npm - smartledger-bsv - Versions diffs - 3.2.2 → 3.3.2 - Mend

smartledger-bsv 3.2.2 → 3.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (41) hide show

package/CHANGELOG.md +147 -0
package/architecture_demo.js +247 -0
package/bsv-gdaf.min.js +37 -0
package/bsv-ltp.min.js +37 -0
package/bsv-shamir.min.js +12 -0
package/bsv.bundle.js +9 -9
package/build/bsv-smartcontract.min.js +10 -8
package/build/bsv.bundle.js +9 -9
package/build/bsv.min.js +10 -8
package/build/webpack.gdaf.config.js +54 -0
package/build/webpack.ltp.config.js +17 -0
package/bundle-entry.js +77 -1
package/complete_ltp_demo.js +511 -0
package/gdaf-entry.js +54 -0
package/index.js +259 -0
package/lib/crypto/shamir.js +360 -0
package/lib/gdaf/attestation-signer.js +461 -0
package/lib/gdaf/attestation-verifier.js +600 -0
package/lib/gdaf/did-resolver.js +382 -0
package/lib/gdaf/index.js +471 -0
package/lib/gdaf/schema-validator.js +682 -0
package/lib/gdaf/smartledger-anchor.js +486 -0
package/lib/gdaf/zk-prover.js +507 -0
package/lib/ltp/anchor.js +438 -0
package/lib/ltp/claim.js +1026 -0
package/lib/ltp/index.js +470 -0
package/lib/ltp/obligation.js +945 -0
package/lib/ltp/proof.js +828 -0
package/lib/ltp/registry.js +702 -0
package/lib/ltp/right.js +765 -0
package/lib/smart_contract/API_REFERENCE.md +1 -1
package/lib/smart_contract/EXAMPLES.md +2 -2
package/lib/smart_contract/QUICK_START.md +2 -2
package/lib/smart_contract/README.md +1 -1
package/ltp-entry.js +92 -0
package/package.json +44 -4
package/shamir-entry.js +173 -0
package/shamir_demo.js +121 -0
package/simple_demo.js +204 -0
package/test_shamir.js +221 -0
package/test_standalone_shamir.html +83 -0

package/lib/ltp/proof.js ADDED Viewed

@@ -0,0 +1,828 @@
+'use strict'
+var bsv = require('../../')
+var Hash = bsv.crypto.Hash
+var ECDSA = bsv.crypto.ECDSA
+var Signature = bsv.crypto.Signature
+var PrivateKey = bsv.PrivateKey
+var $ = bsv.util.preconditions
+/**
+ * Legal Token Protocol - Proof Generation Primitives
+ *
+ * Provides primitives for cryptographic proof generation and verification
+ * without direct blockchain publishing. External systems handle proof storage
+ * and verification anchoring operations.
+ */
+var LTPProof = {
+  /**
+   * Prepare signature proof for external verification
+   * @param {Object} token - Token to sign
+   * @param {PrivateKey} privateKey - Signing private key
+   * @param {Object} options - Signing options
+   * @returns {Object} Prepared signature proof data
+   */
+  prepareSignatureProof: function(token, privateKey, options) {
+    options = options || {}
+    $.checkArgument(token && typeof token === 'object', 'Invalid token')
+    $.checkArgument(privateKey instanceof PrivateKey, 'Invalid private key')
+    try {
+      // Canonicalize token for signing
+      var canonical = this._canonicalizeForSigning(token)
+      var tokenHash = Hash.sha256(Buffer.from(canonical))
+      // Create ECDSA signature
+      var ecdsa = new ECDSA()
+      ecdsa.hashbuf = tokenHash
+      ecdsa.privkey = privateKey
+      ecdsa.pubkey = privateKey.toPublicKey()
+      ecdsa.sign()
+      var signature = ecdsa.sig
+      // Create proof object
+      var proof = {
+        type: 'EcdsaSecp256k1Signature2019',
+        created: new Date().toISOString(),
+        verificationMethod: 'did:smartledger:' + privateKey.toPublicKey().toString() + '#keys-1',
+        proofPurpose: options.purpose || 'assertionMethod',
+        jws: this._createJWS(tokenHash, signature),
+        proofValue: signature.toDER().toString('hex')
+      }
+      return {
+        success: true,
+        proof: proof,
+        tokenHash: tokenHash.toString('hex'),
+        canonical: canonical,
+        signingKey: {
+          publicKey: privateKey.toPublicKey().toString(),
+          keyId: 'did:smartledger:' + privateKey.toPublicKey().toString() + '#keys-1'
+        },
+        externalOperations: {
+          storeProof: {
+            endpoint: 'POST /proofs/signature',
+            data: {
+              tokenHash: tokenHash.toString('hex'),
+              proof: proof,
+              signingKey: privateKey.toPublicKey().toString()
+            }
+          },
+          verifyProof: {
+            endpoint: 'POST /proofs/verify-signature',
+            data: {
+              tokenHash: tokenHash.toString('hex'),
+              signature: signature.toDER().toString('hex'),
+              publicKey: privateKey.toPublicKey().toString()
+            }
+          }
+        }
+      }
+    } catch (error) {
+      return {
+        success: false,
+        error: error.message
+      }
+    }
+  },
+  /**
+   * Prepare signature verification for external processing
+   * @param {Object} token - Token with proof
+   * @param {String} publicKey - Signer's public key (hex)
+   * @returns {Object} Prepared verification data
+   */
+  prepareSignatureVerification: function(token, publicKey) {
+    try {
+      $.checkArgument(token && typeof token === 'object', 'Invalid token')
+      $.checkArgument(typeof publicKey === 'string', 'Public key must be string')
+      if (!token.proof) {
+        return {
+          success: false,
+          error: 'No proof found in token'
+        }
+      }
+      // Recreate canonical representation
+      var canonical = this._canonicalizeForSigning(token)
+      var tokenHash = Hash.sha256(Buffer.from(canonical))
+      // Parse signature from proof
+      var signature = Signature.fromDER(Buffer.from(token.proof.proofValue, 'hex'))
+      // Prepare verification data
+      var verificationData = {
+        tokenHash: tokenHash.toString('hex'),
+        signature: signature.toDER().toString('hex'),
+        publicKey: publicKey,
+        proof: token.proof,
+        canonical: canonical
+      }
+      // Perform local verification for immediate feedback
+      var ecdsa = new ECDSA()
+      ecdsa.hashbuf = tokenHash
+      ecdsa.sig = signature
+      ecdsa.pubkey = bsv.PublicKey.fromString(publicKey)
+      var isValid = ecdsa.verify()
+      return {
+        success: true,
+        verification: {
+          valid: isValid,
+          tokenHash: tokenHash.toString('hex'),
+          signatureValid: isValid,
+          publicKey: publicKey,
+          verifiedAt: new Date().toISOString()
+        },
+        verificationData: verificationData,
+        externalOperations: {
+          recordVerification: {
+            endpoint: 'POST /proofs/verification-record',
+            data: {
+              tokenHash: tokenHash.toString('hex'),
+              result: isValid,
+              publicKey: publicKey,
+              verifiedAt: new Date().toISOString()
+            }
+          },
+          auditVerification: {
+            endpoint: 'POST /audit/proof-verification',
+            data: {
+              tokenId: token.id,
+              proofType: token.proof.type,
+              result: isValid,
+              verifier: publicKey
+            }
+          }
+        }
+      }
+    } catch (error) {
+      return {
+        success: false,
+        error: error.message
+      }
+    }
+  },
+  /**
+   * Prepare selective disclosure proof for external processing
+   * @param {Object} token - Original token
+   * @param {Array} revealedFields - Fields to reveal
+   * @param {String} nonce - Proof nonce
+   * @returns {Object} Prepared selective disclosure data
+   */
+  prepareSelectiveDisclosure: function(token, revealedFields, nonce) {
+    $.checkArgument(token && typeof token === 'object', 'Invalid token')
+    $.checkArgument(Array.isArray(revealedFields), 'Revealed fields must be array')
+    $.checkArgument(typeof nonce === 'string', 'Nonce must be string')
+    try {
+      // Create field commitments
+      var fieldCommitments = this._createFieldCommitments(token, nonce)
+      // Create Merkle tree of field commitments
+      var merkleTree = this._createMerkleTree(fieldCommitments)
+      // Create disclosure for revealed fields
+      var disclosures = []
+      var merkleProofs = []
+      revealedFields.forEach(function(fieldPath) {
+        var value = this._getNestedValue(token, fieldPath)
+        var commitment = this._findFieldCommitment(fieldCommitments, fieldPath)
+        if (commitment) {
+          disclosures.push({
+            path: fieldPath,
+            value: value,
+            commitment: commitment.hash,
+            salt: commitment.salt
+          })
+          // Generate Merkle proof for this field
+          var merkleProof = this._generateMerkleProof(merkleTree, commitment.index)
+          merkleProofs.push({
+            path: fieldPath,
+            leafIndex: commitment.index,
+            proof: merkleProof
+          })
+        }
+      }.bind(this))
+      var proof = {
+        type: 'LegalTokenSelectiveDisclosure',
