@simbachain/simba-chain-vc 0.3.7

package/.gitlab-ci.yml

@@ -0,0 +1,63 @@
+include:
+- project: simbachain/devops/gitlab-ci-templates
+  file: security/security-scanning-datadog.yml
+  inputs:
+    stage: .pre
+- project: simbachain/devops/gitlab-ci-templates
+  file: release/cocogitto/semantic-release.yml
+  inputs:
+    stage: deploy
+- project: simbachain/devops/gitlab-ci-templates
+  file: publish/publish-datadog-metadata.yml
+  inputs:
+    stage: .post
+
+image: node:lts-bookworm
+
+cache:
+  key: ${CI_COMMIT_REF_SLUG}
+  paths:
+  - .npm
+
+.rule_skip_on_tags_and_releases: &rule_skip_on_tags_and_releases
+  rules:
+  - if: $CI_COMMIT_TAG || $CI_COMMIT_MESSAGE =~ /^chore\(release\):/ || $CI_COMMIT_MESSAGE =~ /^chore\(version\):/ # Don't run for tags, or releases
+    when: never
+  - when: on_success
+
+test:
+  stage: test
+  variables:
+    DATADOG_API_KEY: "${DD_API_KEY}"
+    DD_SERVICE: ${CI_PROJECT_NAME}
+    DD_SITE: "datadoghq.com"
+    DD_INSIDE_CI: "true"
+    DD_ENV: ci
+  before_script:
+  - npm config set //gitlab.com/api/v4/groups/12257889/-/packages/npm/:_authToken ${NPM_TOKEN}
+  - npm ci --cache .npm --prefer-offline
+  script:
+  - npm install
+  - npm run test-ci
+  after_script:
+  - npx @datadog/datadog-ci junit upload junit.xml
+  artifacts:
+    when: always
+    reports:
+      junit:
+      - junit.xml
+  <<: *rule_skip_on_tags_and_releases
+
+publish:
+  stage: deploy
+  cache:
+    key: ${CI_COMMIT_REF_SLUG}
+    paths:
+    - .npm/
+  before_script:
+  - npm config set "//${CI_SERVER_HOST}/api/v4/projects/${CI_PROJECT_ID}/packages/npm/:_authToken" "${CI_JOB_TOKEN}"
+  - npm ci --cache .npm --prefer-offline
+  script:
+  - npm publish
+  rules:
+  - if: $CI_COMMIT_TAG =~ /^v\d+\.\d+\.\d+[-]?.*$/

package/CHANGELOG.md

@@ -0,0 +1,149 @@
+# Changelog
+All notable changes to this project will be documented in this file. See [conventional commits](https://www.conventionalcommits.org/) for commit guidelines.
+
+- - -
+## v0.3.7 - 2026-02-06
+#### Bug Fixes
+- change package name back to lowercase - (8a1fec8) - Katherine Smith
+
+- - -
+
+## v0.3.6 - 2026-02-06
+#### Bug Fixes
+- revert package name change - (45ad7d6) - Katherine Smith
+
+- - -
+
+## v0.3.5 - 2026-02-06
+#### Bug Fixes
+- change package name - (f005990) - Andrew Harrison
+
+- - -
+
+## v0.3.4 - 2026-02-06
+#### Bug Fixes
+- add doc caching loader - (904fde7) - Andrew Harrison
+
+- - -
+
+## v0.3.3 - 2025-07-24
+#### Bug Fixes
+- didlib test - (8a719b3) - Andrew Harrison
+
+- - -
+
+## v0.3.2 - 2025-07-24
+#### Bug Fixes
+- didlib test - (f4eaf30) - Andrew Harrison
+
+- - -
+
+## v0.3.1 - 2025-07-24
+#### Bug Fixes
+- didlib test - (edbcdf7) - Andrew Harrison
+
+- - -
+
+## v0.3.0 - 2025-03-13
+#### Documentation
+- **(README.md)** add Datadog CI and security scanning links - (21ca1fc) - Kieran David Evans
+#### Features
+- **(.gitlab-ci.yml)** add security scanning configuration - (c82a3b9) - Kieran David Evans
+
+- - -
+
+## v0.2.1 - 2025-03-13
+#### Bug Fixes
+- **(cog.toml)** correct changelog file path - (d01a462) - Kieran David Evans
+
+- - -
+
+## v0.1.18 - 2025-03-13
+#### Bug Fixes
+- **(package)** correct package name in package.json - (03818aa) - Kieran David Evans
+
+- - -
+
+## v0.1.17 - 2025-03-13
+#### Bug Fixes
+- **(npm)** update registry URLs in .npmrc and package.json - (c05b463) - Kieran David Evans
+
+- - -
+
+## v0.1.16 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm authentication method in .gitlab-ci.yml - (57bf41b) - Kieran David Evans
+
+- - -
+
+## v0.1.15 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm registry URLs in .gitlab-ci.yml, .npmrc, and package.json - (ddfbb6b) - Kieran David Evans
+
+- - -
+
+## v0.1.14 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm authentication token configuration in .gitlab-ci.yml - (3724196) - Kieran David Evans
+
+- - -
+
+## v0.1.13 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm configuration in .gitlab-ci.yml and package.json - (30024a4) - Kieran David Evans
+
+- - -
+
+## v0.1.12 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm authentication token in .gitlab-ci.yml and package.json - (7338914) - Kieran David Evans
+
+- - -
+
+## v0.1.11 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm registry URL in .gitlab-ci.yml and package.json - (3e89cab) - Kieran David Evans
+
+- - -
+
+## v0.1.10 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update junit command in .gitlab-ci.yml - (6f1853a) - Kieran David Evans
+
+- - -
+
+## v0.1.9 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm registry URL in .gitlab-ci.yml and package.json - (66f6359) - Kieran David Evans
+
+- - -
+
+## v0.1.8 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm registry URL in .gitlab-ci.yml and package.json - (592efa7) - Kieran David Evans
+
+- - -
+
+## v0.1.7 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm authentication method in .gitlab-ci.yml - (7c79bf3) - Kieran David Evans
+#### Miscellaneous Chores
+- remove .npm - (7c05a24) - Kieran David Evans
+
+- - -
+
+## v0.1.6 - 2025-03-12
+#### Bug Fixes
+- **(ci)** update npm cache paths in .gitlab-ci.yml and cog.toml - (7aa64d2) - Kieran David Evans
+- **(ci)** update Datadog CI integration in .gitlab-ci.yml - (e6e07bb) - Kieran David Evans
+- **(ci)** clean npm cache in .gitlab-ci.yml - (92764fd) - Kieran David Evans
+- **(ci)** update npm cache path in .gitlab-ci.yml - (02bbbd9) - Kieran David Evans
+- **(ci)** update junit command in .gitlab-ci.yml - (65ff71e) - Kieran David Evans
+- **(ci)** update npm registry configuration in .gitlab-ci.yml and package.json - (9d5e44c) - Kieran David Evans
+- **(cog.toml)** remove unnecessary options from release bump profiles - (1b73d67) - Kieran David Evans
+- **(cog.toml)** standardize skip_untracked option in configuration - (f687f44) - Kieran David Evans
+- **(cog.toml)** remove skip_untracked_files option from release bump profiles - (cb70226) - Kieran David Evans
+
+- - -
+
+Changelog generated by [cocogitto](https://github.com/cocogitto/cocogitto).

