3.1.3 Wallet Revocation¶
The revocation of a Wallet Instance may happen for various reasons:
- the user revokes its Wallet Instance, e.g. because it lost its device
- the MDVM revokes a Wallet Instance due to security reasons of the device or wallet app
Wallet Revocation by the User¶
A common use case for revocation of the Wallet Instance is that the user has lost its device and wants to prevent any mis-use. A loss of the user's device alone is not a security problem, as the platform authentication protects the unlocking of the wallet app and the Remote WSCA PIN additionally protects the PID. However, the user must have additional means to prevent the mis-use of the wallet and its contained credentials, in case the platform authentication and/or RWSCA-PIN are leaked or known by adversaries.
For these reasons, a revocation mechanism is established between the user and the Wallet Provider Backend (WB) during wallet activation. The revocation mechanism must be independent from the Wallet Instance ("out-of-band"), as it is assumed that the user has no access to its device. The setup of the wallet revocation mechanism takes place during the Wallet Activation. The WB stores the information for out-of-band authentication of the user in its WB account database. The available revocation mechanisms are:
The Wallet Provider Backend (WB) provides a website, where the user can authenticate with the revocation mechanism established during wallet activation. The WB tries to verify and associate the authentication to a specific Wallet Instance in its WB account database. If the WB successfully matches the incoming revocation request to a Wallet Instance, it takes the following actions:
- signaling to the Wallet Instance to self-lock and delete all local data
- signaling to the PID/EAA Providers by setting the status of the Wallet Instance Attestation to revoked that will trigger the revocation chaining.
- signaling to the other backends (MDVM and RWSCA) to mark the Wallet Instance as revoked as well, see revocation propagation between backends.
Revocation code¶
For the revocation code mechanism the WB generates a random secret (wb_wi_revocation_secret) with sufficient entropy during wallet activation. The WB stores the hash of wb_wi_revocation_secret in the WB account database. Storing the hash ensures that potential database leaks do not allow to revoke arbitrary Wallet Instances. The WB uses the raw wb_wi_revocation_secret and encodes it as a single string using Bech32. Bech32 encoding combines base32 encoding (with a good tradeoff between size and user convenience to avoid similar characters) and BCH error detection/correction (in case users need to type the revocation code manually). The resulting revocation code wb_wi_revocation_code is returned to the WI. An example for the Bech32-encoded wb_wi_revocation_code:
The user is instructed about the revocation mechanism and the website for wallet revocation. The WI offers the user different options to store the code:
- copy the code to the clipboard
- export the code within a PDF file for cloud storage or printing
- storage in a synced password manager
If the user wants to revoke the WI, it has to open the WB's revocation website, either manually or following a link/QR-Code in the PDF. The user is once more explained the consequences of wallet revocation. The website contains a single text input form for the Bech32-encoded wb_wi_revocation_code. Depending on the type of storage the user has to:
- paste the code that the user copied from external storage
- click the link or scan the QR-Code (which prefills the text form)
- fill the text form through the synced password manager
The WB will decode the wb_wi_revocation_code, identify the account by wb_wi_id and verify the revocation request by wb_wi_revocation_secret and proceed to take actions to revoke the WI.
The user's revocation code is created during wallet activation. It can not be changed, but the user may go to the settings to view the revocation code again. Later iterations of the WI may allow to renew the revocation code, but is currently not supported.
Revocation Setup¶
The following section describes the flow for the setup of user-initiated wallet revocation using the revocation code.
