steel_thread

command

v0.0.4-alpha Latest Latest Go to latest Published: May 10, 2023 License: Apache-2.0 Imports: 10 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/TBD54566975/ssi-sdk

README ¶

Steel Thread Signing & Verification

Overview

Annotated steel thread flow for calling out all signing, verification, and key management. This document is focused on the signing and verification of objects. For Steel Thread, this means: Credentials and Credential Manifest request objects.

Setup

We assume there are two parties:

Alice, using a wallet, applying for a credential
An issuer via the SSI Service, processing credential applications and issuing credentials

Each party has a single DID. Alice and the SSI Service each have a single [did:key](https://w3c-ccg.github.io/did-method-key/) DID. Alice stores her DID’s private key in her wallet. The SSI Service stores its private key in the service key store database.

Actors

For simplicity the DWN is abstracted from the description and diagrams below, since it plays no role in issuing or verifying credentials or credential manifest objects.

Alice and the Issuer are also abstracted from the diagram. Instead focusing on the software handling signing and verification — Alice’s Wallet and the SSI Service.

ssi-sdk

Flow Annotation

Alice creates a DID, stored in her wallet, didW
The issuer creates a DID, stored in the SSI Service, didI
[CM is a JWT] The Credential Manifest CM is created and signed by the Issuer, with didI
Alice fetches CM and…
1. Validates the signature using didI
2. Verifies it is a valid and well-formed Credential Manifest
[CA is a JWT] Alice forms a response to CM, Credential Application CA
1. Alice signs CA using didW
Alice submits CA to the SSI Service
The SSI Service processes CA...
1. Validates the signature using didW
2. Verifies it is a valid and well-formed Credential Application
3. Validates it complies with CM
[VC is a VC-JWT] The SSI Service creates Verifiable Credentials, VC, signed with didI
[CR is a JWT] The SSI Service creates a Credential Response, CR, signed with didI
Alice receives CR containing VC and…
1. Validates the signature of the CR using didI
2. Verifies CR and VC are well-formed
3. Verifies the signature(s) of VC using didI
4. Possible other validity checks, such as making sure the Credential is for Alice and has expected data
Alice stores the VC

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

steel_thread.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL