# 1 - Swiyu Signup and Exploration

Our goals of this exercise is to understand the goals of the swiyu E-ID project, as well as how it works 
in a pragmatic way.

**Security**: All invloved parties depend on cryptographic guaratees that the can't be tampered with.

**Decentalized storage**: The issued credentials only live on the wallet of their holders. There's no other copies elsewhere.

With holder-binding, we also ensure that even if the credentials were copied externally, they wouldn't be usable.


Overview:

1. Installing the swiyu app
2. Get a Beta Government E-ID
3. Create an E-ID HoW Credential
4. Verify your Credential
5. Inspect Logs
6. Analyze Logs
7. Linkability of Multiple Presentations

## 1.1 - Install the swiyu app

The swiyu wallet app is a very important component of the E-ID eco-system. It where users store the credentials they obtain from different issuers. It's responsible for storing those credentials securely, and help ensuring they can't be used elsewhere through holder-binding. 
By following the swiyu specification, the wallet can surely work with all issuers and verifiers adhering to the same specification.

Please install the wallet app version that suits your mobile phone.

a.	https://play.google.com/store/apps/details?id=ch.admin.foitt.swiyu&hl=en&pli=1  
b.	https://apps.apple.com/ch/app/swiyu/id6737259614

### Discussion Points
- what is the main usage of the swiyu app?
- what security is given?

## 1.2 - Get a Beta Government E-ID

The swiyu eco-system allows us to create all types of verifiable credentials. However, at the center of everything, there needs to be an E-ID. A root VC that proves who you are you are.

This is why the swiyu team has also developed a beta-ID verifiable credential that users can create for themselves to test the workflow.

Follow the link to create one for yourself now: https://www.bcs.admin.ch/bcs-web/#/beta-id/create

### Discussion Points

- how does this work with the "real" E-ID?
- which data is stored where?

## 1.3 - Create an E-ID HoW Credential

With a beta-ID from the previous the step, we can use it to prove who we are to the C4DT website
which can then provide us a new Verifiable Credential that proves you've attended this workshop.

The issued credential will follow the SD-JWT VC standard in the swiyu specification, along with holder-binding to the wallet. As this stage, it's important to note that the swity base registry and trust registry come into play. These are the registries that keeps track of issuers and verifiers in the eco-system and it's what prove that C4DT is who it claims to be. 

It also provides clear UX on the app that lets you know that this issuer is verified and can be trusted. 

**Base and Trust registries**: these two registeries hold the DID documents for the issuers and verifiers, and also store other information that enhances that user experience through the different workflows. DID documents are identifying documents for issuers and verifiers which include their public keys and public identifiers.


Go to https://eid.c4dt.org and navigate to the issuer section  
a.	The website will ask you to verify you identity first  
b.	then it will issue you a credential for attending the workshop  
c.  All data will be populated from the Beta ID credential you verified except the grade, you will get to set that yourself.  
d.	You will receive the credential on your wallet.

### Discussion Points

- how is the test ID linked to the HoW Credential?
- which messages are exchanged between the wallet and the issuer?
- how is the issuer configured and certified?
- how does the issuer verify the validity of the test ID?

## 1.4 - Verify your Credential

The second part of this demo plays in the shoes of a verifer that needs to acquire some of the information included in a verifiable credential. For our use case, this is a company that needs to verify that an applicant has acquired a certification for attendance of a C4DT workshop on E-ID.

The swiyu specification supports SD (Selective Disclosure) which means that we can only ask for the part of the verifiable credential that matters, and allows holder of a VC to negotiate which data they disclose to a specific party.

Go to https://eid.c4dt.org/verifier/verify where you will verify your newly gained VC.

### Discussion Points

- which messages are exchanged between the wallet and the issuer?
- supposing the credential is unlinkable, under which conditions is the presentation/verification also unlinkable?

## 1.5 - Inspect Logs

On https://eid.c4dt.org/logs, we have exposed a portion of the system logs, specifically all interactions between the wallet and the different services. All those interactions follow the OID4VC and OID4VP specifications, These specifications make it very easy to integrate into the eco-system, but also makes it easy for a person-in-the-middle to monitor or attack the system. However, due to the strong cryptographic guarantees, including holder-binding, these VCs can't be used by another actor.

Use this section to look for your logs, and figure out the important parts.

**Task**:
Go to https://eid.c4dt.org/logs, and look  for the logs that match your VC presentation (the request that goes out from your wallet when you scan the QR code to verify your newly acquired VC.)

### Tips to find your logs

Find your specific VC presentation request in the logs. Hint: look for the:
    a.	Timestamp - when you made the request  
    b.	The request content is preceeded by `=== REQUEST BODY ===`
    c.  And the body is preceeded by `=== RESPONSE BODY ===`

### Discussion Points

- who can see these messages?
- what will an attacker-in-the middle see, e.g., in an unsecured WiFi connection?

## 1.6 - Analyze Logs

Hopefully, you've found the logs specific to your requests, but they're all encoded.
To decode them we follow a couple of steps

1.	The presentation is URL-encoded, so decode it first using python xyz
2.	From the decoded request body, find the encoded VC presentation. 
3.	Use https://www.sdjwt.co/decode to decode the presentation.
4.  Identify the different types of information stored there.

### Discussion Points

- Which parts do you think can be used to link two presentations?
- Look how the selective disclosure works when disclosing different parts of your credential
  - How is the data secured?
  - Why isn't it possible to guess low-entropy entries like the postal code?

In [22]:
# Use a python url parser to decode the url-encoded string you've found.
import urllib.parse
encoded_msg = "vp_token=eyJ2ZXIiOiIxLjAiLCJ0eXAiOiJ2YytzZC1qd3QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImRpZDp0ZHc6UW1YOW83QWJuSktaTVVNaG9YS0VIemtjSEg4bUd3aXdneFpGYzlyRndIRmlzbTppZGVudGlmaWVyLXJlZy50cnVzdC1pbmZyYS5zd2l5dS1pbnQuYWRtaW4uY2g6YXBpOnYxOmRpZDo5NWRmMjE4ZC0zMGNmLTRiZjMtYTg2NC04ZGViOThjZTNmNjMjYXV0aC1rZXktMDEifQ.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.zKk3huO8gpKQRB7qJRAZUHEXwqG4jFoBIdAorusQHgpekGCg-wYK80FcCLCPRLY7abdai-3FruOWBV668NZziQ~WyJsZld6QTVJWWx6NE8xMTNWbERqYzhRIiwiZmlyc3ROYW1lIiwiSGVsdmV0aWEiXQ~WyI4N0JCcGpuX1pfRXE4RVNuTDhpSGdnIiwibGFzdE5hbWUiLCJOYXRpb25hbCJd~WyI4aVF2MWV3dW90bldXazVtdWFsUXBnIiwiZGVncmVlIiwiIl0~eyJ0eXAiOiJrYitqd3QiLCJhbGciOiJFUzI1NiJ9.eyJzZF9oYXNoIjoieUJ5bDg2dUd6V2VNM0JSSW9BQ0pLNlc5NmNZQlFDOVZhMjE2bWVWV2ZzUSIsImF1ZCI6Imh0dHBzOi8vZWlkLmM0ZHQub3JnL29pZDR2cC9hcGkvdjEvcmVxdWVzdC1vYmplY3QvY2Y5MjNkNjgtZWM1Yy00ZDk4LTg4MTMtNjY2ODk3MjIyZWYwL3Jlc3BvbnNlLWRhdGEiLCJub25jZSI6IjJacEE5ZXZUT1ppNldINUZrYnFSb2ExMnAyRm0zdkwwIiwiaWF0IjoxNzUwODUxODIwfQ.bKtTCbKj6WrTP0gQCnTpbt4MhRg89Ixr9i2VOPdjL6744NzCXYqGf6NrjI-YvpEqj7XhtevUCU36V7fsrVh14g&presentation_submission=%7B%22definition_id%22%3A%224ac0a851-464f-4714-9b2f-0480865a0799%22%2C%22descriptor_map%22%3A%5B%7B%22format%22%3A%22vc%2Bsd-jwt%22%2C%22id%22%3A%224ac0a851-464f-4714-9b2f-0480865a0799%22%2C%22path%22%3A%22%24%22%7D%5D%2C%22id%22%3A%2246aa0c1c-bccb-4dc2-9e68-bd080b4e46a6%22%7D"
decoded_verification = urllib.parse.parse_qs(encoded_msg)

vc_presentation_jwt_token = decoded_verification["vp_token"][0]
vc_presentation_jwt_token  # This output is a SD-JWT VC token that can be decode using the decoder link shared above

'eyJ2ZXIiOiIxLjAiLCJ0eXAiOiJ2YytzZC1qd3QiLCJhbGciOiJFUzI1NiIsImtpZCI6ImRpZDp0ZHc6UW1YOW83QWJuSktaTVVNaG9YS0VIemtjSEg4bUd3aXdneFpGYzlyRndIRmlzbTppZGVudGlmaWVyLXJlZy50cnVzdC1pbmZyYS5zd2l5dS1pbnQuYWRtaW4uY2g6YXBpOnYxOmRpZDo5NWRmMjE4ZC0zMGNmLTRiZjMtYTg2NC04ZGViOThjZTNmNjMjYXV0aC1rZXktMDEifQ.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

## 1.7 - Linkability of Multiple Presentations

Ahmed: create a short paragraph for introduction. E.g., let's look how two presentations from an unlinkable 
field like the grade can still be linked to the same holder.

Do two verifications of the HoW credential, fetch the presentation from the Logs, and search for fixed strings.

### Discussion Points

- What can make it very hard to avoid linkability when you think about the fields you're sharing with the Verifier?
- Which fields can be revealed and keep anonymity?
- Check with your neighbours to see which fields are constant between two wallets
- What is a simple way to remove some of the linkability?