IETF Logo Mail Archive

Re: [saag] Interest COVID-19 'passport' standardization?

Dirk-Willem van Gulik <dirkx@webweaving.org> Fri, 30 July 2021 21:27 UTC

Return-Path: <dirkx@webweaving.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 90B863A11A0 for <saag@ietfa.amsl.com>; Fri, 30 Jul 2021 14:27:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZnIlxjl_N7TL for <saag@ietfa.amsl.com>; Fri, 30 Jul 2021 14:27:39 -0700 (PDT)
Received: from weser.webweaving.org (weser.webweaving.org [148.251.234.232]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6D3B43A119D for <saag@ietf.org>; Fri, 30 Jul 2021 14:27:39 -0700 (PDT)
Received: from smtpclient.apple (77-63-38-235.mobile.kpn.net [77.63.38.235]) (authenticated bits=0) by weser.webweaving.org (8.16.1/8.16.1) with ESMTPSA id 16ULOqCb033615 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Fri, 30 Jul 2021 23:24:52 +0200 (CEST) (envelope-from dirkx@webweaving.org)
X-Authentication-Warning: weser.webweaving.org: Host 77-63-38-235.mobile.kpn.net [77.63.38.235] claimed to be smtpclient.apple
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.100.0.2.22\))
From: Dirk-Willem van Gulik <dirkx@webweaving.org>
In-Reply-To: <7465EFBA-A37A-4CCD-BD0F-63BD202C7AEF@tzi.org>
Date: Fri, 30 Jul 2021 23:23:46 +0200
Cc: Harry Halpin <hhalpin@ibiblio.org>, Volker Birk <vb@pep-project.org>, saag@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <E0F1EEAE-CC6B-4F15-81F6-6CDA91312591@webweaving.org>
References: <CAE1ny+4QdmSJS-spV6Do5yDs1x3iAwyHdSx=Oa+cRXU+ESZ2nA@mail.gmail.com> <20210730185749.GA21724@dragon.pibit.ch> <CAE1ny+6wZVh1A9yZPfLpuG7AFg5THrY9ie4+QmTsde+DiFHi4w@mail.gmail.com> <7465EFBA-A37A-4CCD-BD0F-63BD202C7AEF@tzi.org>
To: Carsten Bormann <cabo@tzi.org>
X-Mailer: Apple Mail (2.3654.100.0.2.22)
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.2 (weser.webweaving.org [148.251.234.232]); Fri, 30 Jul 2021 23:24:58 +0200 (CEST)
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/N7T8VUdsRRwiFkTTR_FJWjMoRMU>
Subject: Re: [saag] Interest COVID-19 'passport' standardization?
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Jul 2021 21:27:45 -0000

On 30 Jul 2021, at 22:57, Carsten Bormann <cabo@tzi.org> wrote:
> On 2021-07-30, at 22:40, Harry Halpin <hhalpin@ibiblio.org> wrote:
>> 
>> While I support your sentiments (in fact, I warned against the persistence and abuse of COVID-19 related infrastructure as soon as the pandemic hit [1]) and do note that the COVID-19 passports have already happened in most countries, particularly in the EU. If they were built with open source and open international standards, with actual privacy and security, then it would be harm minimization. 
> 
> There are some components in the EU DGC that we might want to extract and properly specify.


First - a word of caution - these standards were developed as the pandemic evolved - and are very narrowly tailored to a very specific compromise w.r.t to time, scope and what was legally possible quick enough.

Secondly be also aware that the EU DCC has a very specific and narrow use case - cross border travel; and is used in a setting where a traveler is generally also required to carry a passport or similar. As they are crossing borders. 

With that caveat - privacy impact is minimised in that setting - but by design it still reveals identity and some medical details to the verifier[1]. As that is core to that use case.

Conversely domestic implementations (like the one in the Netherlands) that are designed for use in the private sector (e.g. by a bouncer in the bar) are designed against different use cases. 

And, taking NL as an example again, may use selective disclosure, ZKP and other techniques to frustrate or prevent surveilance or tracking (i.e. not being able to recognise a person as they move around and see scanners at different bars).[2]

Most of this is quite akin to verifiable credentials - or borrows heavily from it. 

However both the EU and domestic approach allows for fully off-line use (i.e dynamically generated Qrs and verifiers with a static trust list). With absolutely no need to verify something ‘on line’ — not even something like an OCSP-ish revocation at Qr level. This is to minimise surveillance. 

Both approaches have been heavily optimised for size - as Qr are challenging in the field if they contain more than 1200 8-bit byte equivalent or so.

Standards can be found at https://github.com/ehn-dcc-development

If you are curious - most countries opensource their code (also to help with trust in society) - and joint European effort (by something called the eHealthNetwork) base implementations are also open source[3].

With kind regards,

Dw.
— 
Dirk-Willem van Gulik (currently helping the Ministry of Public Health in the Netherlands out as their CTO).


1: For the technology see: https://ec.europa.eu/health/ehealth/key_documents_en#anchor0 and specially https://ec.europa.eu/health/sites/default/files/ehealth/docs/digital-green-certificates_v3_en.pdf.  

In short; it is an Qr code that can verified fully offline (both for scanner and citizen) that consists of a JSON payload, CBOR packaged, COSE signed, zlib-defalte compressed and base45 transport protected with the prefix ‘hc1’.

The JSON payload consists of the persons name and DoB and a medical block - that contains things like the vaccination used, the date, manufacturer and medically/responsibly entity. It does not have things like a passport or citizen number; the name and DoB is all that ties it to some other identity document.

The signature is verified against a trustlist of public keys; the latter is much alike to the ICAO masterlist commonly used for passports; a per country CA signing shorter lived digital signing certificates (ECC is mostly used).

Use this tool to decode your own: https://github.com/ehn-dcc-development/ehn-sign-verify-python-trivial

2: e.g for the Netherlands (https://github.com/minvws/nl-covid19-coronacheck-app-coordination) this is Idemix ZKP based approach; with a Qr code that changes every few minutes - with identity binding limited to just a few initials of the persons last or first name and the day/month of birth (the exact mix coded depends on the prevalence).

3:  Joint standard development: https://github.com/ehn-dcc-development, code NLhttps://github.com/minvws code eHealth Network collaboration: https://github.com/eu-digital-green-certificates

v2.8.7 | Report a Bug | By Email