GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → Open-Attestation → open-attestation

Open-Attestation / open-attestation

Licence: Apache-2.0 license
Meta framework for providing digital provenance and integrity to documents.

Programming Languages

typescript
32286 projects

Labels

cryptographyethereumsignaturepkiopenattestation

Projects that are alternatives of or similar to open-attestation

pdf-sign-check
A java / spring boot application to help you sign and check signed pdf documents
Stars: ✭ 81 (+107.69%)
Mutual labels:  signature, pki
DigiDoc4-Client
DigiDoc4 Client is an application for digitally signing and encrypting documents; the software includes functionality to manage Estonian ID-card - change pin codes etc.
Stars: ✭ 91 (+133.33%)
Mutual labels:  signature, pki
qdigidoc
DEPRECATED DigiDoc3 Client is a program that can be used to sign digitally with ID-card and Mobile-ID, check the validity of digital signatures and open and save documents inside the signature container.
Stars: ✭ 25 (-35.9%)
Mutual labels:  signature, pki
Creepycodecollection
A Nonsense Collection of Disgusting Codes
Stars: ✭ 2,206 (+5556.41%)
Mutual labels:  signature
E Signature
A android signature library
Stars: ✭ 228 (+484.62%)
Mutual labels:  signature
iOS-Signature-Capture
iOS-Signature-Capture is helps to capture the user signature with name and signed date in iOS and supports both Objective-c and Swift languages.
Stars: ✭ 50 (+28.21%)
Mutual labels:  signature
mitome.in
Explore OpenPGP and other cryptography as an alternative for seals (mitome-in)
Stars: ✭ 30 (-23.08%)
Mutual labels:  signature
Jwtcat
A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.
Stars: ✭ 181 (+364.1%)
Mutual labels:  signature
Mathematical-Mesh
The Mesh is an infrastructure that makes the Internet easier to use by making it more secure.
Stars: ✭ 39 (+0%)
Mutual labels:  pki
freeipa-issuer
A cert-manager external issuer for FreeIPA
Stars: ✭ 22 (-43.59%)
Mutual labels:  pki
eosdart ecc
Elliptic curve cryptography functions in Dart. Private Key, Public Key, Signature, AES, Encryption, Decryption
Stars: ✭ 25 (-35.9%)
Mutual labels:  signature
GetApk
Show app or apk detail, and export apk file of installed app to sdcard
Stars: ✭ 42 (+7.69%)
Mutual labels:  signature
Jsrsasign
The 'jsrsasign' (RSA-Sign JavaScript Library) is an opensource free cryptography library supporting RSA/RSAPSS/ECDSA/DSA signing/validation, ASN.1, PKCS#1/5/8 private/public key, X.509 certificate, CRL, OCSP, CMS SignedData, TimeStamp, CAdES JSON Web Signature/Token in pure JavaScript.
Stars: ✭ 2,760 (+6976.92%)
Mutual labels:  signature
oseid
Microchip AVR based smartcard/token with ECC and RSA cryptography
Stars: ✭ 17 (-56.41%)
Mutual labels:  pki
Auth Jwt
A demo to learn JWT by reverse engineering
Stars: ✭ 208 (+433.33%)
Mutual labels:  signature
rfc3161timestampingserver
This project offers a rfc 3161 compliant timestamping authority/server
Stars: ✭ 30 (-23.08%)
Mutual labels:  pki
Easyrsa
Simple and Secure Wrapper for phpseclib
Stars: ✭ 183 (+369.23%)
Mutual labels:  signature
react-signature-canvas
A React wrapper component around signature_pad (in < 150 LoC). Unopinionated and heavily updated fork of react-signature-pad
Stars: ✭ 420 (+976.92%)
Mutual labels:  signature
signature
HMAC and RSA signature for Laravel and Lumen
Stars: ✭ 26 (-33.33%)
Mutual labels:  signature
pki-manager
IT Freelancers : Manage small PKI for multiple projects (or clients) with 2 bash scripts
Stars: ✭ 36 (-7.69%)
Mutual labels:  pki
View All Similar Projects ➔

CircleCI

Open Attestation

Attestation and notary framework for any document types on the blockchain.

OpenAttestation allows any entity to prove the existence of a document or a batch of documents. It makes use of smart contracts on the Ethereum blockchain to store cryptographic proofs of individual documents.

Alternatively, OpenAttestation can be used to make digitally verifiable documents using digital signatures, forgoing the need to pay for Ethereum transactions.

The Open Attestation repository allows you to batch the documents to obtain the merkle root of the batch to be committed to the blockchain. It also allows you to verify the signature of the document wrapped using the OpenAttestation framework.

Installation

npm i @govtechsg/open-attestation

Usage

Wrapping documents

wrapDocuments takes in an array of documents and returns the wrapped batch. Each document must be valid regarding the version of the schema used (see below) It computes the Merkle root of the batch and appends it to each document. This Merkle root can be published on the blockchain and queried against to prove the provenance of the document issued this way. Alternatively, the Merkle root may be signed by the document issuer's private key, which may be cryptographically verified using the issuer's public key or Ethereum account.

In the future, this function may accept a second optional parameter to specify the version of open-attestation you want to use. Currently, open-attestation will use schema 2.0. See Additional Information for information on using experimental v3.0 documents, which aim to be compatible with the W3C's data model for Verifiable Credentials.

