CodersSecret

What is an SVID?

An SVID (SPIFFE Verifiable Identity Document) is the credential that proves a workload's identity. It contains the workload's SPIFFE ID and is cryptographically signed by the trust domain's certificate authority.

X.509-SVIDCertificate for mTLS connectionsSPIFFE ID in URI SAN fieldJWT-SVIDToken for HTTP API authSPIFFE ID in sub claim

Two SVID Formats

  • X.509-SVID: A standard X.509 certificate with the SPIFFE ID in the URI SAN field. Used for mTLS connections.
  • JWT-SVID: A signed JWT with the SPIFFE ID in the sub claim. Used for HTTP APIs where certificates are impractical.

Learn More

See Module 3: SPIFFE Fundamentals for deep dive on SVIDs.

Related Terms

SPIFFE SPIRE mTLS (Mutual TLS) Workload Identity

Learn This in Our Free Courses

Mastering SPIFFE & SPIRE