Home » Sphereon VDX

Sphereon VDX Verifiable Data Exchange

Sphereon VDX, our digital credential solution for organisations, enables you to quickly deploy solutions to share data.

  • Verifiable: data and documents are digitally signed by the issuer.
  • Privacy-preserving: data is held and controlled by the owner.
  • Tamperproof: data is automatically validated by the recipient.
  • Interoperable: based on the EU eIDAS2.0 ARF and W3C/ISO open standards.


Based on the new EU eIDAS2.0 regulation for digital identity wallets (EUDI Wallet) Sphereon VDX is a comprehensive digital credential management solution.

Sphereon VDX facilitates secure and compliant exchange of personal and legal entity data, simplifies the process of data provision, and enhances the user’s experience, resulting in far fewer abandonments and thrustworthy data.

Sphereon VDX creates significant benefits:

  • Streamlined Onboarding and Verification: Implements Straight-through Processing (STP) for instant credential verification, enhancing operational efficiency and customer satisfaction. This is achieved by combining Self-Sovereign Identity (SSI), Business Process Management (BPM) and Robotic Process Automation (RPA) technologies to streamline your business processes.

  • Enhanced Privacy and Data Control: Supports selective disclosure, allowing users to share necessary information only, thus protecting privacy and reducing transactional risks. Advanced cryptographic methods are used for selective information disclosure, such as SD-JWTs, aligning with strict data protection standards as described in the eIDAS2.0 ARF.

  • Increased Trust and Security: Also uses robust cryptographic technologies to secure transactions, increasing confidence among all data exchange parties. This is bolstered by stringent security protocols that lower the risk of identity theft and fraud, securing all transactions.

  • Reduced Costs and Resource Needs: Decreases the necessity for in-house identity infrastructure, significantly cutting costs and saving resources. Sphereon VDX offers a reusable framework that reduces the need for costly, separate identity services.

  • Regulatory Compliance Support: Eases the compliance burden with eIDAS2.0, AML, GDPR and other regulations, offering tools that simplify adherence and eliminate non-compliance risks. Features are specifically designed to assist organisations in meeting regulatory requirements easily.

  • Audit Trails for Accountability: Ensures all data exchanges are verifiable, enhancing transparency and accountability in operations. Detailed logging and audit trails support compliance tracking and operational transparency.

  • Reduced Business Risk from Theft and Fraud: Minimizes risks associated with centralized data breaches by using decentralized identity management. This not only protects sensitive user information but also reduces the potential impact and costs associated with data breaches.

  • Portability and Interoperability: Enables a portable, reusable identity across services and platforms, enhancing user experience and adoption. Sphereon VDX facilitates easy adoption and implementation across various sectors without extensive changes to existing systems, ensuring a unified approach to identity management.

  • Disintermediation: Reduces reliance on intermediaries for identity verification, enabling more direct and efficient interactions between parties. This leads to enhanced user privacy and streamlined operations, as it reduces the number of entities involved in the verification process.

Sphereon VDX tackles crucial organizational challenges by providing targeted solutions:

  • Regulatory Compliance and Legal Complexity: Sphereon VDX will comply with the intricate requirements of eIDAS 2.0 and EU Member State laws. It integrates compliance features directly into its platform, simplifying the often cumbersome legal obligations organisations face. This not only ensures adherence to regulations but also minimizes the effort required to stay compliant.

  • Resource Constraints and Operational Capacity: Many organizations struggle with limited resources and the capacity to develop complex solutions in-house. Sphereon VDX offers an easy-to-implement, plug-and-play solution that seamlessly integrates with existing systems. This approach saves significant development time and resources, allowing organizations to focus on core business functions without the need for extensive IT overhauls.

  • Security and Fraud Risks: In an era where digital security is paramount, Sphereon VDX enhances protection through the use of advanced cryptographic techniques and technologies. This not only safeguards digital identities but also significantly reduces the risks of fraud. By securing credentials and data transactions, Sphereon VDX provides organisations with the peace of mind that their data handling processes are robust against external threats.

