# Verification Process To verify a **digital credential**, three key elements must be resolved and validated: * **Issuer Verification (Ensuring Trust & Legitimacy)** * This involves checking the **issuer’s cryptographic signature** and **identity**. * The verifier must determine **who the issuer is** and whether they are authorized to issue the credential according to a recognized **trust framework**. * **Subject Verification (Validating the Holder’s Identity)** * The verifier must confirm that the **credential belongs to the person presenting it.** * This process can be **purely cryptographic**, using authentication mechanisms to establish ownership. * **Credential Format & Status (Ensuring Validity & Integrity)** * The credential's **type and structure** must match the expected standard. * Its **revocation status** must be checked, as credentials can be revoked temporarily or permanently by either the **issuer** or the **subject**. While cryptographic verification ensures **authenticity**, additional **trust registry lookups** are often required to resolve dynamic information that may change after issuance. Trust registries enable: * **Issuer and subject key rotations** without requiring credential reissuance. * **Real-time validation** of issuer legitimacy and credential revocation status. * **Scalable, long-term credential usability** by decoupling identity resolution from the original credential structure. Trust registries can be **centralized** (e.g., government or industry-run) or **decentralized** (e.g., blockchain-based ledgers). At **Blerify**, we support both, but **centralized trust registries** face limitations, particularly in **scalability**. Conversely, **decentralized trust registries** provide **publicly accessible roots of trust**, ensuring greater **interoperability** and **resilience**. However, it is **critical not to store sensitive, personal, or private data in a decentralized trust registry**, even in encrypted form. A well-designed architecture **leverages decentralized registries for scalability while preserving privacy and security.**
What is verified (high level)?What is verified (specific)?How is it verified?Verification mechanism
IssuerTo which issuer the credential signature belongs toResolving DID identifier against a trust registryCall to Trust Registry
IssuerIf the issuer signed that same credential which is being presented by a subject to a third partyApplying a cryptographic algorithm to check issuer’s signature validityRunning Cryptographic algorithm
SubjectIf the subject has rotated or delegated keys associated to the identity to which the credential was issued toResolving DID identifier against a trust registryCall to Trust Registry
SubjectIf cryptographic signature is validApplying a cryptographic algorithm to check issuer’s signature validityRunning Cryptographic algorithm
Credential FormatIf credential format follows recognized standards and templatesResolving credential context, schema, structure, and cryptographic elementsCall to Trust Registry
Credential StatusIf credential has been revokedChecking against trust registryCall to Trust Registry
We have built a **suite of Solidity smart contracts for EVM-compatible blockchain networks**, to implement the **first-of-its-kind Decentralized Root of Trust, combining smart-contract-based Key Directories and Trusted Lists** to resolve complex issuer identity structures securely and transparently. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.blerify.com/blerify-overview/user-centric-identity/verification-process.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.