We've made significant improvements to our validation infrastructure, enhanced configuration capabilities, and improved credential format support.

Validation and Policy Enhancements

Validator Service

• Enhanced Multi-Credential Support: Refactored validator flow to support both DIF Presentation Exchange (PE) and Digital Credential Query Format (DCQL) credential queries.
• Improved Policy Processing: Validator policies are now executed individually for each presentation in a submission, with results flattened for easier navigation.

Mobile Driving License (mDL) Support

• Independent mDL Processing: Made it easier to use Mobile Driving Licenses independently with both validator and verifier services.

Configuration and User Experience

Dashboard Improvements

• Enhanced Configuration Labels: Added comprehensive internationalization labels for all service configuration forms, making every configurable field more intuitive.
• Service-Specific Labels: Added detailed labels for resolver DID methods, verifier status lists, validator policies, authorizer OpenID4VP settings, and gateway service configurations.

API and Data Format Improvements

JSON Schema Enhancements

• Enhanced API Validation: Applied improved schemas to verifier and validator APIs for improved input validation and error handling.

⠀Security and Authentication

Authorizer Service

• X.509 Certificate Support: Added support for X.509 certificates in JWT headers.
• Enhanced Key Handling: Improved support for EC (P-256, P-384, P-521, secp256k1), RSA, and OKP (Ed25519, Ed448) key types.

We have successfully renewed our UK Cyber Essentials certification, demonstrating our continued commitment to cybersecurity best practices.

‍What's New:

‍UK Cyber Essentials Certification Renewed

Our certification has been renewed and is valid through May 13, 2026 (Certificate ID: 5d412176-2bb4-47bf-9b9c-c001bd05dcbd)

All Vidos services and our organizational infrastructure are covered by this certification, reinforcing our dedication to maintaining robust security controls and protecting our customers' data.

For more information on our security certifications and compliance, please visit our Trust Centre (https://trust.vidos.id).

‍

Credential Format Support

• Added support for IETF OAuth Status List verification
• Added support for IETF StatusList CWT format
• Enhanced ECDSA JCS 2019 verification capabilities

Documentation and User Experience

• Added presentation definition error displays for improved debugging capabilities
• Enhanced authorizer tester policies with detailed results display
• Added organisational identity presentation definition samples
• Added comprehensive DIF Presentation Exchange documentation
• Restructured our documentation site for improved clarity and usability

Credential Standards

• Added support for IETF Digital Credential proof verification
• Improved support for IETF Digital Credential format
• Added JWT-SD Key Binding verification

Authentication and Protocol Enhancements

• Added client metadata support to OpenID4VP response
• Improved authorization flows with structured errors and examples
• Enhanced configuration capabilities with detailed error handling

Service Management

• Added Service Roles UI for simplified access management
• Implemented service role management and policies

Credential Format Enhancements

• Added support for Selective Disclosure SD-JWT credentials
• Added support for JWT-based Verifiable Presentations
• Added ISO 18013-5:2021 Mobile Driving License (mDL) verification
  

API Improvements

• New APIs supporting JSON-LD, JWTs, and M-DOCs formats
• Improved credential validation and verification processes
  

Verification Enhancements

• "Valid At" replaced with "Not Before" and "Not After" for clearer credential validity
• New "Handle As" setting allows missing optional fields to be warnings or errors
• Enhanced schema validation for JSON-LD credentials
  

Status List Expansion

• JWT-signed status lists now supported alongside JSON-LD
• Enhanced revocation and suspension interoperability with EBSI collaboration
  

Logging and Validator Improvements

• Audit logs for tracking policy changes and configurations
• Implemented usage logs for resolution, verification, and validation activities
• Created fallback mechanism to correct invalid submissions and support wallet variations

Ping Identity Connector

• Official Vidos Ping Connector released for PingOne DaVinci.
• Ping Identity users can now extend their capabilities to include decentralized identities.

Dashboard and UI Updates

• Introduced service and account logs display within the dashboard.
• Improved dashboard navigation to accommodate new logging features.

Identity Credential Enhancements

• Added support for Selective Disclosure SD-JWT credentials.
• Introduced core support for Mobile Driver’s License (mDL) verification.
• Improved interoperability checks for Verifiable Credential (VC) and Verifiable Presentation (VP) standards.

VLEI (Verifiable Legal Entity Identifier) Implementation

• Implemented API endpoint definitions for VLEI services.
• Instantiated internal services to support future expansion.

Logging and Infrastructure Updates

The logging system reached an important milestone with several key developments:

• Logging Alpha finalized and deployed to production.
• Logging read services prepared for customer access.

Verifier and Credential Enhancements

• Added support for JWT-based Verifiable Presentations.
• Implemented Power of Attorney Proof-of-Concept in the Verifier, expanding use case coverage.

Decentralized Identity Standardization

• Integrated EBSI conformance testing into the authorizer.
• Deployed initial version of EBSI-compliant verification processes.

‍

Verifier Enhancements

The Verifier service received major updates to improve credential validation:

• Implemented support for MDL (Mobile Driver’s License) verification.
• Enhanced validity period handling by replacing "Valid At" with "Not Before" and "Not After."
• Finalized status check policy, ensuring revoked and suspended credentials are properly processed.

Resolver and API Improvements

• DHT resolver deployed to production.
• Introduced support for JWT format credentials, expanding compatibility with different credential standards.

Security and Compliance

• Initiated AWS Vendor Insights review for advanced listing.

Billing System Enhancements

Significant progress was made in implementing a robust billing system, streamlining subscription management for users. Key updates include:

• Stripe billing integration completion.
• AWS Marketplace listing. You can now purchase Vidos services through AWS Marketplace!
• UI elements introduced for billing and paymentsflow.

Decentralized Identity Improvements

• Developed a dynamic credential status system, supporting revoked, suspended, and message states.
• Implemented the initial version of presentation definition frameworks for better credential validation.
• Completed the DHT resolver implementation, improving credential resolution reliability.

Configuration and Logging Enhancements

• Added preliminary logging infrastructure, including audit and monitoring capabilities.