Chris Jagers’ article:
Additional security measures can be added as well. For instance, MIT added an additional authentication layer. To successfully add MIT as an issuer, students must also enter their MIT Campus credentials into their student ID system called Touchstone. This is a great example of the fundamental flexibility of Blockcerts to support how institutions establish the identity of their recipients.
How does that authentication layer work?
Is it a check that is done separately from the Wallet?
Or is the authentication somehow built into the Wallet itself?