+        created: new Date().toISOString(),
+        proofPurpose: 'selectiveDisclosure',
+        verificationMethod: token.proof ? token.proof.verificationMethod : null,
+        nonce: nonce,
+        merkleRoot: merkleTree.root,
+        disclosures: disclosures,
+        merkleProofs: merkleProofs,
+        totalFields: fieldCommitments.length
+      }
+      return {
+        success: true,
+        proof: proof,
+        hiddenFieldCount: fieldCommitments.length - disclosures.length,
+        revealedFieldCount: disclosures.length,
+        externalOperations: {
+          storeDisclosure: {
+            endpoint: 'POST /proofs/selective-disclosure',
+            data: {
+              tokenId: token.id,
+              proof: proof,
+              merkleRoot: merkleTree.root
+            }
+          },
+          verifyDisclosure: {
+            endpoint: 'POST /proofs/verify-disclosure',
+            data: {
+              proof: proof,
+              expectedNonce: nonce
+            }
+          },
+          auditDisclosure: {
+            endpoint: 'POST /audit/selective-disclosure',
+            data: {
+              tokenId: token.id,
+              revealedFields: revealedFields,
+              totalFields: fieldCommitments.length,
+              disclosedAt: new Date().toISOString()
+            }
+          }
+        }
+      }
+    } catch (error) {
+      return {
+        success: false,
+        error: error.message
+      }
+    }
+  },
+  /**
+   * Prepare selective disclosure verification for external processing
+   * @param {Object} proof - Selective disclosure proof
+   * @param {String} expectedNonce - Expected nonce
+   * @returns {Object} Prepared verification data
+   */
+  prepareSelectiveDisclosureVerification: function(proof, expectedNonce) {
+    try {
+      $.checkArgument(proof && typeof proof === 'object', 'Invalid proof')
+      $.checkArgument(typeof expectedNonce === 'string', 'Expected nonce must be string')
+      if (proof.nonce !== expectedNonce) {
+        return {
+          success: false,
+          error: 'Nonce mismatch'
+        }
+      }
+      var validDisclosures = []
+      var errors = []
+      // Verify each disclosure
+      proof.disclosures.forEach(function(disclosure, index) {
+        var merkleProof = proof.merkleProofs[index]
+        // Verify field commitment
+        var expectedCommitment = this._hashField(disclosure.path, disclosure.value, disclosure.salt)
+        if (expectedCommitment !== disclosure.commitment) {
+          errors.push('Invalid commitment for field: ' + disclosure.path)
+          return
+        }
+        // Verify Merkle proof
+        var isValidProof = this._verifyMerkleProof(
+          disclosure.commitment,
+          merkleProof.leafIndex,
+          merkleProof.proof,
+          proof.merkleRoot
+        )
+        if (isValidProof) {
+          validDisclosures.push({
+            path: disclosure.path,
+            value: disclosure.value,
+            verified: true
+          })
+        } else {
+          errors.push('Invalid Merkle proof for field: ' + disclosure.path)
+        }
+      }.bind(this))
+      var verification = {
+        valid: errors.length === 0,
+        errors: errors,
+        disclosures: validDisclosures,
+        merkleRoot: proof.merkleRoot,
+        totalFields: proof.totalFields,
+        verifiedAt: new Date().toISOString()
+      }
+      return {
+        success: true,
+        verification: verification,
+        externalOperations: {
+          recordVerification: {
+            endpoint: 'POST /proofs/disclosure-verification',
+            data: {
+              proofId: proof.id || 'unknown',
+              result: verification.valid,
+              verifiedFields: validDisclosures.length,
+              totalFields: proof.totalFields,
+              verifiedAt: verification.verifiedAt
+            }
+          },
+          auditVerification: {
+            endpoint: 'POST /audit/disclosure-verification',
+            data: {
+              merkleRoot: proof.merkleRoot,
+              disclosuresVerified: validDisclosures.length,
+              errors: errors.length,
+              result: verification.valid
+            }
+          }
+        }
+      }
+    } catch (error) {
+      return {
+        success: false,
+        error: error.message
+      }
+    }
+  },
+  /**
