Skip to content
forked from edemo/PDAnchor

Trust Anchor for anonymous assured identity provider

Notifications You must be signed in to change notification settings

krosza/PDAnchor

 
 

Repository files navigation

PDAnchor

This is the trust anchor for an anonymous assured identity provider. We have a smart card with a private key known by no one. Anyone can submit a personal identity number ("személyi szám", it is a unique identifier for Hungarian citizens), along with a string representing mother's name and gets the hash of the signature of the identity number.

This gives us a basic service, which helps us to make sure we have people only once in our voter database, without having to know anything about our voters.

To avoid brute force and Denial of Service attacks, one IP can query the database only once in a minute.

installation notes:

dependencies include:

  • python
  • apache2
  • python-crypto
  • opensc
  • libapache2-mod-wsgi
  • opensc-pkcs11
  • softhsm (only for testing)
  • make (only for testing)
  • wget (only for testing)

See Makefile, the examples directory and the testserver directory for hints

About

Trust Anchor for anonymous assured identity provider

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Python 66.7%
  • HTML 25.8%
  • ApacheConf 4.7%
  • Makefile 1.9%
  • Shell 0.9%