The wrapDocument function is identical but accepts only one document.

import { wrapDocuments } from "@govtechsg/open-attestation";
const document = {
  id: "SERIAL_NUMBER_123",
  $template: {
    name: "CUSTOM_TEMPLATE",
    type: "EMBEDDED_RENDERER",
    url: "https://localhost:3000/renderer",
  },
  issuers: [
    {
      name: "DEMO STORE",
      tokenRegistry: "0x9178F546D3FF57D7A6352bD61B80cCCD46199C2d",
      identityProof: {
        type: "DNS-TXT",
        location: "tradetrust.io",
      },
    },
  ],
  recipient: {
    name: "Recipient Name",
  },
  unknownKey: "unknownValue",
  attachments: [
    {
      filename: "sample.pdf",
      type: "application/pdf",
      data: "BASE64_ENCODED_FILE",
    },
  ],
};

wrappedDocuments = wrapDocuments([document, { ...document, id: "different id" }]); // will ensure document is valid regarding open-attestation 2.0 schema
console.log(wrappedDocuments);

Note: Though wrapDocument and wrapDocuments are both identical but there is a slight difference.

wrapDocuments:

  • returns an array and not an object.
  • Each element in the array is a wrapped document corresponding to the one provided as input.
  • Each element will share the same unique merkleRoot value in every batch wrap instance.
  • Each element has an unique targetHash value.
  • Similar to wrapDocument, every time you run wrapDocuments, it will create unique hashes (in front of every fields in the data object).

Sign a document

signDocument takes a wrapped document, as well as a public/private key pair or an Ethers.js Signer. The method will sign the merkle root from the wrapped document, append the signature to the document and return it. Currently, it supports the following sign algorithm:

  • Secp256k1VerificationKey2018

Example with public/private key pair

import { signDocument, SUPPORTED_SIGNING_ALGORITHM } from "@govtechsg/open-attestation";
await signDocument(wrappedV2Document, SUPPORTED_SIGNING_ALGORITHM.Secp256k1VerificationKey2018, {
  public: "did:ethr:0xE712878f6E8d5d4F9e87E10DA604F9cB564C9a89#controller",
  private: "0x497c85ed89f1874ba37532d1e33519aba15bd533cdcb90774cc497bfe3cde655",
});

Example with signer

import { signDocument, SUPPORTED_SIGNING_ALGORITHM } from "@govtechsg/open-attestation";
import { Wallet } from "ethers";

const wallet = Wallet.fromMnemonic("tourist quality multiply denial diary height funny calm disease buddy speed gold");
const { proof } = await signDocument(
  wrappedDocumentV2,
  SUPPORTED_SIGNING_ALGORITHM.Secp256k1VerificationKey2018,
  wallet
);

Validate schema of document

validateSchema checks that the document conforms to open attestation data structure.

import { validateSchema } from "@govtechsg/open-attestation";
const validatedSchema = validateSchema(wrappedDocument);
console.log(validatedSchema);

Verify signature of document

verifysignature checks that the signature of the document corresponds to the actual content in the document. In addition, it checks that the target hash (hash of the document content), is part of the set of documents wrapped in the batch using the proofs.

Note that this method does not check against the blockchain or any registry if this document has been published. The merkle root of this document need to be checked against a publicly accessible document store (can be a smart contract on the blockchain).

import { verifySignature } from "@govtechsg/open-attestation";
const verified = verifySignature(wrappedDocument);
console.log(verified);

Retrieving document data

getData returns the original data stored in the document, in a readable format.

import { getData } from "@govtechsg/open-attestation";
const data = getData(wrappedDocument);
console.log(data);

Utils

import { utils } from "@govtechsg/open-attestation";
utils.isWrappedV3Document(document);
  • isWrappedV2Document type guard for wrapped v2 document
  • isSignedWrappedV2Document type guard for signed v2 document
  • isSignedWrappedV3Document type guard for signed v3 document
  • isWrappedV3Document type guard for wrapped v3 document
  • diagnose tool to find out why a document is not a valid open attestation file (wrapped or signed document)

Obfuscating data

obfuscateDocument removes a key-value pair from the document's data section, without causing the file hash to change. This can be used to generate a new document containing a subset of the original data, yet allow the recipient to proof the provenance of the document.

const newData = obfuscateDocument(wrappedDocument, "key1");
console.log(newData);

Development

To run tests

npm run test

vc-test-suite

You can run the vc-test-suite against open-attestation by running npm run test:vc. This command will:

  • clone https://github.com/w3c/vc-test-suite.git
  • copy the local configuration (vc-test-suite-config.json) into the cloned repository
  • install the latest version of @govtechsg/open-attestation-cli
  • monkey patch open-attestation in @govtechsg/open-attestation-cli. That means that the current version of the project will be built and replace the one installed with @govtechsg/open-attestation-cli.

Local debug

In the event you face a problem with one test and want to debug locally:

  1. Ensure the folder vc-test-suite is available from the root of the project. If that's not the case, run npm run test:vc first.
  2. Open runVcTest.sh and update install_vc_test_suite=true to install_vc_test_suite=false. This line will help to preserve the vc-test-suite folder untouched.

You can now debug from the vc-test-suite folder the way you need it.

Additional information

  • Found a bug? Have a question? Want to share an idea? Reach us at our Github repository.
  • We are currently building a new version of the schema, compatible with W3C VC. This is very experimental and whatever is available for v2 documents are also available for v3 documents:
    • OA schema v3
    • Typings: import {v3} from "@govtechsg/open-attestation".
    • Type guard: utils.isWrappedV3Document.
    • Wrapping: __unsafe__use__it__at__your__own__risks__wrapDocument (future usage: wrapDocument(document, {version: "open-attestation/3.0"})
    • Example docs in tests/fixtures/v3
  • There are extra utilities available:
    • Refer to the utils component for the full list of utilities.
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].