IRI</dd>
        </dl>
        <p>
The following example shows how the signature algorithm can be specified for
a particular class of signatures:
        </p>
        <pre class="example prettyprint language-jsonld">
{
  "@context": "https://w3id.org/security/v1",
  "@id": "https://w3id.org/security#GraphSignature2012",
  "@type": "Signature",
  "canonicalizationAlgorithm": "https://w3id.org/jsonld#UGNA2012",
  "digestAlgorithm": "http://example.com/digests#sha512",
  "signatureAlgorithm": "http://www.w3.org/2000/09/xmldsig#rsa-sha1",
}
        </pre>
      </section>

      <section id="service" about="https://w3id.org/security#service"
      typeof="rdf:Property">
        <h3>service</h3>
        <p>
          Examples of specific services include discovery services, social networks, file storage services, and verifiable claim repository services.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Domain</dt>
                    <dd>Signature</dd>
                    <dt>Range</dt>
                    <dd>IRI</dd>
                  </dl>
                  <p>
          The following example shows how service is defined:
                  </p>
                  <pre class="example prettyprint language-jsonld">
{
  ...
  "service": [{

    "id":"did:example:123456789abcdefghi#vcs",
    "type": "VerifiableCredentialService",
    "serviceEndpoint": "https://example.com/vc/"
  }]
}
                  </pre>
      </section>

      <section id="serviceEndpoint" about="https://w3id.org/security#serviceEndpoint"
      typeof="rdf:Property">
        <h3>serviceEndpoint</h3>
        <p>
          A network address at which a service operates on behalf of a controller. Examples of specific services include discovery services, social networks, file storage services, and verifiable claim repository services. Service endpoints might also be provided by a generalized data interchange protocol, such as extensible data interchange.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Domain</dt>
                    <dd>Signature</dd>
                    <dt>Range</dt>
                    <dd>IRI</dd>
                  </dl>
                  <p>
          The following example shows how service is defined:
                  </p>
                  <pre class="example prettyprint language-jsonld">
{
  ...
  "service": [{

    "id":"did:example:123456789abcdefghi#vcs",
    "type": "VerifiableCredentialService",
    "serviceEndpoint": "https://example.com/vc/"
  }]
}
                  </pre>
      </section>

      <section id="x509CertificateChain" about="https://w3id.org/security#x509CertificateChain"
      typeof="rdf:Property">
        <h3>x509CertificateChain</h3>
        <p>
          The x509CertificateChain property is used to associate a chain of <a href="https://tools.ietf.org/html/rfc5280">X.509 Certificates</a> with a proof. The value of this
          property is an ordered list where each value in the list is an <a href="https://tools.ietf.org/html/rfc5280">X.509 Certificate</a> expressed as a DER PKIX format, that is encoded with <a href="https://tools.ietf.org/id/draft-multiformats-multibase-00.html">multibase</a>
          using the <a href="https://tools.ietf.org/id/draft-multiformats-multibase-00.html#rfc.appendix.D.1">base64pad</a> variant. The certificate directly associated to the verification method used to verify the proof MUST be the first element in the list. Subsequent
          certificates in the list MAY be included where each one MUST certify the previous one.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof is expressed using
          a JSON-LD proof with a link to an associated <code>x509CertificateChain</code>:
                  </p>
                  <pre class="example prettyprint language-jsonld">
                    {
                      ...
                      "proof": {
                        "type": "Ed25519Signature2018",
                        "created": "2020-04-03T18:03:33Z",
                        "x509CertificateChain": [ "MIIC/jCCAeYCCQDqa4lnWhygnDANBgkqhkiG9w0BAQsFADBBMQswCQYDVQQGEwJT
                        RTEQMA4GA1UECgwHSXNzdWVyIDEPMA0GA1UECwwGaXNzdWVyMQ8wDQYDVQQDDAZp
                        c3N1ZXIwHhcNMjEwNDE2MDMwMTUyWhcNMjQwMTExMDMwMTUyWjBBMQswCQYDVQQG
                        EwJTRTEQMA4GA1UECgwHSXNzdWVyIDEPMA0GA1UECwwGaXNzdWVyMQ8wDQYDVQQD
                        DAZpc3N1ZXIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYa1IJIrKr
                        R5SHPfyOCWKuwcJHnDjTt+8cC7SLwtrfg3vazE+uRSP8cS7RitvMqK1YyC/pthJI
                        zJlzF3OqcRQENjPfzQaD6J/55TWhwYfNj5IOVDCcZflfe+fgdl+N2mhrkIADqK3i
                        Z5fOp5M2DN0m3XVhUllOHQ1dX6IRGCFrDV0ho2uOY+mmy3qIB3DRBLqd9pCN7ddr
                        z+3uTRUYyuRiLdvvc7Myjq7CrNkiqr5yedMXwM9Bi3GVUIZ3L4MKgyCf7XZ0TMoX
                        i4FVWbi4O1caKM0foglpRzGQM0IPgwQ/JR5u+rWaNx5XdowraWqU0LziznibvuFI
                        HTpcQVmO0zNDAgMBAAEwDQYJKoZIhvcNAQELBQADggEBAAJPFM32NBdAsGnuChQ9
                        1A66HvVwQeC/r2wJFVj3jg7h7lTYjmaHKoRP3J5UGmHo8fTbIxyJPKoXZ3qoj31Y
                        uBFKxNaNjSrPTOUv/4injvqjkdCvQdy0iuQaNtQJSkse4t/fnQ+DMC+E3cNii8Yj
                        0Z+T3oJL1PCg01N6uL8KtooEmnUGzIzuZ2naokgwaiEOU2CCnJOCKYxz22cxqfNm
                        sGy1keqt6/bE64UnJRgETdqHzZTO0013ZtvDiwjGo3CZg4FBi/O722XnxbzuFIPZ
                        WWOOb9VaH+AE4lNei6i/CDY/WcgpP0GDIj3z6lCeLtiSagiQQPYxIz2sBxC1OKVU
                        7CE=" ],
                        "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..ktzmVCTovhKWKxnMwDtMnmpUAUF1n7sqbdNmOV0TkxCTb2eHATO6iP7wqjyl_CMehHKnqgW6t9SW4q9TdbCxAg",
                        "proofPurpose": "assertionMethod",
                        "verificationMethod": "did:key:z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y#z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y"
                      }
                    }
                  </pre>
      </section>