The following table describes the steps of the sequence diagram in more detail:
| No | Description |
|---|---|
| 001 | The wb_wi_revocation_code is generated by the WB and returned to the WI during Wallet Registration (see Steps 011 - 014 of the Create Account operation). The revocation code section describes its generation and encoding in more detail. |
| 002 | The WI shows the user an introduction to the wallet revocation mechanism and the options to store the wb_wi_revocation_code. |
| 003 | The WI offers multiple options to the user to store the wb_wi_revocation_code. This includes:
|
| 004 | The first option is to store the wb_wi_revocation_code to the clipboard of the mobile operating system. iOS implementations must use UIPasteBoard with localOnly and expirationDate of 60 seconds. Android implementations must follow the secure clipboard handling using ClipDescription.EXTRA_IS_SENSITIVE, the data is flushed automatically after some time. The text copied to the clipboard gives a brief introduction and also provide the URL to the revocation website. The wb_wi_revocation_code should also be visible, so users may take a screenshot instead. |
| 005 - 006 | The WI calculates a URL to the WB's revocation website and appends the wb_wi_revocation_code as a query parameter (for automatically filling the text form). The WI locally generated a PDF using native platform APIs. The PDF gives a brief introduction to the wallet revocation scenario and provides the URL as a click-able link and as a QR-Code. |
| 007 | The WI uses the Autofill functionality to store the wb_wi_revocation_code in the password manager. iOS implementations must use ASPasswordCredential to store the wb_wi_revocation_code. The WI app and WB revocation website must be connected using associated domains. Android implementation must suggest the storage using the AutofillManager by marking the UI element containing wb_wi_revocation_code with AUTOFILL_HINT_NEW_PASSWORD. The WI app and WB revocation website must be connected using Digital Asset Links. |
Wallet Revocation¶
The following section describes the flow for the wallet revocation initiated by the user. The flow ends with the publication of a revocation event to the revocation queue. The revocation operations that the backends execute upon fetching the event are described as dedicated Revoke Account operations of the WB, the MDVM and the RWSCA.
The following table describes the steps of the sequence diagram in more detail:
| No | Description |
|---|---|
| 001 - 002 | The user opens the WB's revocation website. The user manually types or copies the wb_wi_revocation_code from external storage, such as messenger, e-mail or physical notes. |
| 003 - 004 | The user opens the PDF to click the embedded link or scans the embedded QR-Code. This opens the WB' revocation website on the user's browser and prefills the input for the wb_wi_revocation_code from the query parameter. |
| 005 - 006 | The user opens the WB's revocation website. The password manager suggests to fill the wb_wi_revocation_code. |
| 007 | The browser website locally checks the entered Bech32-encoding of wb_wi_revocation_code for error detection. |
| 008 | The WB's revocation endpoint is public and is therefore protected against automated abuse and application-layer denial-of-service through rate limiting. As the endpoint is unauthenticated, the WB applies per-IP rate limits and throttles repeated requests. Protections may be added by non-interactive challenges issued by the WB , e.g. Proof-of-Work (PoW) captcha. These measures protect endpoint availability; they are not required to prevent guessing of the wb_wi_revocation_code. |
| 009 | The browser sends a request to the WB's revocation endpoint containing the wb_wi_revocation_code and the challenge solution. |
| 010 | The WB decodes the wb_wi_revocation_code to recover the wb_wi_revocation_secret and calculates its SHA-256 hash in the same way as during wallet registration and performs a look-up against the WB account database to identify whether the hash matches against a valid wb_wi_id. If no entry was found, the WB endpoint returns an error. The WB also retrieves the possession factor wi_mdvm_auth_pubk stored for the wb_wi_id, which is used to propagate the revocation to the other backends. |
| 011 | The WB publishes a revocation event to the revocation queue. The event contains the JWK thumbprint of the wi_mdvm_auth_pubk, which identifies the Wallet Instance across all backends, see revocation propagation between backends for details. All three backends fetch the event and execute their respective Revoke Account operation (WB, MDVM and RWSCA) to block the account. |
| 012 - 013 | Once the WB has verified the revocation request and published the revocation event, it returns a success response to the revocation website, which displays a confirmation of the successful wallet revocation to the user. The revocation operations of the backends are executed asynchronously to this response. |
Wallet Revocation by the MDVM¶
If the Mobile Device Vulnerability Management (MDVM) determines that revocation actions are required, this can be triggered by two conditions:
- The MDVM identifies a new vulnerability, requiring revocation for all Wallet Instances associated with affected device classes.
- During the renewal of an MDVM token, a security issue is detected for an individual device.
In both cases, the MDVM identifies the affected Wallet Instances. For device class–based vulnerabilities, this includes all Wallet Instances matching the vulnerable device class. For individual device issues, only the specific affected Wallet Instance is targeted.
The MDVM marks the affected accounts as revoked by setting their mdvm_wi_state to REVOKED and then requests the execution of revocation actions at the other two backends by publishing revocation events containing the JWK thumbprints of the shared possession factor public keys (wi_mdvm_auth_pubk) to the revocation queue, see revocation propagation between backends. Upon fetching these events, the WB and the RWSCA execute their respective Revoke Account operations (WB and RWSCA) to block the accounts.
The following table describes the steps of the sequence diagram in more detail:
| No | Description |
|---|---|
| 001 - 002 | The MDVM filters the MDVM account database for all Wallet Instances that are effected by known vulnerabilities. |
| 003 - 004 | The WI attempts to get a new MDVM token (Android or iOS). During validation of MDVM signals, the MDVM detects a compromise of the WI's mobile device. |
| 005 | The MDVM marks the affected accounts as revoked by setting their mdvm_wi_state to REVOKED. This ensures that the revoked Wallet Instances can no longer renew their MDVM token, see the MDVM renewal flows. |
| 006 | The MDVM publishes one revocation event per affected Wallet Instance to the revocation queue. Each event contains the JWK thumbprint of the wi_mdvm_auth_pubk, which identifies the Wallet Instance across all backends, see revocation propagation between backends for details. Upon fetching these events, the WB and the RWSCA execute their respective Revoke Account operations (WB and RWSCA) to block the accounts. |
Wallet Revocation by the Wallet Provider¶
The Wallet Provider performs revocation actions if a security incident affecting the trustworthiness of the cryptographic keys managed by the RWSCA, e.g. for the following reasons:
- a compromise of the WSCD hardware or firmware renders the managed keys untrustworthy.
- a vulnerability in the WSCA code compromises the integrity of key operations performed by the RWSCA.
- a compromise of the operating environment undermines the security guarantees of the RWSCA.
In all cases, the WTEs attesting to the keys managed by the RWSCA must be revoked to ensure that PID Providers can no longer rely on credentials bound to them. Therefore, the RWSCA revoke the rwsca_wte_status index of the WSCA by setting the status list values to INVALID in the Token Status List. Note that the Token Status List contains a single entry for the entire RWSCA, as a compromise of the RWSCA would affect all RWSCA user accounts.
As described in Revocation Chaining, PID Providers regularly monitor the revocation status of WTEs associated with their issued credentials. Once a WTE revocation is detected, the PID Provider revokes the associated PID Batch Credentials and PID refresh token, completing the revocation chain.
Revocation Chaining¶
Revocation chaining in the EUDI Wallet ecosystem refers to a linkage of the status of both the Wallet Instance Attestation (WIA) and Wallet Trust Evidence (WTE) to the credentials bound to them. This mechanism ensures that PID credentials are revoked after a wallet revocation has been conducted, e.g. initiated either by the user or the MDVM. Revocation chaining is mandatory for the PID Providers (see CIR 2024/2977 Article 5 4. b), therefore Wallet Providers are required to offer revocation status information through issued WIAs and WTEs. The following section describes the different stages of revocation chaining.
The following picture summarizes the process:

During PID issuance, the WI requests a WIA from the Wallet Backend (WB) and a WTE from the Remote WSCA (RWSCA). The WB maintains the status of the WIA representing the validity of this specific WI, while the RWSCA maintains the status of the WTE representing the validity of the whole WSCD in their respective databases. The PID Provider issues PID Batch Credentials each containing unique status information for revocation and stores a mapping of both WIA/WTE status and the issued PID Batch Credential statuses in its database. The PID Provider is required to regularly check the WIA/WTE status for all its issued PID Batch Credentials and Refresh Tokens.
If an individual Wallet Instance is revoked by the user or due to security issues of the individual device or a vulnerability of the entire device class by the MDVM, the WB revokes all WIAs associated with that specific WI by updating and publishing the Token Status List. As soon as the PID Provider recognizes the revocation of a WIA that was used during issuance through the WB's Token Status List, it has to revoke the associated PID Batch Credentials as well.
