Monorepo for the Proof of Passport protocol.
Proof of Passport lets users scan the NFC chip in their government-issued passport and prove the correctness of the signature in a zk-SNARK. This unlocks two interesting use cases:
- For sybil-resistance, proof of passport can provide a source of unique identity.
- For identity and privacy, proof of passport allows selective disclosure of private data. For instance, users can disclose their nationality or their date of birth without revealing any other private information.
As a first application, users who can prove they indeed hold a valid passport can verify this proof on-chain to mint a Soulbound Token (SBT).
app
: Mobile appcircuits
: Circom circuitscontracts
: Solidity contractscommon
: Common utils
- ✅ Basic passport verifier circuit
- ✅ Selective disclosure
- ✅ Basic react native frontend
- ✅ Passport verification pipeline, android
- ✅ Passport verification pipeline, iOS
- ✅ Contracts
- ✅ On-chain registry of CSCA pubkeys based on the official ICAO masterlist
- 🚧 Optimizations
- 🚧 Reimplementation of the passport NFC specs in javascript
If it has this symbol on the front cover, yes.
The circuit looks like this:
Most of the data of interest is in the Datagroup 1, which contains the following info:
- First name
- Last name
- Nationality
- Date of birth
- Gender
- Expiration date of passport
- Passport number
This goes through a bunch of hashes, concatenations with other data, and then is signed. By verifying the signature, we can make sure the personnal information cannot be altered.
Most countries use RSA with sha256 but some of them use other signature algorithms like ECDSA and other hash functions like SHA-512. You can find a summary of the signature algorithm used here
Currently we only support the most common one SHA256withRSA
. We will support the others shortly. Feel free to try your hand at implementing one!
The International Civil Aviation Organization (ICAO) is a specialized agency of the United Nations. Among other things, it establishes the specifications for passports, that have to be followed by all countries. The full passport specs are available here.
You can download the full list of public keys on the ICAO website, in the strange .ldif
format. The parsed list is here
Here is all that can be proven:
Note that we can't access DG3 and DG4 which are optional fingerprint and iris scan without government authorization.
Yep. Currently we don't use it. If you have an idea of some fun zkml to do with it, let us know!
The SBT circuit includes a commitment to your address. If someone else tries to mint it, they will mint it to your address.
-
Integrate Proof of Passport to Gitcoin passport or a similar system to allow better sybil resistance in quadratic funding
-
Combine with other sources of identity to provide quantified levels of uniqueness, totem-style. Examples can be anon aadhaar, Japan's my number cards or Taiwan DID
-
Add Proof of Passport as a Zupass PCD
-
Build a social network/anonymous message board for people from one specific country
-
Create a sybil-resistance tool to protect social networks against spambots
-
Do an airdrop farming protection tool
-
Allow DeFi protocols to check if the nationality of a user is included in a set of forbidden states
-
Gate an adult content website to a specific age
-
Passport Wallet: use active authentication to build a wallet, a multisig or a recovery module using passport signatures
Everything we write is MIT licensed. Circom and circomlib are GPL tho.
We are actively looking for contributors. Please check the open issues if you don't know were to start!
Contact me @FlorentTavernier on telegram for any feedback.
Thanks to Youssef, Aayush, Andy, Vivek, Marcus and Andrew for contributing ideas and helping build this technology, and to EF PSE for supporting this work through grants!