package/LICENCE

@@ -0,0 +1,20 @@
+MIT License
+
+Copyright (c) 2024 SIMBA Chain Inc. https://simbachain.com
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,32 @@
+# simba-chain-vc
+
+- [Datadog CI Details](https://app.datadoghq.com/ci/pipelines/ejdY7rwW6JZg/SIMBAChain%2Fsimba-enterprise-platform%2Fui%2Flibraries%2Fsimba-chain-vc/ci/main?query=ci_level%3Apipeline%20env%3Aci%20%40git.repository.id%3Agitlab.com%2FSIMBAChain%2Fsimba-enterprise-platform%2Fui%2Flibraries%2Fsimba-chain-vc%20%40ci.pipeline.name%3ASIMBAChain%2Fsimba-enterprise-platform%2Fui%2Flibraries%2Fsimba-chain-vc%20%40ci.provider.instance%3Agitlab-ci%20%40git.branch%3Amain%20%40ci.pipeline.fingerprint%3AejdY7rwW6JZg&fromUser=false&index=cipipeline&start=1741262860714&end=1741867664367&paused=false)
+- [Datadog Security Scanning](https://app.datadoghq.com/ci/code-analysis/gitlab.com%2Fsimbachain%2Fsimba-enterprise-platform%2Fui%2Flibraries%2Fsimba-chain-vc/main/c82a3b9e90e43a3b4afb7148f6a2c746f7b989e0/code-vulnerabilities?query=%40git.repository.id%3Agitlab.com%2Fsimbachain%2Fsimba-enterprise-platform%2Fui%2Flibraries%2Fsimba-chain-vc%20%40git.branch%3Amain%20%40git.commit.sha%3Ac82a3b9e90e43a3b4afb7148f6a2c746f7b989e0%20%40static_analysis.result.category%3Asecurity%20%40static_analysis.result.item_type%3Astatic_analysis_violation%20-%40static_analysis.rule.is_testing%3Atrue)
+
+
+This library provides utilities for working with DID Documents,
+Verifiable Credentials (VCs) and Presentations (VPs).
+
+Currently it is focussed on the minimal client side capabilities of:
+
+1. Creating SIMBA VPs given VCs that have been provided by the server where a
+   local public key/ethereum address is mapped to the DID subject of that VC.
+2. Finding the verification method (aka DID Document key reference) mapped to a public key or address.
+3. Determining issuer and subject DIDs given a VC.
+4. Creating a new private key from which public key and address can be derived.
+5. Signing arbitrary data outside of the ethereum use case.
+6. Creating JWK serializations of public and private keys.
+7. Creating a multicodec serialization of public keys.
+
+Note that (almost) all functionality is currently based on ERC 191 capabilities that are
+used by the ERC191 crypto suite defined by SIMBA.
+Therefore secp256k1 keys are assumed and when we say `public key` we usually mean `ethereum address`, as the address is the
+public part of the key pair as far as blockchain and the SIMBA ERC191 suites is concerned.
+
+The non-ethereum signing (#5 above) is used to sign DPoP headers. These signatures
+are verified by the `public key` NOT an `ethereum address`.
+For Secp256k1, this signing uses deterministic signing (no salt/nonce) and returns
+a 64 byte signature over 32 bytes of data. It is assumed that any data that is not 32 bytes needs to be hashed and the
+hashing alg is SHA256. An optional nonce can be added to this signing which is simply appended to the data before signing.
+
+Multicodec public keys (not addresses) can be used as verification methods in DID documents.

package/cog.toml

@@ -0,0 +1,29 @@
+from_latest_tag = true
+ignore_merge_commits = true
+skip_untracked = true
+branch_whitelist = [
+  "main",
+]
+pre_bump_hooks = [
+  "yq --inplace '.version = \"{{version}}\"' --input-format json --output-format json package.json",
+]
+post_bump_hooks = [
+  "git push origin HEAD:main",
+  "git push origin {{version_tag}}",
+]
+tag_prefix = "v"
+
+
+
+[bump_profiles.release]
+pre_bump_hooks = [
+  "yq --inplace '.version = \"{{version}}\"' --input-format json --output-format json package.json",
+]
+post_bump_hooks = [
+  "git push origin HEAD:main",
+  "git push origin {{version_tag}}",
+]
+
+[changelog]
+path = "CHANGELOG.md"
+template = "default"

package/contexts/Anchor2025.jsonld

@@ -0,0 +1,133 @@
+{
+  "@context": {
+    "id": "@id",
+    "type": "@type",
+    "@protected": true,
+    "@version": 1.1,
+    "dataKey": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#dataKey",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "dataProof": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#dataProof",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "treeNode": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#treeNode",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "treeNodeValue": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#treeNodeValue",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "treeRoot": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#treeRoot",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "transaction": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#transaction",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "chain": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#chain",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "contract": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#contract",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "sensitivity": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#sensitivity",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "adl": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#adl",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "dci": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#dci",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "exid": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#exid",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "lot": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#lot",
+      "@type": "http://www.w3.org/2001/XMLSchema#string"
+    },
+    "derivedProof": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#derivedProof",
+      "@type": "@id"
+    },
+    "ProvenanceCredential": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#ProvenanceCredential",
+      "@type": "@id"
+    },
+    "TrustedIssuerCredential": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#TrustedIssuerCredential",
+      "@type": "@id"
+    },
+    "TrustedIssuerSubjectCredential": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#TrustedIssuerSubjectCredential",
+      "@type": "@id"
+    },
+    "IdentityCredential": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#IdentityCredential",
+      "@type": "@id"
+    },
+    "BlankNode": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#BlankNode",
+      "@type": "@id"
+    },
+    "NamedGraph": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#NamedGraph",
+      "@type": "@id"
+    },
+    "augmentation": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#augmentation",
+      "@type": "@id"
+    },
+    "proofReference": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#proofReference",
+      "@type": "@id"
+    },
+    "trustedIssuer": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#trustedIssuer",
+      "@type": "@id"
+    },
+    "Issuer": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#Issuer",
+      "@context": {
+        "@protected": true,
+        "id": "@id",
+        "type": "@type",
+        "issuerDomain": {
+          "@id": "https://simbachain.github.io/context/proof/anchor#issuerDomain",
+          "@type": "http://www.w3.org/2001/XMLSchema#string"
+        },
+        "issuerClaims": {
+          "@id": "https://simbachain.github.io/context/proof/anchor#issuerClaims",
+          "@type": "@id",
+          "@container": "@set"
+        }
+      }
+    },
+    "CredentialProof": {
+      "@id": "https://simbachain.github.io/context/proof/anchor#CredentialProof",
+      "@context": {
+        "@protected": true,
+        "id": "@id",
+        "type": "@type",
+        "credential": {
+          "@id": "https://simbachain.github.io/context/proof/anchor#credential",
+          "@type": "@id"
+        },
+        "credentialProofValue": {
+          "@id": "https://simbachain.github.io/context/proof/anchor#credentialProofValue",
+          "@type": "http://www.w3.org/2001/XMLSchema#string"
+        }
+      }
+    }
+  }
+}

