design-reviews#1119: Digital Credentials API

#1119: Digital Credentials API

Opened Jul 11, 2025

こんにちは TAG-さん!

The Federated Identity on the Web WG is requesting a TAG review of the Digital Credentials API.

This document specifies an API to enable user agents to mediate presentation and issuance of digital credentials such as a driver's license, government-issued identification card, and/or other types of digital credential . The API builds on Credential Management Level 1 as a means by which to request or issue a digital credential from a user agent or underlying platform.

Explainer¹: The WG recommends the introduction to the spec as explanation of its purpose and use.
Specification: https://www.w3.org/TR/digital-credentials/
WPT Tests: https://github.com/web-platform-tests/wpt/tree/master/digital-credentials
User research:
Security and Privacy self-review²: https://github.com/w3c-fedid/digital-credentials/blob/main/horizontal-reviews/security-privacy.md
GitHub repo: https://github.com/w3c-fedid/digital-credentials/
Primary contacts:
- Marcos Caceres ( Apple Inc. ), editor @marcoscaceres
- Tim Cappalli ( Okta ), editor @timcappalli
- Mohamed Amir Yosef ( Google Inc. ), editor @mohamedamir
- Heather Flanagan (Spherical Cow Consulting), co-chair @hlflanagan
- Wendy Seltzer (Invited Expert), co-chair @wseltzer
- Simone Onofril (W3C), team contact @simoneonofri
Organization/project driving the specification: W3C FedID WG
This work is being funded by: Apple and Google have led much of the investment in this API in their respective browsers, but many others have also contributed
Primary standards group developing this feature: W3C
Group intended to standardize this work: same
Incubation and standards groups that have discussed the design:
- WICG Digital Credentials incubation: https://github.com/WICG/proposals/issues/105, https://github.com/WICG/identity-credential
- OpenID, OpenID4VP: https://openid.net/specs/openid-4-verifiable-presentations-1_0.html#dc_api
Multi-stakeholder support³:
- Chromium comments: https://chromestatus.com/feature/5166035265650688/activity https://developer.chrome.com/blog/digital-credentials-cross-device-ot , https://developer.chrome.com/blog/digital-credentials-api-origin-trial#participate_in_the_origin_trial
- Mozilla comments: https://github.com/mozilla/standards-positions/issues/1003 
- WebKit comments: https://github.com/WebKit/standards-positions/issues/332 <!-- And/or other places they've given feedback →
- Credential Considerations draft: https://github.com/w3c/credential-considerations/blob/main/credentials-considerations.md
Major unresolved issues with or opposition to this specification: W3C Council Report approving recharter, recommends ongoing work to mitigate the objections: https://www.w3.org/2025/02/council-report-fedid-dig-cred.html Issues have been opened in the spec to discuss and address objections
Status/issue trackers for implementations⁴: https://digitalcredentials.dev/docs/ecosystem-support

Further details:

I have reviewed the TAG's Web Platform Design Principles
Previous early design review, if any: N/A
Relevant time constraints or deadlines: Apple has announced the API will ship in iOS 26 in September and Chrome is aiming to ship in version 140 in September, but both implementers have indicated flexibility in evolving with the specification where possible.

The FedID WG is tracking this horizontal review https://github.com/w3c-fedid/digital-credentials/issues/230

Thank you!

Track conversations at https://tag-github-bot.w3.org/gh/w3ctag/design-reviews/1119

Discussions

Discussed Jul 21, 2025 (See Github)

Matthew: Can we bump this to next week?

Lola: Yes.

Discussed Jul 28, 2025 (See Github)

Lola: Looked at that this week...

Martin: My view is unsatisfied, simply because there is no spec. There might be other reasons for that, but I can't tell.

Marcos: Coincidentally, I have the spec text now on a branch. That fills in most of the blanks. There is no consensus yet on some of these parts, so these haven't landed in the spec yet.

(Marcos walks through things for https://github.com/w3c-fedid/digital-credentials/pull/306) That shows a picture of the architecture and the new "coordinator" role within the user agent, which manages access to the wallet. Then there is the whole formats side of the protocol. These are somewhat out of scope for the API; these dictate how you interact with different credential formats (mDoc, openID, whatever). The reason that isn't there is that we are working through the details and the algorithms and trying to reconcile that with implementations. Lots of reasons for not being satisfied.

Lola: We should hold off until everything is added. Also, the explainer is not an explainer: that links to the intro section, but the explainer doesn't cover some of things.

Marcos: Alternatives were custom URLs, which is in another document.

Lola: It's not clear. The explainer is not in our design-review issue.

Marcos: https://github.com/w3c-fedid/digital-credentials/blob/main/explainer.md should cover most of the explainer topics. ... we've been moving stuff from the explainer to the spec as the spec is filled out. So that things don't get out of date.

Lola: Should we wait?

Martin: I'm still concerned about the formats question, which is far from being resolved.

Matthew: Can wait.

Ehsan: I have an issue related to the no papers document with respect to how the API operates.

Marcos: It would be good to have something about formats to take to the working group. Even if the API shape is there, the formats would be good to take there. There is also privacy/security and the working group put in a lot of work recently on that. Would be good to see if there are things missing and set expectations.

Comment by @lolaodelola Jul 31, 2025 (See Github)

Explainer: https://github.com/w3c-fedid/digital-credentials/blob/main/explainer.md