v1.2 clean part 2

Author: qyan-dev

build.gradle

@@ -18,9 +18,9 @@ subprojects {
 
     repositories {
         mavenLocal()
+        mavenCentral()
         maven { url "http://maven.aliyun.com/nexus/content/groups/public/" }
         maven { url "https://oss.sonatype.org/content/repositories/snapshots" }
-        mavenCentral()
     }
 
     clean {

demo/src/main/java/com/webank/wedpr/demo/CryptoDemo.java

@@ -9,7 +9,7 @@
 /** Minimalist demo of WeDPR Crypto Tools. */
 public class CryptoDemo {
   public static void run(CryptoClient cryptoClient) throws Exception {
-    System.out.println("\n*******\nCRYPTO TOOL RUN\n*******");
+    System.out.println("\n*******\nCRYPTO DEMO RUN\n*******");
 
     CryptoResult cryptoResult = cryptoClient.secp256k1GenKeyPair();
     String publicKey = cryptoResult.publicKey;

demo/src/main/java/com/webank/wedpr/demo/DemoMain.java

@@ -3,7 +3,9 @@
 package com.webank.wedpr.demo;
 
 import com.webank.wedpr.crypto.CryptoClient;
-import com.webank.wedpr.scd.ScdClient;
+import com.webank.wedpr.scd.IssuerClient;
+import com.webank.wedpr.scd.UserClient;
+import com.webank.wedpr.scd.VerifierClient;
 import com.webank.wedpr.vcl.VclClient;
 
 /** Demo Launcher. */
@@ -20,7 +22,9 @@ public static void main(String[] args) throws Exception {
     VclDemo.run(vclClient, 3, 4, 5);
     VclDemo.run(vclClient, -1, 4, 3);
 
-    ScdClient selectiveDisclosureClient = new ScdClient();
-    ScdDemo.run(selectiveDisclosureClient);
+    IssuerClient issuerClient = new IssuerClient();
+    UserClient userClient = new UserClient();
+    VerifierClient verifierClient = new VerifierClient();
+    ScdDemo.run(issuerClient, userClient, verifierClient);
   }
 }

demo/src/main/java/com/webank/wedpr/demo/ScdDemo.java

@@ -8,122 +8,128 @@
 import java.util.*;
 
 /**
- * Minimalist demo of selective disclosure.
+ * Minimalist demo of selective certificate disclosure (SCD).
  *
  * <p>For a better interactive demo, please try our Rust version at
  * https://github.com/WeBankBlockchain/WeDPR-Lab-Core
  */
 public class ScdDemo {
-  public static void run(ScdClient scdClient) throws Exception {
-    System.out.println("\n*******\nSELECTIVE DISCLOSURE RUN\n*******");
-
-    // issuer make template
-    ArrayList<String> attributes = new ArrayList<String>();
-    attributes.add("name");
-    attributes.add("age");
-    attributes.add("gender");
-    attributes.add("time");
-    String encodeAttributeTemplate = scdClient.issuerMakeCertificateSchema(attributes);
-    System.out.println("Encoded attributeTemplate = " + encodeAttributeTemplate);
-
-    IssuerResult issuerResult =
-        scdClient.issuerMakeCertificateTemplate(encodeAttributeTemplate);
-
-    String credentialTemplate = issuerResult.certificateTemplate;
-    String templateSecretKey = issuerResult.templatePrivateKey;
-    System.out.println("Encoded credentialTemplate = " + credentialTemplate);
-    System.out.println("Encoded templateSecretKey = " + templateSecretKey);
-
-    // User fill template
-    Map<String, String> maps = new HashMap<String, String>();
-    maps.put("name", "123");
-    maps.put("age", "18");
-    maps.put("gender", "1");
-    maps.put("time", "12345");
-    String credentialInfo = scdClient.userMakeAttributeDict(maps);
-    UserResult userResult =
-        scdClient.userFillCertificate(credentialInfo, credentialTemplate);
-
-    String signatureRequest = userResult.signCertificateRequest;
+  private static final String NAME = "name";
+  private static final String AGE = "age";
+  private static final String GENDER = "gender";
+  private static final String ISSUE_TIME = "issue_time";
+  private static final String DEFAULT_USER_ID = "default_user_id";
+
+  public static void run(
+      IssuerClient issuerClient, UserClient userClient, VerifierClient verifierClient)
+      throws Exception {
+    System.out.println("\n*******\nSCD DEMO RUN\n*******");
+
+    // An issuer defines the certificate schema and generates the certificate template.
+    List<String> schema = Arrays.asList(NAME, AGE, GENDER, ISSUE_TIME);
+    System.out.println("Encoded schema = " + schema);
+
+    IssuerResult issuerResult = issuerClient.makeCertificateTemplate(schema);
+
+    String certificateTemplate = issuerResult.certificateTemplate;
+    String templatePrivateKey = issuerResult.templatePrivateKey;
+    System.out.println("Encoded certificateTemplate = " + certificateTemplate);
+    System.out.println("Encoded templatePrivateKey = " + templatePrivateKey);
+
+    // A user fills the certificate template and prepares a request for the issuer to sign.
+    Map<String, String> certificateDataInput = new HashMap<>();
+    // TODO: Add a utility function to convert any string to a decimal string.
+    // Before this utility function is implemented, the attribute value can only be a decimal
+    // string.
+    certificateDataInput.put(NAME, "123");
+    certificateDataInput.put(AGE, "19");
+    certificateDataInput.put(GENDER, "1");
+    certificateDataInput.put(ISSUE_TIME, "12345");
+    String certificateData = userClient.encodeAttributeDict(certificateDataInput);
+    UserResult userResult = userClient.fillCertificate(certificateData, certificateTemplate);
+
+    String signCertificateRequest = userResult.signCertificateRequest;
     String userPrivateKey = userResult.userPrivateKey;
-    String credentialSecretsBlindingFactors = userResult.certificateSecretsBlindingFactors;
+    String certificateSecretsBlindingFactors = userResult.certificateSecretsBlindingFactors;
     String userNonce = userResult.userNonce;
-    System.out.println("Encoded signatureRequest = " + signatureRequest);
+    System.out.println("Encoded signCertificateRequest = " + signCertificateRequest);
     System.out.println("Encoded userPrivateKey = " + userPrivateKey);
     System.out.println(
-        "Encoded credentialSecretsBlindingFactors = " + credentialSecretsBlindingFactors);
+        "Encoded certificateSecretsBlindingFactors = " + certificateSecretsBlindingFactors);
     System.out.println("Encoded userNonce = " + userNonce);
 
-    // Issuer sign user's request to generate credential
+    // The issuer verifies the certificate signing request from the user and signs the certificate.
     issuerResult =
-        scdClient.issuerSignCertificate(
-            credentialTemplate, templateSecretKey, signatureRequest, "id1", userNonce);
-
-    String credentialSignature = issuerResult.certificateSignature;
+        issuerClient.signCertificate(
+            certificateTemplate,
+            templatePrivateKey,
+            signCertificateRequest,
+            DEFAULT_USER_ID,
+            userNonce);
+
+    String certificateSignature = issuerResult.certificateSignature;
     String issuerNonce = issuerResult.issuerNonce;
-    System.out.println("Encoded credentialSignature = " + credentialSignature);
+    System.out.println("Encoded certificateSignature = " + certificateSignature);
     System.out.println("Encoded issuerNonce = " + issuerNonce);
 
-    // User generate new credentialSignature
+    // The user blinds the received certificateSignature to prevent the issuer to track the
+    // certificate usage.
     userResult =
-        scdClient.userBlindCertificateSignature(
-            credentialSignature,
-            credentialInfo,
-            credentialTemplate,
+        userClient.blindCertificateSignature(
+            certificateSignature,
+            certificateData,
+            certificateTemplate,
             userPrivateKey,
-            credentialSecretsBlindingFactors,
+            certificateSecretsBlindingFactors,
             issuerNonce);
 
-    String credentialSignatureNew = userResult.certificateSignature;
-    System.out.println("Encoded credentialSignatureNew = " + credentialSignatureNew);
+    String blindedCertificateSignature = userResult.certificateSignature;
+    System.out.println("Encoded blindedCertificateSignature = " + blindedCertificateSignature);
 
-    // Verifier set verification rules
-    VerificationRuleSet verificationRuleSet = VerificationRuleSet.getDefaultInstance();
+    // A verifier sets a verification rule to:
+    // Check AGE > 18 and,
+    VerificationRuleSet.Builder verificationRuleSetBuilder = VerificationRuleSet.newBuilder();
     Predicate predicate =
         Predicate.newBuilder()
-            .setAttributeName("age")
+            .setAttributeName(AGE)
             .setPredicateType(PredicateType.GT.name())
-            .setPredicateValue(17)
+            .setPredicateValue(18)
             .build();
-    verificationRuleSet = verificationRuleSet.toBuilder().addAttributePredicate(predicate).build();
+    verificationRuleSetBuilder.addAttributePredicate(predicate);
+    // Reveal the ISSUE_TIME attribute.
+    verificationRuleSetBuilder.addRevealedAttributeName(ISSUE_TIME);
 
-    predicate =
-        Predicate.newBuilder()
-            .setAttributeName("gender")
-            .setPredicateType(PredicateType.EQ.name())
-            .setPredicateValue(1)
-            .build();
-    verificationRuleSet = verificationRuleSet.toBuilder().addAttributePredicate(predicate).build();
+    String encodedVerificationRuleSet =
+        verifierClient.protoToEncodedString(verificationRuleSetBuilder.build());
+    System.out.println("Encoded verificationRuleSet = " + encodedVerificationRuleSet);
 
-    String verificationRuleStr =
-        ScdClient.protoToEncodedString(verificationRuleSet);
-    System.out.println("Encoded verificationRuleStr = " + verificationRuleStr);
+    String verificationNonce = verifierClient.getVerificationNonce().verificationNonce;
 
