Decentralised architecture for secure and interoperable exchange of DCCs

Defines preliminary non-technical requirements and business-logic workflows (BPMN or equivalent) for issuing and using DCCs as Verifiable Credentials — specifying roles, legal/procedural preconditions, and validity criteria.

Defines technical requirements for the blockchain solution (DCC content, FAIR, Digital SI alignment) and compliance requirements based on eIDAS, ISO 27001, and GDPR — embedding trust and privacy by design.

Defines procedures for onboarding labs/NMIs (DID issuance, accreditation linkage), credential revocation (e.g. accreditation expiry), and off-boarding — consistent with EBSI capabilities.

Designs the overall decentralised architecture leveraging EBSI — defining how wallets, Verifiable Credentials, and ledger components interact within the temperature calibration workflows.

Verifies the architecture against GDPR and privacy requirements — keeping personal data off-chain or properly consented — and feeds the outputs into the Data Management Plan (A6.3.2).

Defines the trust architecture in line with eIDAS and metrology needs — specifying how trust anchors (e.g. national accreditation bodies) issue and sign accreditation credentials anchored on the blockchain.

Sets up the connection to the EBSI network — Random Red acts as Root/Trusted Accreditation Organisation, onboarding DIDs into the EBSI Trusted Issuer Registry to enable full set-up testing.

Organises a webinar introducing all participants to EBSI: governance model, DIDs, Verifiable Credentials, onboarding procedures, and eIDAS/ESSIF compliance — with practical demonstrations.

Selects and installs EBSI-conformant SSI wallets for all participants; each lab/NMI obtains a Decentralised Identifier with support from NSAI/FSB; key management procedures are agreed.

Develops software modules to issue Verifiable Credentials for laboratory accreditations and for DCCs — transforming the harmonised DCC data model from A3.1.3 into W3C VC format (JSON-LD/JWT).

Develops verification services and APIs allowing stakeholders (industry users, regulators) to validate credentials — checking digital signatures, issuer accreditation, revocation status, and credential integrity.

Validates that EBSI-exchanged DCCs are legally and metrologically equivalent to paper certificates — meeting ISO/IEC 17025 and ILAC requirements including digital signatures and traceability.

Investigates how identity and verification steps can be embedded into the harmonised digital workflows — extending the automated workflows to retrieve a lab's DID, check accreditation on EBSI, and verify credentials.

Prepares the system architecture and integration interfaces from A3.2.3 and A3.2.4 so they're ready to integrate functionalities from A4.3.2 — Random Red develops the unified dashboard connecting these components.

Tests integration points through the unified dashboard using both dummy and real data — running scenarios where one participant issues a DCC as a VC on EBSI and another participant verifies it.

Uses results from A4.3.4 to refine the technical integration and update specifications; updates the code in the repository (A2.3.7) and documents results in a good-practice guide.