|
In the summer of 2019, Hyperledger ran a mentorship geared towards getting the Git version control tool to understand and use cryptographic credentials in decentralized identity (DID) documents to sign and verify commits. The root cause analysis led the project in the direction of creating a patch set for Git that enabled Git to use any signing tool more easily rather than just its existing support for GnuPG. Work is still ongoing to get those patches landed into Git and out in the wild. This mentorship anticipates the completion of that work and extends the previous work with the construction of a software application that can be called by Git to sign/verify commits using credentials stored in DID docs.
This mentorship is focused on writing an application using the Rust programming language. Please don't apply if you don't already have significant experience programming in any language and are at least willing to put in the time to learn Rust. You will be mentored by experienced Rust developers in the Hyperledger community to help with getting comfortable with Rust.
This is an important move forward for self-sovereign identity and Hyperledger projects that support that form of identity. This affects Hyperledger Indy, Hyperledger Aries, and Hyperledger Ursa. It is likely that this project will manifest itself as a Hyperledger lab at first and potentially a Hyperledger project as it matures.
The ideal mentee is a university student or a developer with one or two years of experience with a solid background in using cryptography libraries. It is helpful if you already have experience programming with Rust but it isn't required as you will be mentored by experienced Rust programmers.
This signing tool will likely be used as the signing tool for signing/verifying commits in all Hyperledger projects.
Full-time or part-time
David Huseby, dhuseby@linuxfoundation.org, dhuseby on chat.hyperledger.org
Jimit Bhalavat, jimitbhalavat144@gmail.com
Currently, git supports signing/verifying commits and tags using GPG only. The goal of this project is to make the git signing interface compatible with external signing tools and with DIDs (Distributed Identities) using programs such as bettersign for example.
This project will be the continuation of the work already done by David Huseby on the subject. His previous work is here:
NEW: Collaborate with Google FIDO Team to land the patches successfully. Attempt to reconnect with the community.
These are secondary tasks to do while waiting for feedback or assistance, or finished early: