Inferensys

Glossary

Selective Disclosure

A privacy-enhancing technique that allows the holder of a verifiable credential to reveal only a subset of the claims within it, or to prove a property of a claim without revealing the claim itself.
Stylish WeWork-like workspace with hot desks and document wall, professional searching through enterprise knowledge base on a mounted ultrawide display, warm industrial pendants overhead.
PRIVACY-ENHANCING CREDENTIAL TECHNIQUE

What is Selective Disclosure?

Selective disclosure is a privacy-enhancing mechanism that allows the holder of a **verifiable credential** to reveal only a specific subset of the claims contained within it, or to prove a property of a claim (such as 'age > 21') without revealing the underlying raw data (e.g., the exact birthdate).

Selective disclosure is a core feature of self-sovereign identity architectures, implemented using cryptographic techniques like BBS+ signatures or CL signatures. It allows a user to satisfy a verifier's request for a specific attribute from a signed credential without exposing all other personal data bundled in that document. For example, a digital driver's license can prove a user is legally old enough to enter a venue by disclosing only the boolean result of an 'over-21' check, keeping the user's exact birthdate, address, and license number private.

The mechanism relies on the issuer signing each individual claim within a credential separately, or using a signature scheme that supports zero-knowledge proofs. When a holder presents the credential, they generate a cryptographic proof that a specific claim was signed by the issuer without revealing the claim's raw value or other claims. This is fundamentally different from traditional attribute-based access control, which requires presenting the entire credential for inspection. The W3C Verifiable Credentials standard incorporates selective disclosure through derived predicates and zero-knowledge proofs, ensuring data minimization principles are cryptographically enforced rather than relying on the policy compliance of the verifier.

PRIVACY MECHANISMS

Key Features of Selective Disclosure

Selective disclosure transforms how verifiable credentials are shared, moving from an all-or-nothing paradigm to a granular, privacy-preserving model. These core features define its technical implementation.

01

Atomic Claim Revelation

The foundational capability to reveal only a specific subset of claims from a larger verifiable credential. A holder can present a credential containing ten attributes but disclose only the two required by a verifier.

  • Mechanism: Achieved through W3C Verifiable Credential data model, where each claim is a discrete element in a JSON-LD document.
  • Example: A digital driver's license credential contains name, address, birth date, and organ donor status. For age verification at a bar, the holder reveals only the birth_date claim and a derived age_over_21 boolean, concealing the exact address and donor status.
  • Technical implementation: Uses JSON-LD framing to select specific fields for presentation, generating a derived credential that contains only the disclosed claims, still signed by the original issuer.
W3C Standard
Governed by VC Data Model v1.1
02

Zero-Knowledge Range Proofs

A cryptographic method that allows a holder to prove a claim satisfies a condition without revealing the claim's actual value. This is the mathematical backbone of predicate proofs.

  • Mechanism: Uses Bulletproofs or zk-SNARKs to construct a proof that a secret value x falls within a specified range (e.g., x > 21) without disclosing x itself.
  • Example: Proving salary > $100,000 for a loan application without revealing the exact salary figure. The verifier receives a cryptographic proof that validates the inequality against a signed commitment to the salary, not the salary itself.
  • Key distinction: Unlike atomic claim revelation, the underlying data is never transmitted. The verifier learns only the truth value of the predicate.
Bulletproofs
Common proof system
03

CL-Signatures & BBS+

Specialized signature schemes that enable the holder to derive a new, valid signature on a subset of signed messages without interacting with the original issuer.

  • CL-Signatures (Camenisch-Lysyanskaya): Allow a signer to issue a signature on a block of messages. The holder can then generate a zero-knowledge proof of knowledge of a signature on a specific subset of those messages.
  • BBS+ Signatures: An evolution of CL-signatures that supports multi-message signing and efficient proof generation. Standardized at IETF and W3C, BBS+ allows creating a single proof that reveals some messages while keeping others hidden, all verifiable against the issuer's public key.
  • Practical impact: Enables unlinkable presentations. A verifier cannot correlate two separate disclosures from the same credential because each presentation generates a distinct, randomized proof.
BBS+
IETF Draft Standard
04

Conditional Disclosure with Predicates

The ability to attach logical conditions to claim revelation, ensuring that sensitive data is only released when specific criteria are met by the verifier.

  • Mechanism: Implemented through presentation definitions that specify constraints and rules. A holder's wallet evaluates these rules before constructing the presentation.
  • Example: A credential proving membership in a professional organization is only disclosed if the verifier presents a valid verifiable credential proving they are an accredited auditor. This creates a mutual authentication loop.
  • Use case: Regulatory compliance where data can only be shared with entities possessing specific licenses or certifications, enforced cryptographically rather than through policy alone.
DIF
Presentation Exchange Spec
05

Holder Binding & Audience Restriction

Cryptographic mechanisms that bind a disclosed credential to a specific verifier and a specific transaction, preventing replay attacks and unauthorized forwarding.

  • Mechanism: The holder's wallet generates a presentation that includes a nonce (a random number provided by the verifier) and the verifier's Decentralized Identifier (DID). The presentation is then signed by the holder's private key.
  • Result: The resulting Verifiable Presentation is only valid for that specific verifier and that specific interaction. If a malicious actor intercepts the presentation, it cannot be replayed to a different verifier because the audience DID and nonce will not match.
  • Technical detail: This is enforced through the proof section of the Verifiable Presentation, which includes challenge (the nonce) and domain (the verifier's identifier) fields.
Nonce + DID
Replay prevention
06

Schema-Based Selective Disclosure

The use of predefined, machine-readable schemas to declare which claims within a credential type are selectively disclosable and under what conditions.

  • Mechanism: Credential schemas, often defined using JSON Schema and stored on a verifiable data registry (like a blockchain), explicitly mark fields as selectivelyDisclosable: true.
  • Function: Issuers publish these schemas to inform holders and verifiers about the disclosure capabilities of a credential type before issuance. A verifier's software can automatically generate a proof request that respects these schema constraints.
  • Example: A "Permanent Resident Card" schema defines country_of_citizenship as selectively disclosable, while card_serial_number is not. The verifier's system reads this schema and constructs a request that only asks for the permitted fields.
JSON Schema
Schema definition language
SELECTIVE DISCLOSURE

Frequently Asked Questions

Clear, technical answers to the most common questions about how selective disclosure works to preserve privacy within verifiable credential ecosystems.

Selective disclosure is a privacy-enhancing cryptographic technique that allows the holder of a verifiable credential to reveal only a specific subset of the claims contained within it, rather than presenting the entire credential. This mechanism works by enabling the holder to generate a zero-knowledge proof or a derived credential that mathematically proves a subset of attributes satisfies a verifier's request without exposing the underlying raw data. For example, a digital driver's license credential containing name, address, date of birth, and license number can be presented to a bar to prove only that the holder's age is over 21, without revealing the actual birth date or home address. The core technologies enabling this include BBS+ signatures, Camenisch-Lysyanskaya (CL) signatures, and SD-JWT (Selective Disclosure for JSON Web Tokens). The verifier receives cryptographic assurance from the original issuer that the disclosed claims are authentic and untampered, even though the issuer is not contacted during the verification process. This fundamentally decouples the act of proving a qualification from the act of sharing all associated personal data.

Prasad Kumkar

About the author

Prasad Kumkar

CEO & MD, Inference Systems

Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.

His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.