Skip to content

[Draft] Verification flow refinement

Story

Link to discussion in community forum

https://community.vereign.com/t/seal-verification-flow-potential-simplifications/254

Conceptual diagram

Message_Verification_Flowchart

Decomposition of tasks

Phase 1

Stage 1 - Detect and Extract seal

  • Implement the whole Stage 1 to support extraction of both Outlook and Gmail seals. Propagate this change into Gmail and Outlook addons.

Stage 2 - Assemble seal data for verification

  • Put seal signature into SenderStatusObject (use reserved qrCodeSignature field). Encapsulate logic of seal data assembly into a reusable function of the library, propagate change into extensions and addons.
  • Stop library from creation of attachmentsPartsSignature.
  • ? Implement reading of metadata.json

Stage 3 - verify seal.

  • Decrypt seal.

Stage 4 - verify blockchain.

  • Leave fetching and verification of data as is. Use verification-service/api/verifySenderStatusObject at the recipient side.

Stage 5 - verify message

  • Rework severity table to match diagram. Get rid of attachmentsPartsSignature verification.

Tickets:

Phase 2

// Pending

Phase 3

// Pending

Edited by Igor Markin