Ship verifiable credential issuance solutions fast and with ease.

Start to issue digital credentials or build Issuance-as-a-Service platforms.

Self-managed - Host on-prem or in your cloud
Standards-based - OID4VC, W3C/SD-JWT VC, mDL
Compliant with ID regulations and trust frameworks

Get Started Contact Us

Who it's for

Outcomes trusted across industries

+30k devs, businesses and governments already rely on our infrastructure.

Why so many teams use our stack?

Go to market fast and stay compliant with a build-apps/buy-infra model.
Ship production-grade issuance solutions without re-implementing specs (OID4VCI, ISO/IEC 18013, W3C VC, SD-JWT VC, …)
Focus on product, not plumbing with ready-made rails for key management, revocation, data sourcing and more
Open, modular architecture maximises flexibility, prevents lock-in and minimises development or compliance risks.

Industries using our solution

Public Sector

Citizen IDs · digital service access

Banking / Finance

Reusable KYC · income checks for loans

Commerce

Customer proofs · fast checkout

Insurance

ePolicies · instant claims · verified risk data

Edu / Work

Digital diplomas · micro credentials

Tech / Telco

eSIM activation · service login · account recovery

Travel / Mobility

Easy check-ins · eTickets · travel creds

Property / Housing

Tenant checks · eLeases · income proofs

Legal / Notary

POA · notarized deeds · formation docs

ENABLE OR RESELL

Build ID-as-a-Service platforms or on-prem solutions for any industry

Launch scalable multi-tenant issuance solutions for B2B, B2G and B2B2C.

Ship managed issuance platforms, credential marketplaces or partner ecosystems.
Ship self-managed solutions that your customers can deploy in their cloud or on-prem.
Embeddable APIs and SDKs ensure a seamless integration of issuance capabilities into products and services.

Issuer highlights

Core capabilities

Issuance Protocols

OID4VCI (+ Draft 11/13), ISO/IEC 18013:7 path for mDL.

Credential formats and types

SD-JWT VC, W3C VC 1.1 / 2.0, ISO/IEC 18013:5 mDL/mDoc. Custom attribute structures, types and schemas.

Lifecycle and status

Revocation and suspension: Status lists (e.g. Bitstring Status List, TokenStatusList, ...). Pre-determined validity: Valid-from / expiry dates.

Keys and KMS

Manage keys (e.g. ed25519, secp256r1/k1, RSA) via external KMS (e.g. AWS, Azure, Hashicorp, OCI…).

DIDs and identifiers

DIDs based on various methods (e.g. did:key, did:web, ...) or x509 certificates.

ID Ecosystems

Issuance aligned with new ID regulations and trust frameworks like eIDAS2, EBSI, DISTF, ...

Webhooks and events

Real-time callbacks for offer creation, claim attempts, credential issuance, and failure states.

Data sourcing and functions

Populate claims from your DB/IdP and compute values just-in-time—timestamps, IDs, external lookups.

Credential branding and display

Control wallet rendering, titles, logos, colour palette, attribute labels, and localisation.

product editions

Open Source vs Enterprise

The Community Stack

The leading open source decentralized identity and wallet infrastructure used by thousands of devs and organizations.

Open SourceSelf-Managed

The Enterprise Stack

Reliable, scalable, compliant and enterprise-grade solution that builds on and extends our “open core”.

LicensedSelf-Managed

Feature	Community Stack	Enterprise Stack
Standards
Credential Formats SD-JWT VC, W3C Verifiable Credentials v1.1/2.0, ISO/IEC 18013-5 (mDL), ISO/IEC 23220.	✓	✓
Protocols OID4VCI (drafts 11/13), Pre-Auth & Auth Code flows; ISO-18013-7 for mDL / mdoc remote flows.	✓	✓
Status Credential Formats Bitstring Status List v1.0, StatusList2021, RevocationList2020, TokenStatusList (incl. draft 8).	✓	✓
Digital Credentials API Unified browser API for credential issuance/verification; abstracts OID4VCI/VP & ISO-18013-7 for 1-click web integrations.	ROn roadmap for issuer, wallet	ROn roadmap for issuer, wallet

