Keys

Create cryptographic keys using different key algorithms and storage types. The public key can be seen in the system (publicKey) and is used to verify credentials. The private key is stored in the system and used to sign credentials, but cannot be exported and is not visible through the API.

At least one key pair is needed to create a DID, and a DID is required to issue, hold, or verify credentials.

This resource also generates Certificate Signing Requests, a necessary component of ISO mdoc issuance and verification.

📄️ List keys

Returns a list of keys created in the current organization.

📄️ Create a key

Creates a key within the current organization, which can be used to create a DID.

📄️ Generate a CSR

Generates a Certificate Signing Request (CSR). These are used to create mDL DS certificates, enabling mdoc issuance. See the [mdoc guide](/configure/iso-mdoc) for more.

📄️ Check certificate

Checks that a document signing certificate (DSC) was signed by the CA from the configuration and that the subject public key matches the specified key from the system.

📄️ Retrieve a key

Returns information on a specified key in the current organization.