  • Technical Complexity and Management: Implementing and managing digital credentials can be a complex and requires specialised knowledge. Sphereon VDX simplifies this by offering user-friendly APIs and management tools that abstract much of the complexity involved. This lowers the barrier to entry for organisations to adopt advanced digital credential systems and reduces the dependency on specialised IT staff.

  • Governance and Standardization: The decentralized nature of digital identities can complicate governance and standardization efforts. Sphereon VDX addresses this by providing clear governance protocols and adhering to standardization guidelines that align with global standards. This ensures that operations within the decentralized identity ecosystem are coherent and compliant with international practices, facilitating broader adoption and operational clarity.

  • Interoperability Challenges: A major hurdle in adopting new technologies is ensuring they work well with existing systems. Sphereon VDX excels in this area by ensuring high interoperability with various identity systems. This capability facilitates seamless data exchanges across decentralized and traditional infrastructures, eliminating silos and enhancing system compatibility.

  • Security in New Frameworks: As organisations adopt new technology frameworks, ensuring their resilience against evolving cyber threats is critical. Sphereon VDX strengthens the security of these new frameworks by incorporating cutting-edge security measures that protect against cyber threats and ensure the integrity of digital identities and data transactions.


The Sphereon VDX platform enables you to quickly deploy solutions to share data and documents in public administration, healthcare, finance, services, mobility, education and other industries.

Technical specifications:

Based on the EU eIDAS2.0 ARF and the open W3C standards and specifications for Decentralized Identifiers (DID) and Verifiable Credentials (VC), our data exchange solutions are globally interoperable and connect seamlessly with existing IAM and Business Applications using common OpenID Connect integrations, trustless self-issued OpenID Connect (SIOP), OpenID Connect for Verifiable Credential Issuance (OIDC4VCI), and OpenID Connect for Verifiable Presentations (OIDC4VP).

  • Available as SaaS, self-hosted, or combination
  • Multi-tenant with authorization levels at group/department/user level
  • Key management at group and user level, with key usage bound to users/groups
  • Supports signing and verification of Verifiable Credentials
    • Simple X.509 signing (local, non-HSM)
    • Non-Cades/Jades signatures
      • Ed25519Signature2018
      • EcdsaSecp256k1Signature2019
      • EcdsaSecp256k1RecoverySignature2020
      • JsonWebSignature2020
      • RsaSignature2018
      • BBS+ BbsBlsSignature2020
    • eIDAS-bridge for eIDAS-compliant QTSP (DigiCert) for AES and QES signatures
  • Next to signing Verifiable Credential, VDX supports
    • Generic signing of any digital file or object
    • Signing of PDF using Adobe AATL certificates (blue bar)
Hardware security
  • Support for Hardware Security Modules (HSM)
    • Cloud-based, e.g. Microsoft Azure KeyVault, DigiCert
    • HSM FIPS 140-2 Level 2 or 3, Common Criteria CP5
  • Passwordless logins
    • Gaia-X portals
    • SSI wallet with support for OID4VC
    • Craft CMS
  • DIF VC-JWT Interop profile
  • The Dutch Decentralized Identity Profile (DDIP)
  • OpenID Connect integration for authentication federation to existing systems
    • Keycloak
    • SURF Research Access Management (SRAM)
  • DIF Presentation Exchange integration, bridging existing IT-systems with SSI-wallets
    • OpenID Connect for Verifiable Credential Issuance (OIDC4VCI)
    • OpenID Connect for Verifiable Presentations (OIDC4VP)
    • Support for SIOPv2 and DIDcomm
  • Microsoft Entra (Azure Active Directory)
  • Event streaming
  • Audit trial
  • Scalability/failover features

Need to know more?
Contact our team!

email us
Logo Sphereon


De versie van de browser die je gebruikt is verouderd en wordt niet ondersteund.
Upgrade je browser om de website optimaal te gebruiken.