Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Initial Identification of a Company #18

Open
boz1 opened this issue Dec 16, 2022 · 0 comments
Open

Initial Identification of a Company #18

boz1 opened this issue Dec 16, 2022 · 0 comments
Assignees

Comments

@boz1
Copy link
Collaborator

boz1 commented Dec 16, 2022

In our current model, a company fills a claim on the ASCS issuer application and gets a credential issued. While on employee level we can check that request for a credential comes from someone holding a e.g., bmw email, for identifying companies, we can't really rely on this. How can we ensure that it is BMW that requests a credential from ASCS?

Potential Ideas

  • Any company joining GX 4 PLC AAD receives a secret and they must provide this when applying for a credential?
  • Any company joining GX 4 PLC AAD registers with ASCS and provides a DID that they control
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

3 participants