Verifiable Credential types
Currently, 2 different types of Verifiable Credentials are used in the DOME ecosystem: LEARCredentialEmployee, LEARCredentialMachine and Gx:LabelCredential.
LEAR Credentials are used to identify either an individual or a machine/service. Each LEAR Credential includes a credential subject section containing 3 key fields:
-
Mandatee: the entity being identified (person or machine).
-
Mandator: the organization represented by, and granting authority to, the mandatee.
- Power: see the specific guide
LEAR Credential Employee
Identifies an individual and is mainly used to log in to the public applications within the ecosystem. Different applications require different powers (permission sets) to grant access to specific features. For example, the Issuer requires the "Onboarding - Execute" power, while the Marketplace allows login with either "Onboarding - Execute" (admins) or "Product Offering" powers (non-admins). For more details, see:
LEAR Credential Machine
Iidentifies a machine or service and is used for M2M authentication flows. For more details, see: