Abstract

This specification defines the structure of an asset in the ENVITED-X Data Space and outlines the process for uploading assets to ensure compliance, security, and interoperability. It leverages existing standards, such as the Gaia-X 4 PLC-AAD Manifest Ontology, and implements privacy layers, validation, and metadata mapping aligned with Tezos TZIP-21.

Motivation

Standardizing the definition and upload process for assets in the ENVITED-X Data Space ensures:

• Interoperability with existing Gaia-X data spaces.
• Security through CID-based identification and metadata validation.
• Scalability for integrating diverse asset types.

This EVES addresses the need for clear guidelines to onboard assets and synchronize data with ENVITED-X systems.

Specification

1. Asset Definition

An asset is defined by the Gaia-X 4 PLC-AAD Manifest Ontology. The example implementation here is based on release v0.1.6 from the HD-Map Asset Example.

This EVES references the Gaia-X Policy Rules Compliance Document (Release 24.11). Compatibility with this release is to be verified in a future update of this EVES.

2. Pinata IPFS and CID Management

CID v1

• Assets uploaded via Pinata MUST use CID v1.
• This is achievable only through the API using the pinataOptions parameter, as outlined here.

File Naming

• Uploaded file names MUST exclude extensions (e.g., use file instead of file.json) to avoid issues such as double extensions during downloads (e.g., file.json.json).

3. Privacy Layer

The ENVITED-X Data Space implements a three-tiered privacy model:

4. Asset Validation and Upload Process

Step 1: Client-Side Pre-Validation

• Drag and drop asset.zip into the upload field.
• Validate the manifest.json:
  1. Ensure JSON structure matches the manifest SHACL constraints.
  2. Verify all referenced files exist locally or remotely as specified.
  3. Locate the domainMetadata.json file.
• Validate the domainMetadata.json:
  1. Extract SHACL constraints from the domainMetadata.json context.
  2. Validate JSON structure against domain-specific SHACLs.

Step 2: Upload Asset to ENVITED-X Data Space

• Trigger the upload process by clicking the "Upload" button.
• Calculate the CID of asset.zip.
• Rename asset.zip to CID.zip and store at https://assets.envited-x.net/Asset-CID.
• Store registeredUser metadata at https://metadata.envited-x.net/Asset-CID.
• Store publicUser metadata at https://ipfs.envited-x.net/Asset-CID/Data-CID.
• Calculate CIDs for all publicUser data.
• Create tzip21_asset_manifest.json by replacing relative paths in manifest.json with IPFS/envited-x.net URLs.
• Replace @id from manifest.json with generated UUID in tzip21_asset_manifest.json.
• Create tzip21_token_metadata.json and map metadata fields.

Step 3: Preview Data

• TBD: Define visualization and preview mechanisms for uploaded data.
• If a user triggers the "delete asset" button then all data stored in Step 2) is deleted.

Step 4: Mint Token

• Requirement: Use signed CIDs for the upload to Pinata according to EIP-712.
• Upload publicUser information and tzip21_asset_manifest.json to IPFS.
• Verify that CIDs from Pinata returned the same CIDs then the pre-calculation.
• Upload tzip21_token_metadata.json to IPFS.
• Mint token with linked metadata.
• The wallet/SDK will provide feedback if a token was minted successfully.

Step 5: Listener and Database Synchronization

• Use a listener to detect mint events and synchronize data with the ENVITED-X database.
• Verify that data referenced in the token metadata is the same as stored in Step 2).
• Verify the asset in reverse order as in step 1).

5. Database Synchronization

CID as the Primary Identifier

• The CID of the uploaded asset.zip serves as the unique identifier connecting data across all systems.
• The CIDs are signed by the user according to EIP-712.
• An additional UUID MUST be generated pre-mint to link the asset with the ENVITED-X database securely.
• The DID of the member associated with the user minting the asset MUST be known.

Pre-Mint Information

If additional non-public information needs to be stored in the database before minting, the CID can associate this data with the minted asset.

Synchronization and Security

The synchronization between the smart contract and the ENVITED-X database relies on:

1. The contract DID (current Ghostnet contract):
   did:tezos:NetXnHfVqm9iesp:KT1XC2fTBNqoafnrhEb7TuToRCzewgbHAhnA
2. Search CID of tzip21_token_metadata.json in database.
3. Compare if signature on CID is a user belonging to the member and if member is owner of token.
4. Check: Uniqueness of CID in database.

TZIP-21 rich metadata mapping

Attributes not in the table are static and the same for every mint. Examples are the first five tags or "publishers", which is always ENVITED-X and the ASCS as the mint is conducted through the website.

Custom SPDX license identifier

• Custom license in a LICENSE file in the asset.zip root folder: "LicenseRef-Custom-Commercial-Agreement"
• Custom license in a smart contract as json-ld ODRL policy: "LicenseRef-Policy-Smart-Contract"

Backwards Compatibility

This specification introduces new processes for asset uploads and is fully compatible with existing ENVITED-X systems. No retroactive changes to previous assets are required.

References

1. Gaia-X 4 PLC-AAD Manifest Ontology
2. HD-Map Asset Example
3. Pinata Documentation
4. RFC 2119: Key Words for Use in RFCs to Indicate Requirement Levels
5. Gaia-X Policy Rules Compliance Document (Release 24.11)
6. Reference Implementation
7. EIP-712