      <section id="x509CertificateFingerprint" about="https://w3id.org/security#x509CertificateFingerprint"
      typeof="rdf:Property">
        <h3>x509CertificateFingerprint</h3>
        <p>
          The x509CertificateFingerprint property is used to associate an <a href="https://tools.ietf.org/html/rfc5280">X.509 Certificate</a> with a proof via its fingerprint.
          The value is a <a href="https://tools.ietf.org/id/draft-multiformats-multihash-00.html#rfc.appendix.B.1">multihash</a> encoded then <a href="https://tools.ietf.org/id/draft-multiformats-multibase-00.html">multibase</a>
          encoded value using the <a href="https://tools.ietf.org/id/draft-multiformats-multibase-00.html#rfc.appendix.D.1">base64pad</a> variant. It is RECOMMENDED that the fingerprint value be the SHA-256
          hash of the X.509 Certificate.
                  </p>
                  <dl>
                    <dt>Status</dt>
                    <dd property="vs:term_status">unstable</dd>
                    <dt>Range</dt>
                    <dd>Signature</dd>
                  </dl>
                  <p>
          The following example demonstrates how a proof is expressed using
          a JSON-LD proof with a link to an associated <code>x509CertificateFingerprint</code>:
                  </p>
                  <pre class="example prettyprint language-jsonld">
                    {
                      ...
                      "proof": {
                        "type": "Ed25519Signature2018",
                        "created": "2020-04-03T18:03:33Z",
                        "x509CertificateFingerprint": "MEiB6BbyLEylDZbtIbjpj5nM+QJQyPGartYi4x6Cj0Jl2FQ==",
                        "jws": "eyJhbGciOiJFZERTQSIsImI2NCI6ZmFsc2UsImNyaXQiOlsiYjY0Il19..ktzmVCTovhKWKxnMwDtMnmpUAUF1n7sqbdNmOV0TkxCTb2eHATO6iP7wqjyl_CMehHKnqgW6t9SW4q9TdbCxAg",
                        "proofPurpose": "assertionMethod",
                        "verificationMethod": "did:key:z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y#z6MkkUNcUWxAbxamK2Spp92mKWoXddS3tTqBKe8VTGExzX2Y"
                      }
                    }
                  </pre>
      </section>

      <section id="allowedAction" about="https://w3id.org/security#allowedAction"
      typeof="rdf:Property">
        <h3>allowedAction</h3>
      </section>

      <section id="capability" about="https://w3id.org/security#capability"
      typeof="rdf:Property">
        <h3>capability</h3>
      </section>

      <section id="capabilityAction" about="https://w3id.org/security#capabilityAction"
      typeof="rdf:Property">
        <h3>capabilityAction</h3>
      </section>

      <section id="capabilityChain" about="https://w3id.org/security#capabilityChain"
      typeof="rdf:Property">
        <h3>capabilityChain</h3>
      </section>


      <section id="caveat" about="https://w3id.org/security#caveat"
      typeof="rdf:Property">
        <h3>caveat</h3>
      </section>

      <section id="delegator" about="https://w3id.org/security#delegator"
      typeof="rdf:Property">
        <h3>delegator</h3>
      </section>

      <section id="invocationTarget" about="https://w3id.org/security#invocationTarget"
      typeof="rdf:Property">
        <h3>invocationTarget</h3>
      </section>

      <section id="invoker" about="https://w3id.org/security#invoker"
      typeof="rdf:Property">
        <h3>invoker</h3>
      </section>

    </section>
  </body>
</html>