Crate baseid_pctf

Crate baseid_pctf 

Source
Expand description

§baseid-pctf

Pan-Canadian Trust Framework (PCTF) compliance utilities.

Provides:

  • Identity assurance level evaluation (IAL 1-3) with evidence taxonomy
  • Consent lifecycle management (creation, expiry, revocation)
  • Hash-chained audit trail with privacy redaction
  • PCTF policy engine for credential operation validation
  • Bilingual (EN/FR) compliance self-assessment reporting

§PCTF Components Covered

ComponentModule
Verified Personassurance
Verified Organization(N/A — issuer-side)
Credential Managementpolicy
Notice & Consentconsent
Digital Integrityaudit

§Quick Start

use baseid_pctf::{AssuranceLevelEvaluator, ConsentManager, AuditLog};
use baseid_pctf::assurance::{EvidenceBundle, Evidence, EvidenceType, VerificationMethod};
use baseid_pctf::audit::AuditAction;
use serde_json::json;

// Evaluate identity assurance
let bundle = EvidenceBundle {
    subject: "did:key:z6MkHolder".into(),
    evidence: vec![Evidence {
        evidence_type: EvidenceType::GovernmentPhotoId,
        verification: VerificationMethod::DatabaseCheck,
        issuer: "did:web:gov.ca".into(),
        timestamp: "2026-01-01T00:00:00Z".into(),
    }],
};
let result = AssuranceLevelEvaluator::evaluate_bundle(&bundle);

// Log to audit trail
let mut log = AuditLog::new();
log.append("e-1", "2026-03-01T10:00:00Z", AuditAction::CredentialIssued,
    "did:web:gov.ca", json!({"type": "CanadianDigitalID"}));
assert!(log.verify_chain());

Re-exports§

pub use assurance::AssuranceLevelEvaluator;
pub use audit::AuditEntry;
pub use audit::AuditLog;
pub use consent::ConsentManager;
pub use consent::ConsentRecord;
pub use consent::ConsentStatus;
pub use policy::PctfPolicy;
pub use policy::PctfValidator;
pub use policy::PolicyResult;
pub use report::PctfComplianceReport;
pub use report::ReportBuilder;

Modules§

assurance
Identity assurance level evaluation per PCTF Verified Person component.
audit
Audit trail generation and management for PCTF compliance.
consent
Consent record management per PCTF Notice & Consent component.
policy
PCTF policy engine for validating credential operations against Pan-Canadian Trust Framework requirements.
report
PCTF compliance self-assessment reporting.