Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: Add Wallet Attestation request flow #233

Merged
merged 26 commits into from
Apr 5, 2024
Merged

feat: Add Wallet Attestation request flow #233

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
26 commits
Select commit Hold shift + click to select a range
da1c3af
feat: Add Wallet Attestation request flow
grausof Mar 12, 2024
809f15e
Apply suggestions from code review
grausof Mar 13, 2024
36ca2d9
Apply suggestions from code review
grausof Mar 18, 2024
83acccc
Add nonce endpoint reference
grausof Mar 18, 2024
9d3684c
Update docs/en/wallet-attestation.rst
grausof Mar 18, 2024
5c50e8d
chore: Wallet Attestation editorials and some normative verbs
peppelinux Mar 18, 2024
24ab089
chore: wallet solution editorials
peppelinux Mar 18, 2024
24d44af
Remove type
grausof Mar 19, 2024
11ad59e
Remove type
grausof Mar 19, 2024
caf862c
chore: standards editorials and removed unused token revocation
peppelinux Mar 19, 2024
b69f86a
Merge pull request #237 from italia/wa2
peppelinux Mar 19, 2024
f07b746
defind terms removea misleading element, wallet solution removed auth…
peppelinux Mar 19, 2024
f0dd120
Merge pull request #241 from italia/wa2
peppelinux Mar 19, 2024
4defabe
Apply suggestions from code review
grausof Mar 20, 2024
4eb0fb9
Update docs/en/defined-terms.rst
grausof Mar 20, 2024
3a37a32
Update docs/en/wallet-attestation.rst
grausof Mar 21, 2024
d8fcbb5
refactor
grausof Mar 25, 2024
d80d97a
Add Warning
grausof Mar 25, 2024
7aae53b
Add Warning
grausof Mar 25, 2024
c19cebf
Include other wscd technologies
grausof Mar 25, 2024
dae1758
Rename Wallet Hardware Key Tag to Cryptographic Hardware Key
grausof Mar 25, 2024
fbedf3b
Rename Wallet Hardware Key Tag to Cryptographic Hardware Key
grausof Mar 25, 2024
6b1fc3b
Apply suggestions from code review
grausof Apr 3, 2024
4f46cd6
Apply suggestions from code review
grausof Apr 3, 2024
e6916c6
Apply suggestions from code review
grausof Apr 4, 2024
07b4dea
Update docs/en/wallet-solution.rst
grausof Apr 5, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 14 additions & 2 deletions docs/en/defined-terms.rst
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,10 +39,20 @@ Below are the description of acronyms and definitions which are useful for furth
- All public and/or private entities, conforming to a technical profile and accredited by the Federation Authority, that provide citizens with an IT Wallet Instance.
* - Wallet Attestation
- Verifiable Attestation, issued by the Wallet Provider, that proves the security compliace of the Wallet Instance.
* - Wallet Attestation Request
- Format of the request sent by the Wallet Instance to the backend Wallet Provider to obtain a Wallet Attestation.
grausof marked this conversation as resolved.
Show resolved Hide resolved
* - Wallet Secure Cryptographic Device
- Hardware-backed secure environment for creating, storing, and/or managing cryptographic keys and data. Examples include Secure Elements (SE), Trusted Execution Environments (TEEs), and Strongbox.
peppelinux marked this conversation as resolved.
Show resolved Hide resolved
* - Credential Status Attestation
- Verifiable Attestation proving that a related Digital Credential is not revoked.
* - Wallet Attestation Service
- Device manufacturer service that allows you to certify the authenticity of the mobile app (Wallet Instance).
* - Device Integrity Service
- Device manufacturer service that allows you to certify that the app instance (Wallet Instance) is intact and genuine and also allows you to certify that the private keys generated by the device are securely stored within the device's dedicated hardware. Please note that each manufacturer uses different terms to identify it.
grausof marked this conversation as resolved.
Show resolved Hide resolved
* - Wallet Hardware Keys
- Pair of public and private keys generated by the Wallet Instance during app initialization. These keys remain valid throughout the entire lifespan of the Wallet Instance. Conceptually, the Wallet Hardware Keys serves as a personal device Master Key and, being part of the OS domain, cannot be used for signing any arbitrary payloads. The purpose of the Wallet Hardware Keys is to uniquely identify a Wallet Instance.
grausof marked this conversation as resolved.
Show resolved Hide resolved
* - Wallet Hardware Key Tag
peppelinux marked this conversation as resolved.
Show resolved Hide resolved
- Unique identifier of the Wallet Hardware Keys generated by the operating system and used to access the private key in the hardware.
grausof marked this conversation as resolved.
Show resolved Hide resolved
* - Key Attestation
peppelinux marked this conversation as resolved.
Show resolved Hide resolved
- Attestation signed by device OEM that gives you more confidence that the keys you use in your Wallet Instance are stored in a device's hardware-backed keystore
grausof marked this conversation as resolved.
Show resolved Hide resolved
* - Qualified Electronic Attestation of Attributes (QEAA)
- A digitally verifiable attestation in electronic form, issued by a QTSP, that substantiates a person's possession of attributes.
* - Qualified Electronic Signature Provider
Expand Down Expand Up @@ -83,3 +93,5 @@ Acronyms
- Application Programming Interface
* - **LoA**
- Level of Assurance
grausof marked this conversation as resolved.
Show resolved Hide resolved
* - **WSCD**
- Wallet Secure Cryptographic Device
Loading
Loading