So I recently received EU Digital Covid Certificate. When I scan it using a standard QR scanning app, it just shows lots of random text. It doesn't looks like Base64, it doesn't look like it was signed/encrypted with a public/private key. Just wondering is there any information out there that defines this encoding algorithm? Is it just an encoding or is it encrypted? Just curious what they use, is it secure of just some form of basic encoding record sets etc.
And is it done on an EU wide level or is it unique to Ireland?
It uses https://github.com/ehn-dcc-development/hcert-spec (base45 it looks like)
and the reference apps for EU certs are here https://github.com/eu-digital-green-certificates
Spec of the QR code: https://ec.europa.eu/health/sites/default/files/ehealth/docs/digital-green-certificates_v3_en.pdf
Base45, and details about the keys used to sign.
Cheers guys. I'll have a read over.