Ship digital identity verification solutions fast and with ease.
Start to verify digital credentials from wallets or build Verification-as-a-Service platforms.
- Self-managed - Host on-prem or in your cloud
- Standards-based - OID4VC, W3C/SD-JWT VC, mDL
- Compliant with ID regulations and trust frameworks
Who it's for
Outcomes trusted across industries
+30k dev, businesses and governments already rely on our infrastructure.
Why so many teams use our stack?
- Go to market fast and stay compliant with a build-apps/buy-infra model.
- Ship production-grade verifier solutions without re-implementing specs (OID4VP, ISO/IEC 18013, W3C VC, SD-JWT VC, …)
- Verify identity credentials instantly, cheaply, and reliably in a seamless, one-click user experience, eliminating friction points like passwords and video ident.
- Open, modular architecture maximises flexibility, prevents lock-in and minimises development or compliance risks.
Industries using our solution
Public Sector
Citizen IDs · digital service access
Banking / Finance
Reusable KYC · income checks for loans
Commerce
Customer proofs · fast checkout
Insurance
ePolicies · instant claims · verified risk data
Edu / Work
Digital diplomas · micro credentials
Tech / Telco
eSIM activation · service login · account recovery
Travel / Mobility
Easy check-ins · eTickets · travel creds
Property / Housing
Tenant checks · eLeases · income proofs
Legal / Notary
POA · notarized deeds · formation docs
ENABLE OR RESELL
Build ID-as-a-Service platforms or on-prem solutions for any industry
Launch scalable multi-tenant ID verification solutions for B2B, B2G and B2B2C.
- Ship managed credential verification platforms or partner ecosystems.
- Ship self-managed solutions that your customers can deploy in their cloud or on-prem.
- Embeddable APIs and SDKs ensure a seamless integration of ID verification capabilities into products and services.
Issuer highlights
Core capabilities
Verification Protocols
OID4VP 1.0 (drafts 14/20 → v1), ISO/IEC 18013:7 path for mDL.
Credential formats and types
SD-JWT VC, W3C VC 1.1 / 2.0, ISO/IEC 18013:5 mDL/mDoc. Custom attribute structures, types and schemas.
Lifecycle and Trust
Expiration & revocation checks (e.g., Bitstring Status Lists), trust chain validation via DIDs, keys, PKI, IACA→DSC.
Keys and KMS
Verify signatures across various algorithms: ed25519, secp256r1/k1, RSA.
DIDs and identifiers
Resolve and validate identifiers using did:key, did:web, did:jwk, x.509 certificates and more.
Policy Engine
Combine predefined, parameterized, and custom Rego/OPA rules. Delegate checks via webhooks or external services.
ID Ecosystems
Issuance aligned with new ID regulations and trust frameworks like eIDAS2, EBSI, DISTF, ...
Webhooks and events
Receive real-time callbacks for session lifecycle events, verification outcomes, or policy decision points.
Delivery and User Experience
Render authorization requests as QR codes or links; support browser-based flows and upcoming Digital Credentials API.
product editions
Open Source vs Enterprise
The Community Stack
The leading open source decentralized identity and wallet infrastructure used by thousands of devs and organizations.
The Enterprise Stack
Reliable, scalable, compliant and enterprise-grade solution that builds on and extends our “open core”.
