Digital Wallet Holder Binding

Digital wallets are applications used to receive, store, and share identity attributes in a standards-based [preferably], secure, privacy enhancing fashion. To prove that the legitimate, natural person is receiving, in possession of, or sharing these identity attributes a means to bind them to the natural person is needed.
In 1995, for example, the International Civil Aviation Organization (ICAO) clearly recognized the desirability of pursuing the use of biometrics in travel documents as the single best way to link the document and its rightful “owner.”
In this example the issuing authority binds the identity attributes to the authorized holder by including biometric data in the cryptographically signed logical data structure. When the holder makes an identity claim the relying party (verifier) can determine the authenticity and integrity of the identity attributes and, through biometric recognition, determine if the authorized holder is presenting the information. This works well for the intended use case: in-person identity verification by government authorities for cross border travel.
The EU, for another example, specifies three assurance levels for electronic identification (low, superior, and high) which involve different levels of rigor in the identity proofing process and in the binding process itself, from:
The binding has been established on the basis of nationally recognised procedures.
to
The binding has been verified on the basis of a unique identifier representing the legal person used in the national context; and on the basis of information uniquely representing the natural person from an authoritative source.
Here the EU defines authoritative source as:
any source irrespective of its form that can be relied upon to provide accurate data, information and/or evidence that can be used to prove identity;
The goal of digital wallets in general, and the EU digital wallet in particular, is to be able to prove identity claims to a certain level of assurance both in-person (like an ICAO ePassport or ISO 18013-5 mDL) and on-line (like an ISO 18013-7 mDL).

This session will discuss how authentication may rely on the digital wallet to bind the holder to identity claims and what the associated challenges as influenced by varying levels of assurance.