UNPKG

@dwn-protocol/id-sdk

Version:

SDK for accessing the features and capabilities

github.com/d-protocol/id-sdk/tree/main

d-protocol/id-sdk

158 lines 6.5 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; import { generateBls12381G2KeyPair, blsSign, blsVerify, blsCreateProof, blsVerifyProof, } from '@mattrglobal/bbs-signatures'; /** * The `Bbs` class provides an interface for BBS+ signature operations * using the BLS12-381 pairing-friendly curve. * * BBS+ signatures enable multi-message signing where each attribute of * a credential is signed as a separate message. This allows a holder * to derive a zero-knowledge proof that selectively discloses only * chosen attributes without revealing the full signed message set. * * Example usage: * * ```ts * const keyPair = await Bbs.generateKeyPair(); * const messages = [ * new TextEncoder().encode('age=25'), * new TextEncoder().encode('country=US'), * ]; * const signature = await Bbs.sign({ keyPair, messages }); * * const proof = await Bbs.createProof({ * publicKey: keyPair.publicKey, * signature, * messages, * revealed: [1], * nonce: new TextEncoder().encode('unique-nonce'), * }); * * const isValid = await Bbs.verifyProof({ * publicKey: keyPair.publicKey, * proof, * messages: [messages[1]], * nonce: new TextEncoder().encode('unique-nonce'), * }); * ``` */ export class Bbs { /** * Generates a BLS12-381 G2 key pair suitable for BBS+ signatures. * * @returns A Promise resolving to a `BbsKeyPair` with 96-byte public key and 32-byte secret key. */ static generateKeyPair() { return __awaiter(this, void 0, void 0, function* () { const keyPair = yield generateBls12381G2KeyPair(); return { publicKey: keyPair.publicKey, secretKey: keyPair.secretKey, }; }); } /** * Signs a set of messages using BBS+ producing a single 112-byte signature. * Each message is treated as a distinct attribute that can later be * individually disclosed or hidden via `createProof`. * * @param options.keyPair - The BLS12-381 key pair (publicKey + secretKey). * @param options.messages - Array of messages (Uint8Array) to sign. * @returns A Promise resolving to the BBS+ signature as a Uint8Array. */ static sign(options) { return __awaiter(this, void 0, void 0, function* () { const { keyPair, messages } = options; if (!messages || messages.length === 0) { throw new Error('At least one message is required for BBS+ signing'); } const signature = yield blsSign({ keyPair: { publicKey: keyPair.publicKey, secretKey: keyPair.secretKey, }, messages, }); return signature; }); } /** * Verifies a BBS+ signature against the full set of original messages. * * @param options.publicKey - The 96-byte BLS12-381 G2 public key. * @param options.signature - The 112-byte BBS+ signature. * @param options.messages - The complete set of messages that were signed. * @returns A Promise resolving to `true` if the signature is valid. */ static verify(options) { return __awaiter(this, void 0, void 0, function* () { const { publicKey, signature, messages } = options; const result = yield blsVerify({ publicKey, signature, messages, }); return result.verified; }); } /** * Derives a zero-knowledge proof from a BBS+ signature that selectively * discloses only the messages at the specified indices. The prover * demonstrates knowledge of the full signature without revealing * hidden messages. * * @param options.publicKey - The issuer's 96-byte BLS12-381 G2 public key. * @param options.signature - The original 112-byte BBS+ signature. * @param options.messages - The complete set of messages that were signed. * @param options.revealed - Array of zero-based indices indicating which messages to disclose. * @param options.nonce - A unique nonce to bind the proof to a specific verification session. * @returns A Promise resolving to the derived proof as a Uint8Array. */ static createProof(options) { return __awaiter(this, void 0, void 0, function* () { const { publicKey, signature, messages, revealed, nonce } = options; if (!nonce || nonce.length === 0) { throw new Error('A nonce is required for proof creation to prevent replay attacks'); } const proof = yield blsCreateProof({ signature, publicKey, messages, nonce, revealed, }); return proof; }); } /** * Verifies a BBS+ zero-knowledge selective disclosure proof. * Only the disclosed messages (those at the `revealed` indices during * proof creation) should be provided. * * @param options.publicKey - The issuer's 96-byte BLS12-381 G2 public key. * @param options.proof - The derived proof from `createProof`. * @param options.messages - Only the disclosed messages, in order of their original indices. * @param options.nonce - The same nonce used during proof creation. * @returns A Promise resolving to `true` if the proof is valid. */ static verifyProof(options) { return __awaiter(this, void 0, void 0, function* () { const { publicKey, proof, messages, nonce } = options; const result = yield blsVerifyProof({ proof, publicKey, messages, nonce, }); return result.verified; }); } } //# sourceMappingURL=bbs.js.map