| Feature | Community Stack | Enterprise Stack |
|---|---|---|
| Standards | ||
Credential Formats SD-JWT VC, W3C Verifiable Credentials v1.1/2.0, ISO/IEC 18013-5 (mDL), ISO/IEC 23220. | ✓ | ✓ |
Protocols OID4VP (drafts 14/20 → v1) ISO-18013-7 for mDL / mdoc remote flows. | ✓ | ✓ |
Status Credential Formats Bitstring Status List v1.0, StatusList2021, RevocationList2020, TokenStatusList (incl. draft 8). | ✓ | ✓ |
Digital Credentials API Unified browser API for credential issuance/verification; abstracts OID4VCI/VP & ISO-18013-7 for 1-click web integrations. | ✓ | ✓ |
| Core Capabilities | ||
Key Management (KMS-agnostic) Use external KMS (AWS, Azure, Hashicorp, Oracle, …) or raw keys for PoCs; supports ed25519, secp256r1/k1, RSA and key rotation. | ✓ | ✓ |
DIDs & Identifiers Supports did:key, did:jwk, did:web (and others) plus x509 certificates; | ✓(DID Web Hosting DIY) | ✓(DID Web Hosting Managed) |
Webhooks / Callbacks Notify or mirror lifecycle events (e.g., re...cess/error) into external systems for orchestration and audit. | ✓ | ✓ |
| Credential Request | ||
Delivery (QR codes & links) Render OID4VP authorization requests as QR codes or deep links. | ✓ | ✓ |
Query Define required credentials via parameters or Presentation Definition; DCQL filters supported/coming. | ✓ | ✓ |
Bundles / Batch Request and validate multiple credentials (mixed standards/types) in a single session. | ✓ | ✓ |
| Credential Lifecycle & Status | ||
Expiration & Revocation Checks Enforce validity windows and revocation checks (e.g., Bitstring Status List v1.0). | ✓ | ✓ |
Trust Chain Validation Validate issuer trust via DID Documents/keys or PKI chains (IACA→DSC) and eIDAS2/EBSI trust sources. | ✓ | ✓ |
| Integrations | ||
Trust Registries Integrate with eIDAS2, EBSI and other ecosystem trust registries. | ✓ | ✓ |
| ID Ecosystems | ||
EMEA alignment Aligned with EU eIDAS2, EBSI and Swiss SWIYU requirements. | ✓ | ✓ |
APAC alignment Aligned with NZ DISTF, Australia, Thailand, Japan, etc. | ✓ | ✓ |
Americas alignment Aligned with US, Canada, Brazil frameworks. | ✓ | ✓ |
Custom ecosystems Adaptable to other/local ID ecosystems. | ✓ | ✓ |
| Deployment | ||
Stateless API Stateless REST API with minimal session cache (OID4VP); ideal for lightweight deployments and PoCs. | ✓ | - |
On-Prem / Self-Hosting Self-hosting in your own cloud or data center — no managed SaaS | ✓ | ✓ |
Multi-tenancy setups Isolated verifier configurations for B2B/B2G/B2B2C use cases | - | ✓ |
Clustering / horizontal scaling Run multiple enterprise stack instances behind a load balancer with shared state (sessions, configs, etc.) | - | ✓ |
API Data Persistence Persisted verifier data across service restarts and deployments. | - | ✓ |
| Security | ||
Data Encryption Encrypt sensitive data at rest in the database. | - | ✓ |
Protected APIs (AuthN/Z) Fine-grained protection of APIs with scoped tokens per tenant/service. | - | ✓ |
Roles & permissions (RBAC) Granular roles for orgs/tenants/services following least-privilege principle. | - | ✓ |
API keys (server-to-server) Scoped M2M API keys for backend/service integrations. | - | ✓ |
Session data retention & auto-purge (PII) Configurable retention windows and scheduled auto-purge for issuer/verifier session data to limit PII storage and support storage-limitation policies (e.g. GDPR). | - | ✓ |
| Monitoring & Analytics | ||
Audit logging Recorded logs and events for auditing and compliance. | - | ✓ |
Analytics & metrics Track operations, success/error rates across tenants/services for ops and reporting. | - | ✓ |
| Administration | ||
User accounts (operators/admins) Admin GUI logins with role-based permissions. | - | ✓ |
Admin GUI Configure services, monitor sessions, and manage credential lifecycle operations (e.g. revocation) or verification states. | - | ✓ |
What's next
Roadmap
- More roadmap updates coming soon.
Learn and build
Docs & examples
Verifier API — Getting Started
Spin up the Community Verifier and create your first verification session.
ConceptsCredential formats
Everything you need to know about credential standards like W3C VC, IETF SD-JWT VC or mDL/mdoc ISO 18013-5)
ConceptsVerification Protocols
Everything you need to know about verification protocols like OID4VP or ISO 18013-7.
ConceptsVerify W3C VCs via OID4VP
End-to-end example for verifying a W3C VC via OID4VP.
GuideVerify SD-JWT VCs via OID4VP
End-to-end example for verifying a SD-JWT VC via OID4VP.
GuideVerify ISO mDL/mdoc via OID4VP
End-to-end example for verifying a mDL (ISO 18013-7).
GuideGET STARTED
Pick the stack that fits your rollout
Start for free with open-source or go enterprise when you need to scale.
FAQ
Frequently asked questions
Talk to walt.id
Let’s design your verification solution
Tell us about your verification goals and we’ll explore the path that fits.