Skip to content

Commit

Permalink
Merge pull request #164 from aritroCoder/cred-sign-model
Browse files Browse the repository at this point in the history
Completed credential signature data model
  • Loading branch information
swcurran authored Oct 2, 2023
2 parents 96de335 + ea35545 commit 1f15dec
Showing 1 changed file with 6 additions and 16 deletions.
22 changes: 6 additions & 16 deletions spec/data_flow_issuance.md
Original file line number Diff line number Diff line change
Expand Up @@ -432,29 +432,19 @@ convention was initially defined
by the [Hyperledger Aries](https://www.hyperledger.org/projects/aries)
community.

:::

#### The Credential Signature

The credential signature elements are constructed as follows:

1. Compute $q = \frac{Z}{us^{v''}r^{m}_{linksecret}\ (Mod\ n)}$ where $v''$ is a random 2724-bit number with most significant bit as $1$ and $e$ is a random prime such that $2^{596} \leq e \leq 2^{596}+2^{119}$
2. Compute $a = q^{e^{-1}\ (Mod\ p'q')}\ (Mod\ n)$ where $p', q'$ are primes generated during issuer setup, and $e^{-1}$ is the multiplicative inverse of $e$.

::: todo

Add the details about the credential signature data elements

:::

* `m_2` is the *TO BE ADDED*. It is constructed as follows:
* *TO BE ADDED*
* `a` is the *TO BE ADDED*. It is constructed as follows:
* *TO BE ADDED*
* `e` is the *TO BE ADDED*. It is constructed as follows:
* *TO BE ADDED*
* `v` is the *TO BE ADDED*. It is constructed as follows:
* *TO BE ADDED*
* `m_2` is a linkable identifier to the holder encoded in base 10 that is also called the `master_secret` in old versions. It is constructed as follows:
* $m_2 = H(i || \mathcal{H})$, where $i$ is an index assigned to the holder, and $\mathcal{H}$ is an identifier with which the [[ref: holder]] is known to the [[ref: issuer]].
* `a` is the signature of the blinded known attributes. It's generation is given above.
* `e` is a random prime generated by the [[ref: issuer]] for creating signature.
* `v` is a number generated by the [[ref: holder]] to unblind the signature of the blinded attributes. It is constructed as follows:
* $v = v' + v''$, where $v'$ is the blinding factor which the holder has and $v''$ is a random number generated by the issuer.

#### The Credential Signature Correctness Proof

Expand Down

0 comments on commit 1f15dec

Please sign in to comment.