BC’s VON Architecture

The Province of BC’s VON ecosystem is summarized by the following network diagram, showing one instance of VON IVy (BC Registries) and an instance of TheOrgBook.

BC's VON EcoSystem

BC Registries (github repo) is an instance of VON IVy that issues the foundational credentials for the BC instance of TheOrgBook. It’s operation is relatively simple:

The Registries Event Processor monitors the BC Registries database for events - creation of, and updates to, organizational registrations. Each event is processed to determine if any Verifiable Credentials need to be issued. If so, claims (registration data for the organization) are assembled and passed (as JSON) to the BC Registries instance of IVy to formulate into a cryptographically signed Verifiable Credential and issued to TheOrgBook.

TheOrgBook (github repo) receives the Verifiable Credentials, inserts them it into it’s VON-X (Hyperledger Indy) encrypted wallet and passes them to TheOrgBook API, where the claims from the credential are extracted and pushed into TheOrgBook Search Database based on mappings provided by the credential issuer. The SOLR search indices are updated to include the data from the newly issued credentials.

The BC deployment has been tuned to automatically scale to enable the rapid loading of current and historical registrations. The current deployment supports the issuance and loading of over 2600 Verifiable Credentials per minute. The deployment likewise scale down to handle steady state workloads.

OpenShift deployment scripts are available for all components in Dev, Test and Production variants. Those scripts can be used as the basis for deploying in other similar Kubernetes or Docker based environments.