-    // User prove by verification rules
-    String verificationNonce =
-        scdClient.verifierGetVerificationNonce().verificationNonce;
+    // The user proves the signed certificate data satisfying the verification rules and does not
+    // reveal any extra data.
     userResult =
-        scdClient.userProveSelectiveDisclosure(
-            verificationRuleStr,
-            credentialSignatureNew,
-            credentialInfo,
-            credentialTemplate,
+        userClient.proveSelectiveDisclosure(
+            encodedVerificationRuleSet,
+            blindedCertificateSignature,
+            certificateData,
+            certificateTemplate,
             userPrivateKey,
             verificationNonce);
 
-    String verificationRequest = userResult.verifyRequest;
-    System.out.println("Encoded verificationRequest = " + verificationRequest);
+    String verifyRequest = userResult.verifyRequest;
+    System.out.println("Encoded verifyRequest = " + verifyRequest);
 
-    // Verifier verify proof
+    // The verifier verifies the required verification rule is satisfied and extracts the required
+    // attribute.
+    // This verification should be done before calling revealedAttributeDict.
     VerifierResult verifierResult =
-        scdClient.verifierVerifySelectiveDisclosure(verificationRuleStr, verificationRequest);
-    System.out.println("result = " + verifierResult.boolResult);
-
-    verifierResult =
-        scdClient.verifierGetRevealedAttrsFromVerifyRequest(verificationRequest);
-    String revealedAttributeDict = verifierResult.revealedAttributeDict;
-    AttributeDict attributeDict =
-        AttributeDict.parseFrom(Utils.stringToBytes(revealedAttributeDict));
-    System.out.println("revealedAttributeDict =" + attributeDict);
+        verifierClient.verifySelectiveDisclosure(encodedVerificationRuleSet, verifyRequest);
+    System.out.println("Proof verification result = " + verifierResult.boolResult);
+
+    verifierResult = verifierClient.getRevealedAttributes(verifyRequest);
+    String encodedRevealedCertificateData = verifierResult.revealedAttributeDict;
+    AttributeDict revealedCertificateData =
+        AttributeDict.parseFrom(Utils.stringToBytes(encodedRevealedCertificateData));
+    System.out.println("revealedCertificateData =" + revealedCertificateData);
   }
 }

demo/src/main/java/com/webank/wedpr/demo/VclDemo.java

@@ -14,7 +14,7 @@
 public class VclDemo {
   public static void run(VclClient vclClient, long c1Value, long c2Value, long c3Value)
       throws Exception {
-    System.out.println("\n*******\nVCL PROOF RUN\n*******");
+    System.out.println("\n*******\nVCL DEMO RUN\n*******");
     System.out.println(
         "c1_value = " + c1Value + ", c2_value = " + c2Value + ", c3_value = " + c3Value + "\n");
 

release_note.txt

@@ -1 +1 @@
-v1.1.0
+v1.2.0

solution/scd/src/main/java/com/webank/wedpr/scd/IssuerClient.java

@@ -0,0 +1,50 @@
+// Copyright 2020 WeDPR Lab Project Authors. Licensed under Apache-2.0.
+
+package com.webank.wedpr.scd;
+
+import com.webank.wedpr.common.WedprException;
+import com.webank.wedpr.scd.proto.CertificateSchema;
+import java.util.List;
+
+/**
+ * Client class used by a SCD certificate issuer. This is the main interface class for Java apps
+ * using SCD functions.
+ */
+public class IssuerClient extends ScdClient {
+  /**
+   * Makes a certificate template for users to fill data.
+   *
+   * @param schema the schema defining the certificate attribute name list.
+   * @return IssuerResult containing data for certificateTemplate, templatePrivateKey.
+   * @throws WedprException if any error occurred.
+   */
+  public IssuerResult makeCertificateTemplate(List<String> schema) throws WedprException {
+    return NativeInterface.issuerMakeCertificateTemplate(
+            protoToEncodedString(
+                CertificateSchema.newBuilder().addAllAttributeName(schema).build()))
+        .expectNoError();
+  }
+
+  /**
+   * Signs a verified certificate from a user.
+   *
+   * @param certificateTemplate the encoded certificate template.
+   * @param templatePrivateKey the encoded template private key.
+   * @param signRequest the encoded certificate signing request from the user.
+   * @param userId the encoded user id.
+   * @param userNonce the encoded nonce from the user.
+   * @return IssuerResult containing data for certificateSignature, issuerNonce.
+   * @throws WedprException if any error occurred.
+   */
+  public IssuerResult signCertificate(
+      String certificateTemplate,
+      String templatePrivateKey,
+      String signRequest,
+      String userId,
+      String userNonce)
+      throws WedprException {
+    return NativeInterface.issuerSignCertificate(
+            certificateTemplate, templatePrivateKey, signRequest, userId, userNonce)
+        .expectNoError();
+  }
+}

solution/scd/src/main/java/com/webank/wedpr/scd/IssuerResult.java

@@ -6,7 +6,7 @@
 import com.webank.wedpr.common.WedprResult;
 
 /**
- * Result class used by selective disclosure client.
+ * Result class used by a SCD certificate issuer.
  *
  * <p>This is an easy way to return multiple data from a single JNI interface.
  */