floysh
commented
3 years ago Hi, I'm not sure I understand what you want to do. You're not supposed to decode a signature, it's just a byte sequence used by the validation algorithm. If you're looking for a way to validate EDCC signatures, there's this documentation from the EU: https://github.com/ehn-dcc-development/hcert-spec/blob/main/hcert_spec.md#32-structure-of-the-payload
Keeping it short, since EDCCs are regular COSE structures you can verify the signature by following what is stated by the COSE RFC. In section 3 it states that the protected header is a serialized CBOR map, so you can decode it the same way as the payload (which is what I did in the code line you referenced to).
Let me know if I answered your question 😊
jumpjack
Hi, where did you find documentation to implement this line of code?
https://github.com/floysh/DCC-green-pass-decoder/blob/99344251c7eb9b37103352ae5341c9ad256211f6/src/source.js#L229
Does it exist similar documentation for decoding signature? I would like to manually decode it, rather than using a ready-made "signature.verify()" function copied from somewhere, by comparing its contents to the certificates found here:
https://raw.githubusercontent.com/lovasoa/sanipasse/master/src/assets/Digital_Green_Certificate_Signing_Keys.json