Credential Format Decisions: Interoperability, Privacy, and Lock-In Risks

Credential format is the technical specification for verifiable digital credentials. It determines how credentials are structured, encoded, and signed, which then shapes interoperability, privacy controls, verifier ecosystem support, and migration risk. The article compares four major credential format options used in government and enterprise programs: - ISO/IEC 18013-5 and 18013-7 for mobile driver’s licenses (mDLs), supporting both online and offline presentation. - ISO/IEC 23220 (mdocs), extending the ISO approach to passports, residence permits, and other mobile documents. - W3C Verifiable Credentials (VC data model), offering a general framework, but real interoperability depends on security mechanisms and profiles. - SD-JWT (Selective Disclosure JWT), using the JWT ecosystem for selective disclosure and faster adoption, though with trade-offs in expressiveness and long-term portability. Procurement guidance is to choose the credential format early and specify not just the format, but also the specification version and a clear migration path. That means planning for possible re-issuance or parallel transitions if requirements change. For crypto traders, this is an indirect infrastructure story. Credential format decisions can influence how digital identity and compliance systems integrate, but it is typically slow-moving and policy-driven rather than a near-term market catalyst.