VDS Generation
From Document to Trusted Digital Seal.
id3 Technologies guides any organization in creating and deploying a Visible Digital Seal (VDS / CEV) use case — designing the PKI infrastructure, integrating the BioSeal SDK, and registering the issuing authority on a recognized trust network.
Discuss your projectWhat is a Visible Digital Seal?
A Visible Digital Seal (VDS) is a cryptographically signed 2D barcode — readable by any smartphone camera — that embeds structured data from a physical document and proves its authenticity using cached trust information. Standardized under ISO 22376 and ISO 22385, VDS is the international format for secure, verifiable document credentials. id3 Technologies is a registered VDS Issuer under the Otentik Trust Network (CIN EU), authorized to issue VDS on behalf of its customers.
Signed QR Code
The QR code embeds a compact structured payload (MessagePack-encoded), a header referencing the manifest and signing certificate, and an ECDSA signature — all verifiable offline by any compliant reader using cached trust information.
Trust Network
The issuing authority's public key is published on a recognized trust registry (LoTL + TSL). Once cached on a reader, this enables universal offline verification — no connection to the issuer is ever required.
ISO Compliant
Built on ISO 22376 (VDS format) and ISO 22385 (trust infrastructure) — standards aligned with the signed-barcode technologies deployed by governments worldwide (ICAO VDS-NC, 2D-DOC).
Our Service
id3 covers the full lifecycle of a VDS deployment — from initial design to production issuance and trust network registration.
Use Case Design
We work with your team to define the document to be sealed, the data fields to embed in the QR code, and the verification workflow — adapting the VDS structure to your specific regulatory and operational context.
Manifest Definition
Each use case is formalized as a manifest — a signed XML schema defining the data structure, validation rules, and extensions for your specific document type. Manifests are published on the trust network and referenced by every VDS issued, guaranteeing long-term interoperability and backward compatibility as your use case evolves.
PKI Infrastructure
We design and deploy the Public Key Infrastructure — generating the Certificate Authority (CA), issuing signing certificates, and establishing the key management lifecycle required for long-term seal integrity. Private signing keys are stored and used exclusively inside an HSM (Hardware Security Module), ensuring compliance with VDSIC certification requirements.
BioSeal SDK Integration
id3's BioSeal SDK handles VDS encoding, ECDSA signature (P-256 / SHA-256) via HSM-backed key storage, and QR code generation — compliant with ISO 22385 TS3 (ESEDS creation system interoperability). We integrate it into your existing document production system, whether a web service, a desktop application, or an embedded workflow.
Trust Network Registration
We register your issuing authority's public key and manifests on the appropriate trust network — Otentik Trust Network, KFR, or both — publishing them to the LoTL and TSL so that any compliant reader worldwide can verify your seals without prior knowledge of your organization.
Recognized Trust Networks
A VDS is only universally verifiable if the issuing authority's public key is published on a recognized trust registry. id3 can register your organization on either or both of the following networks.
Otentik Trust Network
A private, internationally recognized trust registry for VDS issuers — operated by Otentik T.S.O. (IAC VDS), a Scheme Operator accredited by the AIGCEV — Agence Internationale pour la Gouvernance du CEV (the French name of the VDSIC, VDS International Council). Any organization can join and declare its VDS use cases, making its seals verifiable by any Otentik-compatible reader worldwide.
- Scheme Operator: Otentik T.S.O. (IAC
VDS) - Accredited by AIGCEV / VDSIC
- Open to private and public organizations
- Cross-border, multi-sector
KFR — French State Scheme Operator
The French state-operated trust infrastructure identified by the IAC KFR (Issuing Agency Code per ISO/IEC 15459-2), used notably by France Titres / ANTS for the 2D-DOC — the French government's signed barcode standard for official documents (driving licences, vehicle registration certificates, etc.). KFR complies with ISO 22376 and ISO 22385, making 2D-DOC seals verifiable by any VDS-compatible reader.
- IAC
KFR— France Titres / ANTS - State-operated Scheme Operator
- Interoperable with ISO VDS readers
- Sovereign, offline-capable verification
Example Use Cases
Any organization that issues documents can add a VDS — turning a paper credential into a verifiable, fraud-resistant digital seal.
Diplomas & Certificates
Universities and professional bodies seal degrees, transcripts, and certifications — verifiable by any employer with a smartphone scan.
Official Certificates
Birth certificates, civil status documents, tax notices — administrations add a VDS to prevent forgery and allow instant digital verification.
Insurance & Compliance
Insurance policies, compliance certificates, or audit reports sealed with a VDS — instantly verifiable by regulators or third parties without contacting the issuer.
Medical Documents
Prescriptions, vaccination records, and health certificates signed with a VDS — verifiable at border controls, pharmacies, or care facilities offline.
Supply Chain
Delivery notes, customs declarations, and certificates of origin sealed with a VDS — scannable at each step of the chain for instant, tamper-proof verification.
Professional Licences
Orders and professional associations issue VDS-sealed membership cards or practice licences — as used by CNOEC for chartered accountants in France.
Get started with our technologies.
Contact us to learn more about our biometric and security solutions and discover how it can transform your products and services. With id3 Technologies, step into a world where technology meets security, innovation, and reliability.
Contact us