+   * Prepare legal validity proof for external compliance checking
+   * @param {Object} token - Legal token
+   * @param {Object} jurisdiction - Jurisdiction rules
+   * @param {String} nonce - Proof nonce
+   * @returns {Object} Prepared legal validity data
+   */
+  prepareLegalValidityProof: function(token, jurisdiction, nonce) {
+    $.checkArgument(token && typeof token === 'object', 'Invalid token')
+    $.checkArgument(jurisdiction && typeof jurisdiction === 'object', 'Invalid jurisdiction')
+    $.checkArgument(typeof nonce === 'string', 'Nonce must be string')
+    try {
+      // Check legal requirements
+      var requirements = jurisdiction.requirements || []
+      var validityChecks = []
+      var isValid = true
+      requirements.forEach(function(requirement) {
+        var check = this._checkLegalRequirement(token, requirement)
+        validityChecks.push(check)
+        if (!check.satisfied) {
+          isValid = false
+        }
+      }.bind(this))
+      // Create proof
+      var proof = {
+        type: 'LegalValidityProof',
+        created: new Date().toISOString(),
+        proofPurpose: 'legalValidity',
+        jurisdiction: jurisdiction.code,
+        nonce: nonce,
+        valid: isValid,
+        checks: validityChecks,
+        complianceHash: this._hashCompliance(token, jurisdiction, nonce)
+      }
+      return {
+        success: true,
+        proof: proof,
+        valid: isValid,
+        complianceReport: {
+          jurisdiction: jurisdiction.code,
+          totalRequirements: requirements.length,
+          satisfiedRequirements: validityChecks.filter(c => c.satisfied).length,
+          failedRequirements: validityChecks.filter(c => !c.satisfied).length,
+          overallCompliance: isValid
+        },
+        externalOperations: {
+          submitCompliance: {
+            endpoint: 'POST /compliance/legal-validity',
+            data: {
+              tokenId: token.id,
+              jurisdiction: jurisdiction.code,
+              proof: proof,
+              complianceReport: {
+                jurisdiction: jurisdiction.code,
+                totalRequirements: requirements.length,
+                satisfiedRequirements: validityChecks.filter(c => c.satisfied).length,
+                failedRequirements: validityChecks.filter(c => !c.satisfied).length,
+                overallCompliance: isValid
+              }
+            }
+          },
+          auditCompliance: {
+            endpoint: 'POST /audit/compliance-check',
+            data: {
+              tokenId: token.id,
+              jurisdiction: jurisdiction.code,
+              result: isValid,
+              checkedAt: new Date().toISOString(),
+              requirements: validityChecks
+            }
+          },
+          notifyRegulator: isValid ? null : {
+            endpoint: 'POST /notifications/compliance-failure',
+            data: {
+              tokenId: token.id,
+              jurisdiction: jurisdiction.code,
+              failedRequirements: validityChecks.filter(c => !c.satisfied)
+            }
+          }
+        }
+      }
+    } catch (error) {
+      return {
+        success: false,
+        error: error.message
+      }
+    }
+  },
+  /**
+   * Prepare zero-knowledge proof for external processing
+   * @param {Object} token - Token data
+   * @param {Object} statement - Statement to prove
+   * @param {String} nonce - Proof nonce
+   * @returns {Object} Prepared ZK proof data
+   */
+  prepareZeroKnowledgeProof: function(token, statement, nonce) {
+    $.checkArgument(token && typeof token === 'object', 'Invalid token')
+    $.checkArgument(statement && typeof statement === 'object', 'Invalid statement')
+    $.checkArgument(typeof nonce === 'string', 'Nonce must be string')
+    try {
+      // Create commitment to token data
+      var tokenCommitment = Hash.sha256(Buffer.from(this._canonicalizeForSigning(token) + nonce)).toString('hex')
+      // Create statement proof (simplified - real ZK would use more sophisticated cryptography)
+      var statementProof = {
+        type: 'LegalTokenZKProof',
+        created: new Date().toISOString(),
+        proofPurpose: 'zeroKnowledge',
+        statement: {
+          claim: statement.claim || 'UNSPECIFIED',
+          predicate: statement.predicate || 'SATISFIES',
+          threshold: statement.threshold || null
+        },
+        commitment: tokenCommitment,
+        nonce: nonce,
+        proofData: this._generateZKProofData(token, statement, nonce)
+      }
+      return {
+        success: true,
+        proof: statementProof,
+        commitment: tokenCommitment,
+        externalOperations: {
+          storeZKProof: {
+            endpoint: 'POST /proofs/zero-knowledge',
+            data: {
+              tokenId: token.id,
+              proof: statementProof,
+              statement: statement
+            }
+          },
+          verifyZKProof: {
+            endpoint: 'POST /proofs/verify-zk',
+            data: {
+              proof: statementProof,
+              expectedNonce: nonce
+            }
+          },
+          auditZKProof: {
+            endpoint: 'POST /audit/zk-proof',
+            data: {
+              tokenId: token.id,
+              statement: statement.claim,
+              proofGenerated: new Date().toISOString()
+            }
+          }
+        }
+      }
+    } catch (error) {
+      return {
+        success: false,
+        error: error.message
+      }
+    }
+  },
+  /**
+   * Generate ZK proof data (simplified implementation)
+   * @private
+   */
+  _generateZKProofData: function(token, statement, nonce) {
+    // Simplified ZK proof generation - real implementation would use more sophisticated cryptography
+    var proofData = {
+      challenge: Hash.sha256(Buffer.from(statement.claim + nonce)).toString('hex'),
+      response: Hash.sha256(Buffer.from(this._canonicalizeForSigning(token) + statement.claim)).toString('hex'),
+      witness: Hash.sha256(Buffer.from(nonce + token.id + statement.predicate)).toString('hex')
+    }
+    return proofData
+  },
+  /**
+   * Create JWS signature
+   * @private
+   */
+  _createJWS: function(hash, signature) {
+    var header = {
+      alg: 'ES256K',
+      typ: 'JWT'
+    }
+    var headerB64 = Buffer.from(JSON.stringify(header)).toString('base64url')
+    var payloadB64 = hash.toString('base64url')
+    var signatureB64 = signature.toDER().toString('base64url')
+    return headerB64 + '..' + signatureB64
+  },
+  /**
+   * Canonicalize token for signing
+   * @private
+   */
+  _canonicalizeForSigning: function(token) {
+    // Remove proof and hash fields
+    var signingToken = JSON.parse(JSON.stringify(token))
+    delete signingToken.proof
+    delete signingToken.tokenHash
+    // Sort keys recursively
+    var canonical = this._sortObjectKeys(signingToken)
+    return JSON.stringify(canonical)
+  },
+  /**
+   * Create field commitments
+   * @private
+   */
+  _createFieldCommitments: function(token, nonce) {
+    var commitments = []
+    var index = 0
+    this._traverseObject(token, '', function(path, value) {
+      if (path !== 'proof' && path !== 'tokenHash') {
+        var salt = Hash.sha256(Buffer.from(nonce + path + index)).toString('hex')
+        var hash = this._hashField(path, value, salt)
+        commitments.push({
+          path: path,
+          value: value,
+          salt: salt,
+          hash: hash,
+          index: index
+        })
+        index++
+      }
+    }.bind(this))
+    return commitments
+  },
+  /**
+   * Hash field with salt
+   * @private
+   */
+  _hashField: function(path, value, salt) {
+    var data = path + ':' + JSON.stringify(value) + ':' + salt
+    return Hash.sha256(Buffer.from(data)).toString('hex')
+  },
+  /**
+   * Create Merkle tree from commitments
+   * @private
+   */
+  _createMerkleTree: function(commitments) {
+    var leaves = commitments.map(function(c) { return c.hash })
+    if (leaves.length === 0) {
+      return { root: null, levels: [] }
+    }
+    var levels = [leaves]
+    var currentLevel = leaves
+    while (currentLevel.length > 1) {
+      var nextLevel = []
+      for (var i = 0; i < currentLevel.length; i += 2) {
+        var left = currentLevel[i]
+        var right = currentLevel[i + 1] || left
+        var combined = Buffer.concat([
+          Buffer.from(left, 'hex'),
+          Buffer.from(right, 'hex')
+        ])
+        var hash = Hash.sha256(combined).toString('hex')
+        nextLevel.push(hash)
+      }
+      levels.push(nextLevel)
+      currentLevel = nextLevel
+    }
+    return {
+      root: currentLevel[0],
+      levels: levels
+    }
+  },
+  /**
+   * Generate Merkle proof for leaf
+   * @private
+   */
+  _generateMerkleProof: function(tree, leafIndex) {
