Encrypted Storage Capability (#2199)
- Support for encrypted storage. Encryption format and underlying storage providers are both pluggable.
- Concrete implementation of the EDV encryption format (data model).
- Concrete implementation of the EDV REST API as a storage provider.
- Support for TrustBloc EDV Server extensions. These are optional and default to being disabled in order to ensure compatibility with purely standard EDV server implementation.
LD Signatures
- Support for capabilityChain in LD proofs (#2285)
BBS+ Signatures 2020 (#1725)
- BBS+ signer of VC
- BBS+ selective disclosure of VC
- Interoperability tests
WebKMS
- Add remote Webkms client as RemoteKMS kms.KeyManager implementation and RemoteCrypto crypto.Crypto implementation (#2313, #2307)
- RemoteKMS and RemoteCrypto are Aries pluggable services (using
WithKMS()andWithCrypt()) (#2313, #2307)
Crypto
- JWE key wrapping is extracted from the tinkcrypto keys and into the crypto.Crypto api (ie introduction of WrapKey()/UnwrapKey() calls) (#2301, #2300, #2299, #2271, #2257, #2256)
- Add internal remoteCryptoBox service to support legacyPacker using remote keys (#2369)
did:web
Support for did:web resolution was added (#2288 )