Install | Features | Test | Project Structure | Tech Stack | Known Bugs | Changelog
This app was created by Animo Solutions in the context of the SPRIN-D Funke ‘EUDI Wallet Prototypes’. It serves as a prototype for future wallet providers and can be tested/used with our Funke playground environment. For more information on the project reach out to [email protected].
Impression of the EasyPID Wallet
The prototype app is currently published privately to select parties. If you're a tester for the SPRIN-D Funke project, you should have received the details on installing the app (either directly or via the guidebook). If not, please reach out to us at [email protected].
The identity wallet contains the following features, you can see the full flow without running the app in the video walkthrough (will be added next week):
General App
- 🟢 Onboard user
- 🟢 Set up PIN
- 🟢 Set up biometrics
- 🟢 Accept privacy policy
- 🟢 Onboarding instruction
- 🟢 Skippable identity instruction
- 🟢 Home screen
- 🟢 Activity
- 🟢 About the app
- 🟢 Credential overview
- 🔴 Support for translation files
Credential Management
- 🟢 Credential detail
- 🟢 Delete QEAA
- 🟠 SD-JWT VC Type Metadata
- Resolved and base is used, but not claim metadata or SVG template yet
- 🟠 Revocation SD-JWT VC
- 🔴 Revocation Mdoc
Obtain PID from PID provider
- 🟢 SD JWT VC using OpenID4VCI
- 🟢 Mdoc using OpenID4VCI
- 🟢 C option
- 🟢 C' option
- 🟢 B' option temporarily disabled
- 🟢 Receive the PID from inside of the wallet
- 🟠 PID refresh (can refresh PID as long as refresh token is valid)
- Missing re-receive the PID based on eID card
Obtain (Q)EAAs from issuer
- 🟢 SD-JWT VC using OpenID4VCI
- 🟢 mDOC using OpenID4VCI
- 🟢 PID presentation during (Q)EAA issuance
- 🟠 Batch issuance and single-use credentials
- Implemented fully for PID. For non-PID: when the batch is gone the same credential is continually used
- 🟢 Authorization code flow
- 🔴 Client attestations
Present attestations remotely
- 🟢 PID SD-JWT VC using OpenID4VP
- 🟢 PID mDOC using OpenID4VP
- 🟢 QEAA SD JWT VC using OpenID4VP
- 🟢 QEAA Mdoc using OpenID4VP
- 🟢 Combined presentations
- 🟢 Cross-device QR flow
- 🟢 Same-device flow
- 🟢 SD-JWT OID4VC conformance test suite
- 🟢 mDOC OID4VC conformance test suite
- 🟢 New VP query language
Present attestations in-person
- Android
- 🟢 Android-Android QR for device engagement
- 🟢 Android-Android NFC for device engagement
- 🔴 SD-JWT VC using OpenID4VP over BLE
- 🟢 mDOC over BLE
- iOS
- 🔴 SD-JWT VC using OpenID4VP over BLE
- 🔴 mDOC over BLE
HSM
- 🟢 On device HSM
- 🟢 Cloud-backed HSM
Trust Establishment using OpenID Federation Draft 40
- 🟢 Issuer and verifier entity configuration
- 🟢 Verifier e2e flow
- 🔴 Issuer e2e flow
- 🔴 Wallet in the OpenID Federation
Other
- 🟠 HAIP compliance
- Missing
verifier_attestationand wallet attestations
- Missing
- 🟠 WCAG 2.2 compliance
- Missing keyboard accessibility for Android
- 🟠 AI-based oversharing detection
- Using cloud based AI model
- 🟢 Issue QEAAs
- 🟢 Verify PID
- 🟢 Verify mixed PID-QEAA requests
Here are some resources and tips that might be helpful while testing the app.
The identity wallet contains the following temporary features for development and testing:
- Use a simulated eID test card.
- During onboarding:
- First PIN: enter your desired PIN
- Pin re-enter: enter PIN 276536 (BROKEN). You will be notified the eID simulator card is activated
- Setup later:
- First PIN: enter PIN 276536 (BROKEN). You will be notified the eID simulator card is activated, and prompted to enter your real PIN now.
- During onboarding:
- Reset the wallet
- Go to the menu and choose 'reset wallet'
- Toggle Cloud HSM / Secure Enclave
- During PID retrieval (either during onboarding or setup later) there is a icon of a cloud. You can press this to toggle between Cloud HSM (default), and on-device Secure element (indicated by phone icon).
