kych

OAuth 2.0 API for Swiyu to enable Taler integration of Swiyu for KYC (experimental)
Log | Files | Refs | README
commit 9b899ac7af5c9db4ccf6b3b1be7fe6788a2b36f9
parent 4d72952ac96ecc9451b31f6a79e621ba9655bdd5
Author: Emmanuel Benoist <emmanuel.benoist@bfh.ch>
Date:   Fri, 23 Jan 2026 15:01:04 +0100

Very first attempt for a one pager.

Diffstat:

Adocumentation/HaRNInger.md | 18++++++++++++++++++


1 file changed, 18 insertions(+), 0 deletions(-)

diff --git a/documentation/HaRNInger.md b/documentation/HaRNInger.md
@@ -0,0 +1,18 @@
+ *   Brief description of the product or solution
+We will deploy a solution for KYC for free that is privacy aware. This solution is based on Aadhar. We offer an application for people to get credentials from the Aadhar database (obtained using biometrics) to be sent to their partners.
+   
+  *   Innovation or novelty involved
+The system is based on blind signatures, that offer the possiblity to store credentials to be provided later on. The system allows users not to reveal the central system where they are and who need to access their data. 
+
+  *   How is it different from existing product/ solutions available in the market
+Privacy is central in our infrastructure. Whereas in the standard solutions, KYC requires the verifyer to access the central data base, leading the the central database to know every KYC process being done in the country, this is not needed. Moreover, if the central database with all those accesses is corrupted, this could be devastating for the privacy of Indian citizens.
+  *   Technology or platform being used
+Our solution is based on two free and open source projects, GNU Taler and the Swiss eID solution. 
+  *   Brief process flow (if possible)
+Citizens are registered in the Aadhaar system. They install the Self Sovereign Identity app. They get anonymous KYC credentials using biometry.
+If they need to show their identity, or just show some attributes of it (age condition, city, ...) they present those credentials to the verifyer that can easily verify their validity agains the central system. By doing this the verifyer does not reveal the identity of the citizen that is being verified.
+
+  *   Proposed benefits and potential use cases
+Main benefit is the privacy of the users, nobody knows for which services, the users used their KYC. The side advantage is to lower quantity of sensitive data, hence reducing the risks of an attack on the servers.
+  *   Any other details you may wish to highlight
+