+    var proof = []
+    var index = leafIndex
+    for (var level = 0; level < tree.levels.length - 1; level++) {
+      var currentLevel = tree.levels[level]
+      var isLeft = index % 2 === 0
+      var siblingIndex = isLeft ? index + 1 : index - 1
+      if (siblingIndex < currentLevel.length) {
+        proof.push({
+          hash: currentLevel[siblingIndex],
+          isLeft: !isLeft
+        })
+      }
+      index = Math.floor(index / 2)
+    }
+    return proof
+  },
+  /**
+   * Verify Merkle proof
+   * @private
+   */
+  _verifyMerkleProof: function(leaf, leafIndex, proof, expectedRoot) {
+    var currentHash = leaf
+    var currentIndex = leafIndex
+    for (var i = 0; i < proof.length; i++) {
+      var step = proof[i]
+      var isLeft = currentIndex % 2 === 0
+      var combined
+      if (step.isLeft) {
+        combined = Buffer.concat([
+          Buffer.from(step.hash, 'hex'),
+          Buffer.from(currentHash, 'hex')
+        ])
+      } else {
+        combined = Buffer.concat([
+          Buffer.from(currentHash, 'hex'),
+          Buffer.from(step.hash, 'hex')
+        ])
+      }
+      currentHash = Hash.sha256(combined).toString('hex')
+      currentIndex = Math.floor(currentIndex / 2)
+    }
+    return currentHash === expectedRoot
+  },
+  /**
+   * Traverse object and call callback for each field
+   * @private
+   */
+  _traverseObject: function(obj, basePath, callback) {
+    if (Array.isArray(obj)) {
+      obj.forEach(function(item, index) {
+        var path = basePath + '[' + index + ']'
+        this._traverseObject(item, path, callback)
+      }.bind(this))
+    } else if (obj !== null && typeof obj === 'object') {
+      Object.keys(obj).forEach(function(key) {
+        var path = basePath ? basePath + '.' + key : key
+        this._traverseObject(obj[key], path, callback)
+      }.bind(this))
+    } else {
+      callback(basePath, obj)
+    }
+  },
+  /**
+   * Get nested value from object
+   * @private
+   */
+  _getNestedValue: function(obj, path) {
+    return path.split('.').reduce(function(current, prop) {
+      return current && current[prop]
+    }, obj)
+  },
+  /**
+   * Find field commitment by path
+   * @private
+   */
+  _findFieldCommitment: function(commitments, path) {
+    return commitments.find(function(c) { return c.path === path })
+  },
+  /**
+   * Check legal requirement
+   * @private
+   */
+  _checkLegalRequirement: function(token, requirement) {
+    // Simplified legal requirement checking
+    // In practice, this would be much more sophisticated
+    switch (requirement.type) {
+      case 'field_present':
+        var value = this._getNestedValue(token, requirement.field)
+        return {
+          requirement: requirement.type,
+          field: requirement.field,
+          satisfied: value !== undefined && value !== null
+        }
+      case 'field_value':
+        var value = this._getNestedValue(token, requirement.field)
+        return {
+          requirement: requirement.type,
+          field: requirement.field,
+          satisfied: value === requirement.expectedValue
+        }
+      case 'temporal_validity':
+        var now = new Date()
+        var issuanceDate = new Date(token.issuanceDate)
+        return {
+          requirement: requirement.type,
+          satisfied: issuanceDate <= now
+        }
+      default:
+        return {
+          requirement: requirement.type,
+          satisfied: false,
+          error: 'Unknown requirement type'
+        }
+    }
+  },
+  /**
+   * Hash compliance information
+   * @private
+   */
+  _hashCompliance: function(token, jurisdiction, nonce) {
+    var complianceData = {
+      tokenId: token.id,
+      jurisdiction: jurisdiction.code,
+      nonce: nonce,
+      timestamp: new Date().toISOString()
+    }
+    return Hash.sha256(Buffer.from(JSON.stringify(complianceData))).toString('hex')
+  },
+  /**
+   * Sort object keys recursively
+   * @private
+   */
+  _sortObjectKeys: function(obj) {
+    if (Array.isArray(obj)) {
+      return obj.map(this._sortObjectKeys.bind(this))
+    } else if (obj !== null && typeof obj === 'object') {
+      var sorted = {}
+      Object.keys(obj).sort().forEach(function(key) {
+        sorted[key] = this._sortObjectKeys(obj[key])
+      }.bind(this))
+      return sorted
+    }
+    return obj
+  }
+}
+module.exports = LTPProof