Verifiable Credential (VC)

A Verifiable Credential (VC) is a W3C standard data model for expressing credentials in a way that is cryptographically secure, privacy-respecting, and machine-verifiable. In the context of eIDAS 2.0 and the European Digital Identity Wallet, VCs provide the conceptual foundation for how identity data and attributes are represented, issued, held, and presented.

A VC contains claims about a subject (such as a person's name, date of birth, or professional qualification), metadata about the credential itself (issuer, issuance date, expiry), and a cryptographic proof, typically a digital signature, that allows any verifier to confirm the credential's authenticity and integrity without needing to contact the issuer directly. This decentralised verification model is essential for the scalability and privacy objectives of the EUDIW. While the eIDAS 2.

0 implementing acts specify particular credential formats (notably SD-JWT and mdoc/ISO 18013-5 rather than the W3C VC Data Model directly), the principles of verifiable credentials permeate the entire architecture. Selective disclosure and zero-knowledge proof techniques can be layered on top of VCs to allow holders to reveal only the minimum necessary information. For example, a user could prove they are over 18 without revealing their exact date of birth.

The VC ecosystem involves three roles (issuer, holder, and verifier) that map onto the eIDAS concepts of attribute providers, wallet holders, and relying parties. Understanding VCs is fundamental for any organisation planning to issue or consume digital credentials within the European digital identity ecosystem.