Core Capabilities
Key Management (KMS-agnostic) Use external KMS (AWS, Azure, Hashicorp, Oracle, …) or raw keys for PoCs; supports ed25519, secp256r1/k1, RSA and key rotation.	✓	✓
DIDs & Identifiers Supports did:key, did:jwk, did:web (and others) plus x509 certificates;	✓(DID Web Hosting DIY)	✓(DID Web Hosting Managed)
Webhooks / Callbacks Notify or mirror lifecycle events (e.g., re...cess/error) into external systems for orchestration and audit.	✓	✓
Credential Templates / Types Flexible JSON models to define credential data structures without rigid templates; sign arbitrary JSON payloads.	✓	✓
Credential Issuance Trigger Supports issuer-initiated and (roadmapped / coming soon) wallet-initiated issuance flows.	✓	✓
Credential Delivery Generate OID4VCI offers as QR codes or deep links; Digital Credentials API integration coming soon.	✓	✓
User Auth for Issuance Pre-auth (with optional PIN) or auth-code via external IdP; verified claims can map into credential fields.	✓	✓
Issuance Modes Single, batch or deferred issuance to handle bundled credentials (e.g. ID + entitlements).	✓	✓

Credential Lifecycle & Status
Set Revocation & Suspension Use status fields and status credentials to revoke/suspend credentials.	~(DIY)	✓(Managed)
Set Expiration & Validity Controls Configure static or dynamically generated validity periods (valid-from / expiry) via data functions.	✓	✓

Identifiers & Trust Anchors
Host did:web Documents Serve and auto-update did:web documents directly from the platform.	-	✓
DID Document Storage Persist DIDs and DID documents via internal / enterprise DID store.	-	✓

Credential Branding
Issuer Metadata Configure credential-type branding (logo, color, description) for consistent wallet display.	✓	✓
Embedded Display Data Per-instance visuals for credential variants (e.g. ticket tiers).	✓	✓

Integrations
External KMS Integrate AWS, Azure, Hashicorp, Oracle and HSMs; supports ed25519, secp256r1/k1, RSA with rotation.	✓	✓
Trust Registries Integrate with eIDAS2, EBSI and other ecosystem trust registries.	✓	✓
QTSPs Qualified signature support via QTSPs.	-	ROn roadmap

ID Ecosystems
EMEA alignment Aligned with EU eIDAS2, EBSI and Swiss SWIYU requirements.	✓	✓
APAC alignment Aligned with NZ DISTF, Australia, Thailand, Japan, etc.	✓	✓
Americas alignment Aligned with US, Canada, Brazil frameworks.	✓	✓
Custom ecosystems Adaptable to other/local ID ecosystems.	✓	✓

Deployment
Stateless API Stateless REST API with minimal session cache (OID4VCI); ideal for lightweight deployments and PoCs.	✓	-
On-Prem / Self-Hosting Self-hosting in your own cloud or data center — no managed SaaS	✓	✓
Multi-tenancy setups Isolated issuer configurations for B2B/B2G/B2B2C use cases	-	✓
Clustering / horizontal scaling Run multiple enterprise stack instances behind a load balancer with shared state (sessions, configs, etc.)	-	✓
API Data Persistence Persisted issuer data across service restarts and deployments.	-	✓

Security
Data Encryption Encrypt sensitive data at rest in the database.	-	✓
Protected APIs (AuthN/Z) Fine-grained protection of APIs with scoped tokens per tenant/service.	-	✓
Roles & permissions (RBAC) Granular roles for orgs/tenants/services following least-privilege principle.	-	✓
API keys (server-to-server) Scoped M2M API keys for backend/service integrations.	-	✓
Session data retention & auto-purge (PII) Configurable retention windows and scheduled auto-purge for issuer/verifier session data to limit PII storage and support storage-limitation policies (e.g. GDPR).	-	✓

Monitoring & Analytics
Audit logging Recorded logs and events for auditing and compliance.	-	✓
Analytics & metrics Track operations, success/error rates across tenants/services for ops and reporting.	-	✓

Administration
User accounts (operators/admins) Admin GUI logins with role-based permissions.	-	✓
Admin GUI Configure services, monitor sessions, and manage credential lifecycle operations (e.g. revocation) or verification states.	-	✓