search

eu-digital-green-certificates / dgc-testdata

Repository for storing generated QR code data for testing.
Apache License 2.0
157 stars 218 forks source link

Create your own certificate? Is this possible #403

Closed wege2003 closed 3 years ago

wege2003 commented 3 years ago

Hello there! i have one question about the generation of certificates.

Issue Description

Is it possible to create your own certificate with a normal qr-encoder? I am scared if this is possible because then everybody can fake their covid 19 certificates? Do you know if its possible or not?

Proposed Solution

If this is possible i hope they will fix it, otherwise this would be scarry

daniel-eder commented 3 years ago

Hi @wege2003

This is an important topic, and it was considered when the system was designed. As a result, this is not possible. DCCs use a digital signature to verify the certificate was created by a valid authority. That means if someone without an accepted private key creates and signs a certificate, it will be recognized as invalid. Similarly, if someone would modify a valid and signed certificate the verification apps would see that the content and signature no longer match.

If you are interested in detailed information, visit our overview page, where you can find links to the specification and other technical documents.