Skip to content

ahache/vc-notary

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
back-end
back-end
 
 
front-end
front-end
 
 
issuer
issuer
 
 
tlsn @ 4d5102b
tlsn @ 4d5102b
 
 
.gitmodules
.gitmodules
 
 
README.md
README.md
 
 
VCNotary-Diagram.png
VCNotary-Diagram.png
 
 

Repository files navigation

VC Notary

This project is a demonstration of using the TLS Notary protocol to attest to user account specific data fetched from an API and have the results processed into a verifiable credential.

Specifically, the Reddit API is used to fetch information on which subreddit a user is a moderator of and then a verifiable credential stating this is issued to them using their desired DID. The motivation for this choice is based on the understanding that this responsibility is a signal of trust having already been issued to this individual. This enables users to transform their existing trusted role into a verifiable credential.

The project relies on three seperate services: the primary full stack application, a notary server, and a credential issuing service.

Architecture and Application Flow

Architecture and Application Flow

  1. The user inputs their DID and clicks the "Get Your VC" button. They are redirected to Reddit to authorize the application. They are then redirected back to the application with an authorization code.
  2. The authorization code along with the user's DID are sent to the back-end server. The authorization code is exchanged for an access token.
  3. The back-end server establishes a connection with the notary server.
  4. The back-end server establishes a TLS session with the Reddit API, using the MPC protocol with the notary server. This allows secure encryption of the request and decryption of the response, ensuring the notary server never learns the plaintext data while still verifying the session's integrity.
  5. After the request is processed, the back-end server receives a signed attestation from the notary server, confirming the authenticity of the exchanged data.
  6. The back-end server prepares a verifiable presentation of the plaintext data received from the TLS session.
  7. This is sent to the credential issuing service along with the user's DID.
  8. The credential service verifies the presented data. If valid, the appropriate information (Subreddit name) is extracted from the response data and used to issue a verifiable credential.
  9. The verifiable credential is returned to the front end and displayed to the user.

Prerequisites

  • Rust
  • Node.js
  • Reddit account with moderator privileges (only one subreddit is processed at this time)
    • This is automatic when creating a new subreddit
  • Reddit Web Application credentials (create at https://www.reddit.com/prefs/apps/)

Installation

  • Clone repository
  • Install tlsn submodule: git submodule update --init
  • Set tls: enabled: false in tlsn/crates/notary/server/config/config.yaml

Component Setup

Each component has its own setup instructions:

  • Front-end: refer to front-end/README.md
  • Back-end: refer to back-end/README.md
  • Issuer Proxy: refer to issuer/README.md
  • Credential Service: refer to issuer/credential-service/README.md
  • Notary Server: Navigate to tlsn/crates/notary/server and run cargo run --release

About

VC Notary - DIF Hackathon 2024

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages