Skip to main content

EAA ConformanceETSI TS 119 472-1 (v1.2.1) clause 5.6.2

QEAA-5.6.2-02:QEAA protected header must include x5u and x5t#S256

  • shall
  • QEAA
  • SD-JWT VC
  • Issuer
  • Verifier

Spec text

The Protected Header of the digital signature signing a SD-JWT VC QEAA shall contain the x5u and the x5t#S256 header parameters, specified in IETF RFC 7515. (Note: this requirement meets requirement (h) in Annex V of Regulation (EU) 2024/1183 for QEAA, which requires the location where the certificate supporting the qualified electronic signature or qualified electronic seal is available free of charge. The x5t#S256 header parameter is required for security reasons.)

ETSI TS 119 472-1 (v1.2.1), clause 5.6.2, page 34.

In plain English

Plain-English explanation has not yet been written for this control. The spec text above carries the normative requirement.

Conformance check

Not auto-tested yet. The rule above is documented but no automated test runs against it.

Last reviewed against ETSI TS 119 472-1 v1.2.1 on 2026-05-01.

iGrant.io’s EAA Issuer SDK handles this control out of the box. Talk to our team about closing your conformance gaps.

Chat on WhatsAppEmail support