As we generate more data, our identities become more complicated. Our public and private identities are built on the events, contexts and attributes that shape our lives from birth onward. Think about information like names, dates, addresses, or sectors such as employment, education and health. With every change, we generate new information, leaving an ever-expanding digital footprint in our wake. At the moment, all that data is spread out across a multitude of isolated systems, each maintained by a different stakeholder. The government agency that issues your passport. The bank that provides your mortgage or requires a KYC. Basically any public or private entity that delivers the products and services you rely on.
Traditional identity management systems simply can’t keep up with those evolving needs. Our Blockchain based eID system provides a decentralized, secure solution that fosters innovation has the power to put individuals back in control of their identities and data. The user can decide what identity data attributes he shares with each organization.
Government agencies will still be a critical source of trust of identities as they need to provide the important function of identity proofing and be a trusted verifier that the user is who he is claiming to be and that his identity information is correct. As they do today, trusted organizations, such as governments, banks and so forth, would continue to be a source of trust of an identity. In the digital world, these trusted organizations would facilitate as an identity validator to other organizations.
As a result we get a safer, more efficient approach to identity management.
With Blockchain based identities the user holds one or many public / private key pairs. They can be stored in a hardware wallet (Smartcard), encrypted stored on his mobile device or web browser, as a paper wallet (printed QR Code) or just memorized as a Mnemonic Phrase (12 random words out of a total of 2048 words).
Below we will be using the Aloaha Blockchain and private keys in form of a Mnemonic Phrase to demonstrate various aspects of the solution. As a key we use:
brass security afford maze adapt cousin item silk about auction fossil aisle
With cryptographic algorithm you can calculate its unique public key:
51703930c2cdb502fb2d814b56710826f463a7e78a8b45a559268266262fd20f
which has the public address (hash of public key): 0x7bc465b515600a61f2cbf4be63f2fd47235cde64
We prepared a demonstration system which allows to maintain the users metadata, authenticating to eforms, direct in-form payments, digital signatures and of course encrypted data exchange.
Users Metadata
At the first time you log on to the Aloaha Attestation Server you need to enter your private key and a password to encrypt the private key securely in your mobiles or browsers storage. The private key will never leave your browsers secure storage but for an extra layer of security it could also be stored inside a smart card. To try it out you need to go to http://demo.chain-provider.com, enter your private key (Mnemonic Phrase) and your Wallet Password.
Note: The Wallet Password is only used to encrypt the the private key to be stored in the browsers or your mobiles secure storage for future use and can be freely chosen.
When you click Logon the Mnemonic Phrase it will be used to calculate digital signature to authenticate the user against the Attestation Server. If the signature is validated correctly you are taken to your metadata page to view or maintain your data.
At the top you can see other functions such as transferring of Aloahas (the intrinsic currency of the Aloaha Blockchain), transferring of the Valletta Coin and the exchange of fully encrypted messages via double encrypted database with other Blockchain users.
Integration into other applications
It is very easy to integrate the Aloaha Blockchain into other applications (Aloaha and 3rd Party). All what is required from the development side is to add an include declaration in the original application. We demonstrate that here with the Aloaha eForm Provider solution. If you open the following form: https://forms.chain-provider.com/pdfforms.aspx?fid=test1 you will be asked for the Mnemonic Phrase and a password to encrypt the Mnemonic Phrase for further use in your browser.
Note: Even here the “Mnemonic Phrase” has to be typed in only on your first visit to the domain forms.chain-provider.com. The Mnemonic Phrase will be encrypted with your Wallet Password and stored in the internal secure storage of your browser to be re-used on further visits with just entering the password alone.
With the “Mnemonic Phrase” a digital signature is being calculated and validated by the server. If correct the user is authenticated and his encrypted metadata is loaded from the chain. This meta data is decrypted by the private key and used to pre-fill the authenticated fields of the form. All field content can be saved encrypted back to the chain into the encrypted database with pressing the blue “Save” button. Previously saved data can be retrieved from the encrypted database back into the form with the yellow “Load” button.
Payments
Potential form fees can be paid directly from within the form with just clicking the yellow Valletta Coin Image. Once the payment has been received the button will change its appearance and a transaction ID will be written to the transaction ID field.
The Valletta Coin is ideal for:
- fee payments – directly possible with Aloaha eForm Provider.
- student subsidies.
- promoting online services – for example with bonus points on every use
- etc.
Own balances can always be checked with: https://demo.chain-provider.com/coin.aspx
Signatures
There are different types of digital signatures with different legal value possible. A simple electronic signature is usually a signature captured on a touch device or drawn with the mouse directly on the form. On the sample form you see such a signature field right below the yellow Valletta Coin Image on the right side.
Digital Signatures using the private key of the user have a higher legal value than simple signatures. If you submit this form all form data is extracted, hashed, digitally signed with the users private key and embedded into the resulting PDF document.
Optionally such digital signatures can be rendered as QR code as demonstrated on form:
https://forms.chain-provider.com/pdfforms.aspx?fid=blockchain
It will look like the images below – ideal if digital signatures of printed documents have to be verified.
Data Encryption
Data uploaded to the Aloaha Chain is always encrypted with the public key of the owner of the data and the public key of the identity allowed to read the data. Like this nobody can ever gain access to the data.
A demo page for our double encrypted database can be accessed via:
https://demo.chain-provider.com/data.aspx
The double encrypted database is ideal for any form of sensitive data storage and workflows such as:
- Health Data
- Educational Certificates
- Property Register
- Document Certifications
- Account Balances
- Secure Communication
- Privacy Protection
- KYC
- etc.
Please contact info@aloaha.com for a personal online presentation.