Signing Key Generation

In the Software Development Kit (SDK), we will generate an Elliptic Curve (EC) using the NIST P-384 curve on the user’s system. This curve is a widely accepted cryptographic algorithm that provides a high level of security.

Once the key pair is generated, the public key, along with the user’s name and email address, will be securely transmitted to the VIRcode server for signing. The VIRcode server will use its private key to digitally sign the public key, making it valid for a period of one year.

This signing process ensures that the public key is cryptographically linked to the user’s identity and is tamper-proof. It also provides a trusted mechanism for verifying the authenticity of the public key.

If the private key is compromised or is no longer required, it can be revoked at the server. This revocation process ensures that the public key can no longer be used for signing documents or verifying signatures.

Once the public key is signed by the VIRcode server, it will be securely stored locally on the system.