-When including a link to an external resource in a verifiable credential, +When including a link to an external resource in a conforming document, it is desirable to know whether the resource that is pointed to is the same at signing time as it is at verification time. This applies to cases where there is an external resource that is remotely retrieved as well as to cases where the -issuer and/or verifier may have local cached copies of a resource. +issuer and/or verifier might have local cached copies of a +resource.
It is also desirable to know that the contents of the JSON-LD context(s) used in -the verifiable credential are the same when used by both the +a conforming document are the same when used by both the issuer and verifier.
-To validate that a resource referenced by a verifiable credential is the
+To validate that a resource referenced by a conforming document is the
same at verification time as it is at issuing time, an implementer MAY include a
property named relatedResource that
stores an array of objects that describe additional integrity metadata about
-each resource referenced by the verifiable credential. If
+each resource referenced by the conforming document. If
relatedResource is present, there MUST be an object in the array
-for each remote resource for each context used in the verifiable credential.
+for each remote resource used in the verifiable credential.
The requirement that contexts be listed in `relatedResource` is currently being debated in the VCWG. This requirement might be removed in future iterations of the specification. +
++The Working Group is seeking feedback from implementers on whether the +`relatedResource` property is useful when used in `VerifiablePresentation` +objects. Based on feedback, the Working Group might determine that the property +is not useful and will then remove the feature during the Candidate +Recommendation phase.
Each object in the relatedResource array MUST contain the
@@ -3118,7 +3126,7 @@
-Any object in the verifiable credential that contains an `id` [[URL]]
+Any object in a conforming document that contains an `id` [[URL]]
property MAY be annotated with integrity information as specified in this
section by inclusion of digestSRI
in the object.
@@ -3140,7 +3148,7 @@
-An example of an object in a `credentialSubject` that is refering to an +An example of an object in a `credentialSubject` that is referring to an integrity protected image.
diff --git a/vocab/credentials/v2/vocabulary.yml b/vocab/credentials/v2/vocabulary.yml index d39a0c29a..cce531db3 100644 --- a/vocab/credentials/v2/vocabulary.yml +++ b/vocab/credentials/v2/vocabulary.yml @@ -103,10 +103,10 @@ property: label: Subresource integrity digest defined_by: https://www.w3.org/TR/vc-data-model-2.0/#defn-digestSRI range: cred:sriString - see_also: + see_also: - label: Subresource Integrity Metadata url: https://www.w3.org/TR/SRI/#the-integrity-attribute - + - id: evidence label: Evidence defined_by: https://www.w3.org/TR/vc-data-model-2.0/#defn-evidence @@ -163,7 +163,7 @@ property: - id: relatedResource label: Related resource - domain: cred:VerifiableCredential + domain: [cred:VerifiableCredential, cred:VerifiablePresentation] range: IRI defined_by: https://www.w3.org/TR/vc-data-model-2.0/#defn-relatedResource @@ -198,7 +198,7 @@ datatype: label: Datatype for digest SRI values upper_value: xsd:string defined_by: https://www.w3.org/TR/vc-data-model-2.0/#the-sristring-datatype - see_also: + see_also: - label: Subresource Integrity Metadata url: https://www.w3.org/TR/SRI/#the-integrity-attribute - +