Digital Identity

ZenoWallet

Your Credentials. Your Control.

Standards-based verifiable credential wallet for web and mobile. Receive, hold, and present digital credentials with selective disclosure — share only what's needed. Works with any OID4VCI/OID4VP-compliant issuer.

Try It Request Demo
Web + Mobile
Platforms
SD-JWT + mdoc
Credential Formats
Offline
QR Presentation
Philosophy

Standards-First, Vendor-Free

ZenoWallet works with any compliant issuer — not just ZenoAuth. Built on open standards so you're never locked into a single vendor's ecosystem.

OID4VC
OpenID for Verifiable Credentials
SD-JWT
Selective Disclosure (RFC 9901)
mdoc
ISO 18013-5 Mobile Documents
HAIP
High Assurance Interop Profile
Features

Complete Credential Lifecycle

Receive credentials from any issuer, store them securely, and present them with fine-grained control over what you share.

Receive via QR or Email

Scan QR codes or follow email links to receive credentials via the OID4VCI protocol. Pre-authorized and authorization code flows supported.

Selective Disclosure

Share only the claims needed. Prove you're over 21 without revealing your birthdate. Prove employment without exposing your role or salary.

Offline QR Presentation

Present credentials at physical locations via QR code without internet connectivity. Perfect for events, borders, and air-gapped environments.

Biometric Protection

WebAuthn (face/fingerprint) on web, Face ID and fingerprint on mobile. Every presentation requires biometric confirmation.

Hardware Key Binding

Mobile: keys stored in secure enclave (non-exportable). Web: encrypted IndexedDB with AES-256-GCM and PBKDF2 key derivation.

Corporate White-Labeling

Customize branding with your logo, colors, and organization name. Deploy as "Acme ID" for employees while maintaining per-issuer credential branding.

Architecture

Three Packages, One Core

A shared TypeScript core library powers both the web wallet and mobile SDK. Write credential logic once, deploy everywhere.

@zenowallet/core

Platform-agnostic shared library

  • SD-JWT parsing & selective disclosure
  • OID4VCI / OID4VP protocol logic
  • DID resolution (did:web, did:jwk)
  • Encrypted backup & restore

zenowallet-web

Next.js 15 web application

  • React 19, Tailwind CSS 4, shadcn/ui
  • PWA with installable manifest
  • WebAuthn biometric gates
  • Dark/light mode, white-label theming

@zenowallet/react-native

Embeddable mobile SDK

  • React hooks: useWallet, usePresent, useBiometric
  • Secure enclave key storage
  • SD-JWT + mdoc credential formats
  • Headless API for custom UIs
Security

Credential Security by Design

Every layer of ZenoWallet is designed to protect your digital identity.

Key Binding JWT

Cryptographic proof of key possession on every presentation. Prevents credential replay by binding presentations to the holder's key.

Nonce Validation

Every presentation uses a unique nonce to prevent replay attacks. Single-use VP tokens with assertion ID logging.

Revocation Checking

Background polling for credential status updates via W3C Bitstring Status List. Know immediately when a credential is revoked.

Verifier Identity Display

The verifier's identity is prominently displayed before every presentation. Know exactly who is requesting your data for phishing resistance.

Standards

Built on Open Standards

Full interoperability with the emerging digital credential ecosystem. No proprietary protocols.

Issuance & Presentation

  • OID4VCI 1.0 (credential issuance)
  • OID4VP 1.0 (credential presentation)
  • DCQL (Digital Credentials Query Language)
  • Presentation Exchange 2.0

Credential Formats

  • SD-JWT VC (RFC 9901)
  • mdoc / mDL (ISO 18013-5)
  • W3C VC Data Model 2.0
  • W3C Bitstring Status List (revocation)

Identity & Trust

  • W3C DID (did:web, did:jwk)
  • HAIP (High Assurance Interop Profile)
  • ECDSA P-256 signing (OID4VC HAIP)
  • EU eIDAS 2.0 ready
Use Cases

Digital Credentials for Every Scenario

From corporate employee IDs to government-issued documents — ZenoWallet handles it all.

Employee Identity

White-label the wallet as your corporate identity app. Issue employee badges via ZenoAuth, present them digitally at any access point.

Age-Gated Access

Prove you're over 18 or 21 without revealing your birthdate, name, or any other identifying information. True selective disclosure.

KYC & Onboarding

Present verified identity credentials during customer onboarding. Reduce friction while maintaining compliance with identity verification requirements.

Cross-Organization Trust

Accept credentials from partner organizations without complex SAML/OIDC federation setup. Trust their issuer DID, accept their credentials.

Put Digital Credentials in Your Users' Hands

Deploy a standards-compliant credential wallet for your organization. White-label it, embed it, or use it standalone.

Try It Request Demo