cryptographic_binding_methods_supported feels like it's probably a bit under defined.
https://openid.github.io/OpenID4VCI/openid-4-verifiable-credential-issuance-wg-draft.html#section-11.2.3 says:
cryptographic_binding_methods_supported: OPTIONAL. Array of case sensitive strings that identify the representation of the cryptographic key material that the issued Credential is bound to, as defined in Section 7.1. Support for keys in JWK format [RFC7517] is indicated by the value jwk. Support for keys expressed as a COSE Key object [RFC8152] (for example, used in [ISO.18013-5]) is indicated by the value cose_key. When the Cryptographic Binding Method is a DID, valid values are a did: prefix followed by a method-name using a syntax as defined in Section 3.1 of [DID-Core], but without a :and method-specific-id. For example, support for the DID method with a method-name "example" would be represented by did:example.
which refers to section 7.1, but that sections doesn't mention cryptographic_binding_methods_supported.
I think an extra sentence like this might help, assuming this is correct:
The wallet uses a key type listed in cryptographic_binding_methods_supported in the proof.
cryptographic_binding_methods_supportedfeels like it's probably a bit under defined.https://openid.github.io/OpenID4VCI/openid-4-verifiable-credential-issuance-wg-draft.html#section-11.2.3 says:
which refers to section 7.1, but that sections doesn't mention
cryptographic_binding_methods_supported.I think an extra sentence like this might help, assuming this is correct: