search

newlogic / smartscanner-core

ID scanning Android app and library. Supports MRZ, NFC, Barcodes, and ID PASS Lite cards.
Apache License 2.0
72 stars 19 forks source link

Add CSCA file for country certificates #48

Closed typelogic closed 3 years ago

typelogic commented 3 years ago

Current Behaviour

At present, there is no CSCA file as a trust anchor of the document signer certificate. This results to CSCA marked with x as shown here

Expected Behaviour

There should be a CSCA file trust anchor to verify contents against tampering. Furthermore, a plan should be in place to update this file in a controlled manner.

Steps to Reproduce the Problem

  1. Use smartscanner-core to scan your passport.
  2. Notice that the CSCA is marked "x" as shown here. This means that the passport's certificate and the integrity of all its contents could not be verified.

Context

typelogic commented 3 years ago

Application screenshot here when a csca.ks file is added taken from GermanMasterlist.zip

typelogic commented 3 years ago

Bundle csca.ks here https://github.com/idpass/smartscanner-core/commit/4265f6da0e9bf8fa50350ae331b33efdf7991179

typelogic commented 3 years ago

To close when PR#55 is merged