[EPIC] Trust Levels

Meta-Story

As a citizen, I want to authenticate (log in AND verify) on certain trust levels, so that I can access my confidential messages.

Scope

Which part of the product does this apply to? Where are the limits, what is out of scope? A message has a trust level of low, substantial, or high. (A citizen needs to log in via BundID to receive access to messages up to and at the trust level matching their authentication (login) method (tbd)). A citizen must further verify using a respective method with the FV sending them a message at a trust level to then receive the key material to decrypt messages from that FV up to and at that trust level.

Our approach of binding trust levels to e2ee means this is tightly intertwined with other e2ee-related topics including access recovery and cross signing.

Issues

List issue here that belong to this Epic.

Completion

When is this feature complete? How can we verify that the goal was reached?

Notes / resources

November Architecture Workshop: https://nextcloud.fitko.de/f/2240605

Who needs to be involved / informed

involved:
informed: