Option D: "Wallet backend" actually referring to "Applet" in description?
Type
- Editorial
Summary
Use of "Wallet backend" instead of "Applet" in description?
Version and Section
- Version: 2.0
- Commit: cfa6a155
- Section: Authenticated Channel with Secure Element (D) with SD-JWT
Feedback / Questions
In the description of Option D it is mentioned that:
- Wallet backend creates
user\_data\_jwt := \text{hmac}(user\_data, x5c\_header)_{\text{ecdh(dev\_pub, pp\_pub)}}
This indicates that the EUID Wallet Provider Backend (holding the long-term key ( wp_pub, wp_priv)
creates the HMAC for the user, but this would imply that the Wallet Provider Backend also is capable of calculating the ephemeral key ecdh(dev_pub, pp_pub)
which makes no sense according to my understanding of this option D.
Could it be that "Wallet backend" here should actually refer to the "Applet" and not the EUID Wallet Provider Backend from the flow chart?