@authorityrail/shared-eai-crypto

v0.1.0

Published

Ed25519 CAR signing + verification, badge JWT issuance, ADR signature validation for AuthorityRail EAI.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

authorityrail-aiauthorityrail-ai

Keywords

Readme

@authorityrail/shared-eai-crypto

Ed25519 signing, CAR verification, badge JWT issuance, and ADR signature validation for the AuthorityRail EAI stack.

Principles

  • Every CAR is independently verifiable by any party holding the ASF public key. No call to AuthorityRail is required.
  • Canonical JSON is deterministic — signatures over equivalent payloads produce identical bytes across implementations.
  • Fail-closed: missing key material refuses to sign.

Exports

  • signCar / verifyCar — CAR-v1
  • signBadgeJwt / verifyBadgeJwt — EdDSA JWT
  • signAdr / verifyAdrSignature — HCES-1 ADR
  • loadAsfKey / generateAsfKey
  • canonicalize — RFC-8785-lite JSON canonicalization

Install

npm install @authorityrail/shared-eai-crypto

License

MIT — AuthorityRail Standards Foundation.