If the Wallet Secure Cryptographic Application (WSCA) is revoked by the Wallet Provider due to compromise or security vulnerability, the Wallet Provider revokes all WTEs associated with that WSCA either by setting the rwsca_wte_status index to revoked in the Token Status List, or by requesting the ecosystem PKI to revoke the WTE signing certificate. While a Token Status List index of a WIA corresponds to a particular WI, the status of a WTE covers the status of the entire WSCA. Therefore, the RWSCA maintains a single status for the entire WSCA. As soon as the PID Provider recognizes the revocation of a WTE that was used during issuance (either through the RWSCA's Token Status List or through certificate validation) it has to revoke the associated PID Batch Credentials as well.
The revocation is "chained" from the Wallet Provider to the PID Provider. The Relying Party only verifies the revocation status of the PID credential and thus does not need to manage or understand the security status communicated by WIA and WTE. Once the PID has been revoked as part of this chaining process, the revocation is permanent and cannot be reversed. The revocation chaining mechanism operates entirely through trustworthy backend systems and is therefore effective even if the Wallet Instance is compromised or manipulated.
While the primary subject of the revocation chaining is the PID, the mechanism may be used by EAA Providers to get additional security guarantees for their issued EAA credentials. EAA Providers benefit from wallet revocation initiated by the user and by the MDVM for device class vulnerabilities.
Wallet Instance Self-locking¶
tbd
Revocation Propagation between Backends¶
A Wallet Instance is registered independently at all three backends (MDVM, WB and RWSCA), each maintaining its own account record. When a Wallet Instance is revoked by the user or by the MDVM, the revocation is propagated to the other two backends, so that each backend can independently reject any further interaction with the revoked Wallet Instance.
The only identifier shared across all three backends is the possession factor wi_mdvm_auth_pubk, which is established during MDVM registration and stored next to the respective account identifier at the MDVM (mdvm_wi_id), the WB (wb_wi_id) and the RWSCA (rwsca_account_id). It therefore serves as the join key for propagating revocations between backends.
For this purpose, the backends share a distributed message queue that is dedicated to revocation events (the revocation queue). When a revocation is triggered, the initiating backend (WB or MDVM) publishes one revocation event per affected Wallet Instance to the queue. All backends continuously fetch the revocation events from the queue. On consumption, each backend executes its dedicated Revoke Account operation (WB, MDVM and RWSCA): it looks up the affected account using the wi_mdvm_auth_pubk and marks the corresponding internal state (mdvm_wi_state, wb_wi_state or rwsca_account_state) as REVOKED, thereby blocking the account. Each backend then rejects further user authentication for the revoked account.
The wi_mdvm_auth_pubk needs to be serialised in a single canonical byte representation across all backends to avoid matching failures due to different encodings and serialisations (e.g. compressed or uncompressed, DER or JWK, or serialised with JSON members in a different order). This is security-critical, as two representations of the same key could fail to match and thus not properly propagate the revocation. To avoid this, the backends derive the JWK Thumbprint of the key (RFC 7638) with SHA-256 hash and use it as the canonical value that is published to the revocation queue and used to look up and compare wi_mdvm_auth_pubk across backends. Because the construction ignores encoding choices, member order, and non-essential parameters, every backend computes the same thumbprint for the same key, independently and without coordination. Each backend stores this thumbprint as an indexed lookup key next to the full wi_mdvm_auth_pubk, which is retained for verifying the Wallet Instance's proofs of possession during authentication.
The queue is only reachable within the Wallet Provider's backend infrastructure, producer and consumer connections are mutually authenticated via mTLS and write access to the revocation queue is restricted to the WB and the MDVM. The queue decouples the backends from each other: revocation events are persisted by the queue, so a temporarily unavailable backend processes any pending revocation events as soon as it is available again, instead of the initiating backend having to retry failed requests. Events are delivered at least once and processing is idempotent, as marking an already revoked account as REVOKED has no further effect. Every backend, including the one that published an event, consumes all revocation events and executes its Revoke Account operation; if the initiating backend has already marked the affected account as revoked (as the MDVM does when it initiates the revocation), processing its own event has no further effect.