NEW
Report & API Now Live! Data insights report and open data API endpoints live as of September 23, 2025

OpenID for Verifiable Presentations over BLE

type
Standard
Documentation

Description

Description
Source

OpenID for Verifiable Presentations over BLE is a technical specification that enables secure exchange of verifiable credentials between digital wallets and verifiers using Bluetooth Low Energy (BLE) connectivity. This protocol is particularly valuable when internet connectivity is unavailable or undesired.

The standard extends the existing OpenID4VP specification by defining how verifiable credentials can be requested and presented over BLE connections. It enables offline credential verification scenarios like venue access control or ticket validation without requiring network connectivity.

Key features include:

  • Secure Connection Establishment using either:
    • BLE advertisement initiated by verifier
    • QR code scanning
  • End-to-End Encryption using:
    • AES-256-GCM or ChaCha20 encryption
    • Ephemeral key pairs for session security
  • Chunked Data Transfer to handle BLE limitations
  • Error Recovery mechanisms for failed transmissions

Technical Specifications:

  1. Purpose and Scope:
  • Enable offline verification of credentials between wallets and verifiers
  • Maintain security and privacy in disconnected scenarios
  • Support both BLE advertisement and QR code initialization
  1. Key Technical Requirements:
  • Implements Bluetooth SIG specification 4.2
  • Uses X25519 for key exchange
  • Supports maximum data rate of ~0.10 Mbps
  • Defines specific UUID services for BLE characteristics
  1. Implementation Requirements:
  • Verifiers must implement Peripheral GAP Role
  • Wallets must implement Central GAP Role
  • Both parties must support:
    • LE Data Packet Length Extension
    • ECKA-DH key agreement
    • Message chunking and reassembly
  1. Security Considerations:
  • Encrypted communication using session keys
  • Nonce-based request binding
  • Signed presentation requests
  • Session termination protocols
  1. Interoperability Features:
  • Compatible with existing OpenID4VP request/response syntax
  • Supports multiple credential formats
  • Standardized BLE service UUIDs
  1. Current Status:
  • Draft specification (January 2025)
  • Developed by OpenID Connect working group
  • Supported by major technology providers including Microsoft, Panasonic, and MOSIP

Statistics

Projects Following
Source
1

Under Management at

Project
Website
Source

Projects Following or working on this Standard

Project
Website
Source

If you are featured in the Web of Trust Map and wish to exercise your GDPR rights, including the right to be forgotten, visit the privacy policy page