Bruno will update to reflect that there's 2 levels of hardware functionality, one for protection and the other one for actually
performing operations.
Discussion on "Attestation for component conformance and compliance"
Risk-based decision analysis
What is required for a government to hold their credentials?
Issuers decide what wallets they are willing to issue credentials to and have their own review process and criteria to make that decision
App to provide proof of attestation (this is wallet attestation)
What makes a good wallet? How does the wallet attest to conforming to these requirements? Are there governing bodies for these attestations/requirements?
Compatible international wallet specification
Certifications for interoperable credentials to be used cross border
Multiple levels of requirements based on the type of credential
Harmonization of taxonomy – consistent terms across different sectors
Trust root and the trust ecosystem built around that root
Exchange trust for end-user devices
Storage will preserve the assurance level of the credential that is issued
Mechanism to maintain the security and integrity of the wallet