Home » Sphereon VDX » Sphereon VDX Technical Specifications

Sphereon VDX
Technical Specifications

Sphereon VDX, our digital credential solution for organisations, enables you to quickly deploy solutions to share data.

Sphereon VDX is based on the EU eIDAS2.0 Architectural Reference Framework (ARF) and the open W3C standards and specifications for Decentralized Identifiers (DID) and Verifiable Credentials (VC), our data exchange solutions are globally interoperable.

Sphereon VDX connects seamlessly with existing IAM and Business Applications using:

  • Common OpenID Connect integrations.
  • Trustless self-issued OpenID Connect (SIOP).
  • OpenID for Verifiable Credential Issuance (OID4VCI).
  • OpenID for Verifiable Presentations (OID4VP).
BACK

Technical specifications:

Formats and protocols
  • Support for
    • IEFT SD-JWT VC
    • JSON-LD
    • W3C VCDM 2.0 / SD-JWT
    • ISO/IEC 18013-5 mDL/mDoc
  • Multiple DID methods
    • DID: web/webvh/jwk/key/EBSI/ETH/FCT/LTO/ION
    • DIF Universal Registrar and Universal Resolver
  • Issuance protocols
    • OID4VCI (ID 2 – Draft 11/13/15)
    • Authorization Code Flow (with PKCE)
    • Pre-Authorized Code Flow
  • Presentation protocols
  • Proximity communication (BLE, NFC)
  • Support for VC API
  • Support for DIDComm v2
  • Status/Revocation
    • StatusList2021 (W3C)
    • Token Status List (IETF Draft 6/8)
    • W3C Bitstring Status List
    • OpenID Federation 1.0 (Draft 2)
Signing
  • Supports signing and verification of Verifiable Credentials
    • Simple X.509 signing (local, non-HSM)
    • Non-Cades/Jades signatures
      • Ed25519Signature2018
      • EcdsaSecp256k1Signature2019
      • EcdsaSecp256k1RecoverySignature2020
      • JsonWebSignature2020
      • RsaSignature2018
      • BBS+ BbsBlsSignature2020
    • eIDAS-bridge for eIDAS-compliant QTSP (DigiCert) for AES and QES signatures
  • Next to signing Verifiable Credential, VDX supports
    • Generic signing of any digital file or object
    • Signing of PDF using Adobe AATL certificates (blue bar)
Hardware security
  • Support for Hardware Security Modules (HSM)
    • Cloud-based, e.g. Microsoft Azure KeyVault, DigiCert, Digidentity
    • HSM FIPS 140-2 Level 2 or 3, Common Criteria CP5
Integration
  • Passwordless logins
    • Gaia-X portals
    • SSI wallet with support for OID4VC
    • Craft CMS
  • DIF VC-JWT Interop profile
  • The Decentralized Identity Interop Profile (DIIP v3/v4)
  • OpenID Connect integration for authentication federation to existing systems, f.i.
    • Keycloak
    • SURF Research Access Management (SRAM)
  • DIF Presentation Exchange integration, bridging existing IT-systems with SSI-wallets
  • Microsoft Entra (Azure Active Directory)
Wallet Compatibility & APIs
  • EUDI Wallet-compatible (DIIP v3/v4)
  • Edge Wallet (mobile, iOS/Android)
  • Cloud Wallet (Enterprise, Multi-tenant)
  • REST APIs for Issuance / Verification
  • Event/Webhook Integration
  • SDK (TypeScript/REST, open source)
  • EDK (Kotlin MP, open source)
  • CHAPI & DIDComm v2 (for wallet interoperability)
Other
  • Event streaming
  • Audit trial
  • Scalability/failover features
  • Supports Credential Schema Versioning / Templates
  • Trust Registry (dynamic, scoped issuance)
  • QTSP Integration (QES / AES)
  • Integrates with Sphereon’s Trusted Credential Infrastructure
  • Integrates with Velocity HR Network
  • Support for EU EBSI
  • Connection manager/persistence
  • Mnemonic Seed (BIP39) module
VDX Documentation

Need to know more?
Contact our team!

email us
Logo Sphereon

Sorry

De versie van de browser die je gebruikt is verouderd en wordt niet ondersteund.
Upgrade je browser om de website optimaal te gebruiken.