The playground functions as a test relying party and/or test (Q)EAA issuer. The playground enables you to select different flows for issuing and verifying credentials. It will display a QR code and relevant information for testing and debugging.
To make sure you test all the flows, please reference the overview below.
- Overasking warnings (AI/LLM) - UC-1, UC-2
- Mixed Credential request - UC-1, UC-2
- Multiple Credential request - UC-1, UC-2
- Only PID verification - UC-3
- Only QEAA verification - UC-4
- DIF PEX - UC-1, UC-2, UC-3
- DCQL - UC-1, UC-2, UC-4
- OpenID Federation - All
- Android In person / Proximity flow, UC-5
- Presentation during issuance C-1
- Authorization code flow C-4, C-1
- Pre authorized code flow, C-2, C-3
Showcases:
- SD-JWT and mDOC
- Presenting PID during issuance
- SD-JWT and mDOC
- Pre-authorized code flow with transaction code (PIN)
- SD-JWT and mDOC
- Pre-authorized code flow without transaction code
- SD-JWT and mDOC
- Authorization code flow with external browser sign-in
All verifier flows can work with either OpenID Federation or X.509 certificates. You can choose this in the selection menu.
Rent a car through TurboKeys or CheapCars.
This use case requires you to have the PID and a Führerschein (drivers licence) in your wallet.
It showcases:
- Requesting multiple credentials in one request
- Requesting mixed credentials (SD-JWT / MDOC) in one request
- The two different supported Query languages: DIF PEX and DCQL
- Support for trust federations - CheapCars does not have any trusting entities, while TurboKeys does
- Smart AI warnings - CheapCars shows an over-asking warning to the user, while Turbokeys shows that it passes the overasking detection with a green mark.
- Single use credentials (every time a new credential will be presented as long as the batch lasts).
Open a bank account at Open Horizon Bank
This use case requres you to have the PID, Steur-ID, meltebestatigung and Gezundheidskarte
It showcases:
- Requesting multiple credentials in one request
- The DIF PEX query language
- Support for trust federations - several entities trust Open Horizon Bank. Because Europe trusts Open Horizon, it is also trusted by die Bundesregierung.
- Smart AI warnings - Open Horizon Bank shows an over-asking warning to the user.
- Single use credentials (every time a new credential will be presented as long as the batch lasts).
This use case requires you to have the PID.
It showcases:
- Requesting only the PID
- The two different supported Query languages: DIF PEX and DCQL
- Support for trust federations - Die Bundesregierung is trusted by Europe
- Single use credentials and backgroud PID referesh (every time a new credential will be presented, which can be seen in the playground).
Get an e-prescription from Redcare Pharmacy
This use case requires you to have the Gezundheidskarte (health card)
It showcases:
- Requesting only a QEAA
- The DCQL query language
- Support for trust federations - Redcare Pharmacy is trusted by several entities. Both Redcare and TurboKeys are trusted by the KvK entity.
- Single use credentials (every time a new credential will be presented as long as the batch lasts).
Present mDOC credential in person.
This use case requires you to have:
- Two android devices (one with wallet, one with verifier)
- Führerschein mDL (drivers licence) in your wallet
- Android verifier application (download
appverifier-debug.apkfrom this Github release on android device, and install the APK).
It showcases:
- Requesting mDOC in person
- Requesting only a QEAA
- Single use credentials (every time a new credential will be presented as long as the batch lasts).
How to:
- Verifier:
- Open the verifier application and select either older than 18, or older than 21, or make a custom request (but make sure to only request from the base mDL propertiess, as the mDL issued currently does not include AAMVA related attributes).
- Wallet
- Press "Scan QR-Code", then "Show my QR Code", enable permissions (Bluetooth and location, some devices require you to do this in the app settings, after which you may have to restart the app).
- Connect:
- NFC: Tap the two devices against each other (make sure the NFC chips on the devices align)
- QR: Scan the wallet QR code with the verifier application
- Both: Select in the verifier app whether it should use Peripheral or Central mode (both work)
- Wallet
- It should now redirect to the proof sharing screen alowing you to share the requested attributes
- Verifier
- Once the wallet has shared the attributes it will show the attributes in the verifier app.
This app requires devices with:
- Android 8+
- Hardware Security Module (HSM)
- Biometric support (e.g., fingerprint sensor, face recognition)
Android devices without these features will not be able to run the app.
Compatible with iPhone 5s and later models. This app requires devices with:
- iOS 14+
The EasyPID wallet is part of a larger monorepo. The EasyPID app is located in the apps/easypid directory.
This is the actual EasyPID application. It is built using Expo and React Native.
The app uses file-based routing starting in the src/app directory. Each file in this directory is a route within the app.
E.g. 'src/app/authenticate.tsx' is the entry point for the authentication screen.
Initially when the app is opened, the src/app/(app)/_layout.tsx is rendered. This is the main layout for the app. If the wallet is not unlocked, the user is redirected to the onboarding (on first launch) or authentication screen (on return).
The agent contains the digital identity related wallet functionality. It uses a Credo agent instance to manage the wallet.
Aries Askar is used for cryptographic operations and encrypted storage of the wallet data.
Expo Secure Environment is used to provide support for cryptographic operations using the device's secure environment (HSM, SE, etc.) hidden behind biometric authentication.
Some relevant links:
- Handling invitations - this is the entry point for most interactions in the app that need to use the agent. E.g receiving and sharing credentials
The secure store package located in packages/secure-store contains logic for secure unlocking and initializing of the wallet. It uses React Native Keychain under the hood, which integrates with the device's secure APIs for storing sensitive data.
It also contains the logic for deriving the wallet's master key from the user PIN (using KDF). Whenver the wallet is opened, the PIN is required to unlock the wallet.
Alternatively, the derive PIN can be stored in the device's keychcain, allowing the user to retrieve the master key from the keychain and unlock the wallet directly.
Relevant links:
- Secure Unlock Provider - the main entry point for secure unlocking and initialization of the wallet
The app package and ui package contain the underlying app UI and screens logic. This code is shared between our existing Paradym Wallet also located in this repository. This allows us to reuse base elements, while still providing custom screens and UI elements in each of the applications.
The Wallet Service Provider (WSP) is a separate service that allows creating and signing with hardware based keys. The Wallet Service Provider currently uses Google Cloud HSM, and creates a separate key ring for each wallet. A wallet communicates to the Wallet Service Provider based on a key dervied from a salt and PIN.
In the future this will be updated to also include a key attested by Google Play Integrity or Apple App Attest Service, ensuring the WSP is actually interacting with an instance of the EasyPID wallet, and keys are generated in the wallet. The service also allows issuance of Wallet Attestations, but these are not leveraged in the EasyPID yet, and the keys are also not verified by the Google Play Integrity or Apple App Attest Service.
Wallet Service Provider Implementation: https://github.com/animo/funke-wallet-provider
The documentation folder currently contains only the overview of the WCAG 2.2 accessibility compliance status with the accompanying todo's for next steps on accessibility.
The C/C' flow supported in the Paradym Wallet is mostly implemented in Credo.
The following section lists the software components used to create the EasyPID wallet. The heavy lifting is done by Credo. The most notable dependencies consumed by Credo are the OpenID4VCI, OpenID4VP, OpenID Federation, Mdoc and SdJwt libraries. Other notable dependencies include the Animo Expo Secure Environment, which provides support for cryptographic operations using the device's secure environment (HSM, SE, etc.) hidden behind biometric authentication, and Animo Ausweis Sdk for automatic setup and configuration of the Ausweis SDK for iOS and Android in Expo apps.
- Credo
- Expo Secure Environment
- Expo Mdoc Data Transfer
- Based on EUDI Reference Implementation
- Ausweis Sdk
- Wallet Service Provider Implementation
The following standards and specifications were implemented.
- 🟢 OpenID for Verifiable Credential Issuance - ID 1 / Draft 14
- 🟢OpenID for Verifiable Presentations - Draft 20
- Supports DCQL from draft 22
- 🟢 SD-JWT VC - Draft 3
- 🟢 Self-Issued OpenID Provider V2 - Draft 13
- 🟢 ISO 18013-5
- 🟢 ISO/IEC TS 18013-7 DTS Ballot Text
- 🟡 High Assurance Interop Profile - Draft 0
- Missing
verifier_attestationand wallet attestation
- Missing
- 🟠 OpenID Federation - Draft 40
- Entering incorrect PIN during presentation sharing will get stuck on the PIN loading screen (it does show correct PIN invalid toast).
- You have to force close the app when you use BLE for the first time after enabling location permission because the permission popup does not go away.
Readme
- Extended this README document with additional testing information.
- Added Known Bugs section.
- Replaced screenshot in readme
- Added a section about the Wallet Service Provider
Wallet
- Fixed an issue with the app locking in the background commit
- Fixed an issue where deeplinking didn't work on iOS if the wallet is already unlocked commit
- Redeployed test relying party to add a "Open in Wallet" button for same device flow (commit)