package/contexts/ERC1912025.jsonld

@@ -0,0 +1,93 @@
+{
+  "@context": {
+    "id": "@id",
+    "type": "@type",
+    "@protected": true,
+    "@version": 1.1,
+    "ERC191Key2025": {
+      "@id": "https://simbachain.github.io/context/proof#ERC191Key2025",
+      "@context": {
+        "@protected": true,
+        "id": "@id",
+        "type": "@type",
+        "controller": {
+          "@id": "https://w3id.org/security#controller",
+          "@type": "@id"
+        },
+        "revoked": {
+          "@id": "https://w3id.org/security#revoked",
+          "@type": "http://www.w3.org/2001/XMLSchema#dateTime"
+        },
+        "account": {
+          "@id": "https://simbachain.github.io/context/proof#account",
+          "@type": "https://simbachain.github.io/context/proof#account"
+        }
+      }
+    },
+    "ERC191Signature2025": {
+      "@id": "https://simbachain.github.io/context/proof#ERC191Signature2025",
+      "@context": {
+        "@protected": true,
+        "id": "@id",
+        "type": "@type",
+        "challenge": "https://w3id.org/security#challenge",
+        "created": {
+          "@id": "http://purl.org/dc/terms/created",
+          "@type": "http://www.w3.org/2001/XMLSchema#dateTime"
+        },
+        "domain": "https://w3id.org/security#domain",
+        "expires": {
+          "@id": "https://w3id.org/security#expiration",
+          "@type": "http://www.w3.org/2001/XMLSchema#dateTime"
+        },
+        "nonce": "https://w3id.org/security#nonce",
+        "proofPurpose": {
+          "@id": "https://w3id.org/security#proofPurpose",
+          "@type": "@vocab",
+          "@context": {
+            "@protected": true,
+            "id": "@id",
+            "type": "@type",
+            "assertionMethod": {
+              "@id": "https://w3id.org/security#assertionMethod",
+              "@type": "@id",
+              "@container": "@set"
+            },
+            "authentication": {
+              "@id": "https://w3id.org/security#authenticationMethod",
+              "@type": "@id",
+              "@container": "@set"
+            },
+            "capabilityInvocation": {
+              "@id": "https://w3id.org/security#capabilityInvocationMethod",
+              "@type": "@id",
+              "@container": "@set"
+            },
+            "capabilityDelegation": {
+              "@id": "https://w3id.org/security#capabilityDelegationMethod",
+              "@type": "@id",
+              "@container": "@set"
+            },
+            "keyAgreement": {
+              "@id": "https://w3id.org/security#keyAgreementMethod",
+              "@type": "@id",
+              "@container": "@set"
+            }
+          }
+        },
+        "cryptosuite": {
+          "@id": "https://w3id.org/security#cryptosuite",
+          "@type": "https://w3id.org/security#cryptosuiteString"
+        },
+        "proofValue": {
+          "@id": "https://w3id.org/security#proofValue",
+          "@type": "http://www.w3.org/2001/XMLSchema#string"
+        },
+        "verificationMethod": {
+          "@id": "https://w3id.org/security#verificationMethod",
+          "@type": "@id"
+        }
+      }
+    }
+  }
+}

package/contexts/ERC191Suite2023.jsonld

@@ -0,0 +1,94 @@
+{
+  "@context": {
+    "id": "@id",
+    "type": "@type",
+    "@protected": true,
+    "@version": 1.1,
+    "proof": {
+      "@id": "https://w3id.org/security#proof",
+      "@type": "@id",
+      "@container": "@graph"
+    },
+    "ERC191Key2023": {
+      "@id": "https://w3id.org/security#ERC191Key2023",
+      "@context": {
+        "@protected": true,
+        "id": "@id",
+        "type": "@type",
+        "controller": {
+          "@id": "https://w3id.org/security#controller",
+          "@type": "@id"
+        },
+        "revoked": {
+          "@id": "https://w3id.org/security#revoked",
+          "@type": "http://www.w3.org/2001/XMLSchema#dateTime"
+        },
+        "blockchainAccountId": {
+          "@id": "https://w3id.org/security#blockchainAccountId",
+          "@type": "https://w3id.org/security#blockchainAccountId"
+        }
+      }
+    },
+    "ERC191Signature2023": {
+      "@id": "https://w3id.org/security#ERC191Signature2023",
+      "@context": {
+        "@protected": true,
+        "id": "@id",
+        "type": "@type",
+        "challenge": "https://w3id.org/security#challenge",
+        "created": {
+          "@id": "http://purl.org/dc/terms/created",
+          "@type": "http://www.w3.org/2001/XMLSchema#dateTime"
+        },
+        "domain": "https://w3id.org/security#domain",
+        "expires": {
+          "@id": "https://w3id.org/security#expiration",
+          "@type": "http://www.w3.org/2001/XMLSchema#dateTime"
+        },
+        "nonce": "https://w3id.org/security#nonce",
+        "proofPurpose": {
+          "@id": "https://w3id.org/security#proofPurpose",
+          "@type": "@vocab",
+          "@context": {
+            "@protected": true,
+            "id": "@id",
+            "type": "@type",
+            "assertionMethod": {
+              "@id": "https://w3id.org/security#assertionMethod",
+              "@type": "@id",
+              "@container": "@set"
+            },
+            "authentication": {
+              "@id": "https://w3id.org/security#authenticationMethod",
+              "@type": "@id",
+              "@container": "@set"
+            },
+            "capabilityInvocation": {
+              "@id": "https://w3id.org/security#capabilityInvocationMethod",
+              "@type": "@id",
+              "@container": "@set"
+            },
+            "capabilityDelegation": {
+              "@id": "https://w3id.org/security#capabilityDelegationMethod",
+              "@type": "@id",
+              "@container": "@set"
+            },
+            "keyAgreement": {
+              "@id": "https://w3id.org/security#keyAgreementMethod",
+              "@type": "@id",
+              "@container": "@set"
+            }
+          }
+        },
+        "proofValue": {
+          "@id": "https://w3id.org/security#proofValue",
+          "@type": "https://w3id.org/security#blockchainAccountId"
+        },
+        "verificationMethod": {
+          "@id": "https://w3id.org/security#verificationMethod",
+          "@type": "@id"
+        }
+      }
+    }
+  }
+}

package/contexts/did-v1.jsonld

@@ -0,0 +1,58 @@
+{
+  "@context": {
+    "@protected": true,
+    "id": "@id",
+    "type": "@type",
+
+    "alsoKnownAs": {
+      "@id": "https://www.w3.org/ns/activitystreams#alsoKnownAs",
+      "@type": "@id"
+    },
+    "assertionMethod": {
+      "@id": "https://w3id.org/security#assertionMethod",
+      "@type": "@id",
+      "@container": "@set"
+    },
+    "authentication": {
+      "@id": "https://w3id.org/security#authenticationMethod",
+      "@type": "@id",
+      "@container": "@set"
+    },
+    "capabilityDelegation": {
+      "@id": "https://w3id.org/security#capabilityDelegationMethod",
+      "@type": "@id",
+      "@container": "@set"
+    },
+    "capabilityInvocation": {
+      "@id": "https://w3id.org/security#capabilityInvocationMethod",
+      "@type": "@id",
+      "@container": "@set"
+    },
+    "controller": {
+      "@id": "https://w3id.org/security#controller",
+      "@type": "@id"
+    },
+    "keyAgreement": {
+      "@id": "https://w3id.org/security#keyAgreementMethod",
+      "@type": "@id",
+      "@container": "@set"
+    },
+    "service": {
+      "@id": "https://www.w3.org/ns/did#service",
+      "@type": "@id",
+      "@context": {
+        "@protected": true,
+        "id": "@id",
+        "type": "@type",
+        "serviceEndpoint": {
+          "@id": "https://www.w3.org/ns/did#serviceEndpoint",
+          "@type": "@id"
+        }
+      }
+    },
+    "verificationMethod": {
+      "@id": "https://w3id.org/security#verificationMethod",
+      "@type": "@id"
+    }
+  }
+}