Vaccify - Building a Resilient Digital Trust Ecosystem

Table Of Content


The global COVID-19 pandemic has not only brought significant challenges to society but has also spurred innovation and the development of solutions to combat its effects. One such innovative initiative is Vaccify, an open-source COVID-19 project by TrustNet Pakistan. By leveraging blockchain technology, Vaccify ensures the immutability and tamper-proof nature of digital credentials. This section explores the high-level technical architecture of Vaccify, highlighting the key actors involved, the use of blockchain technology, and the seamless verification process using touchless QR code scanning.


The primary objective of Vaccify is to enable individuals to prove their COVID-19 vaccination status securely and efficiently. By leveraging blockchain technology and verifiable digital credentials, Vaccify aims to address the pressing need for trustworthy and privacy-preserving immunization verification. The initiative seeks to facilitate the safe resumption of daily activities, such as travel and work, while protecting public health and ensuring data privacy.

Key Actors In Vaccify

Vaccify encompasses various actors, including hospitals, healthcare centers, laboratories, testing facilities, issuers, and verifiers. The architecture leverages blockchain technology to ensure immutability and tamper-proof characteristics of the digital credentials. The process involves accredited hospitals issuing digitally signed vaccination certificates directly to individuals' smartphones, which can be easily verified using touchless QR code scanning by authorities acting as verifiers.

Leveraging Blockchain Technology for Immutability and Tamper-Proof Credentials

At the heart of Vaccify's technical architecture lies blockchain technology, which ensures the integrity and security of digital credentials. By leveraging a decentralized and distributed ledger, Vaccify guarantees the immutability of vaccination certificates, making them tamper-proof. This aspect is vital in combating fraudulent activities and maintaining the trustworthiness of the digital trust ecosystem.

The Issuance Process: Accredited Hospitals and Digitally Signed Vaccination Certificates

Accredited hospitals are the primary issuers of digital vaccination certificates within the Vaccify ecosystem. These hospitals digitally sign the certificates, assuring their authenticity and credibility. The certificates are then directly sent to individuals' smartphones, providing them with immediate access to their verifiable vaccination status. This streamlined issuance process ensures that individuals can conveniently store and present their digital certificates whenever required.

The Verification Process: Touchless QR Code Scanning by Authorities

Authorities, acting as verifiers, play a crucial role in the Vaccify ecosystem by verifying the authenticity and validity of digital vaccination certificates. The verification process is designed to be touchless and efficient, employing QR code scanning technology. By scanning the QR code on an individual's smartphone, authorities can quickly and securely validate the vaccination status, ensuring compliance with health and safety regulations.

Features of a digital credential

A digital credential surpasses paper credentials because of some obvious advantages offered by the former. Digital credentials maintain the confidentiality of people. It would cryptographically verify their health status without revealing any personal information. Moreover, as it is based on Blockchain, all the records will be immutable. Unlike paper credentials, these will be issued in no time. In case of false certificate issuance, it could be revoked in seconds.

Vaccify will enable people to prove their vaccination against Coronavirus by a simple touchless QR code scanning. Digital credentials issued under Vaccify will also have international trust interoperability. It means the credential issued in Pakistan can be verified anywhere in the world. TrustNet Pakistan is using emerging technology to integrate this digital framework with commercial services in Pakistan.

Impact and Future Prospects

Vaccify holds the potential to revolutionize the way societies manage health credentials, not only in the context of COVID-19 but also for future healthcare scenarios. The initiative aligns with global efforts, such as the COVID Credentials Initiative (CCI), to develop verifiable credential solutions that prioritize trust and privacy. As Vaccify continues to evolve, it aims to integrate with commercial services and expand its application beyond the healthcare sector, creating a robust and future-ready digital trust ecosystem.

Contributions, now BlockApex made significant contributions to the development and success of Vaccify, an open-source COVID-19 initiative by TrustNet Pakistan. Through its collaborative partnership with TrustNet, BlockApex has brought its technological expertise to enhance the technical architecture of Vaccify, ensuring the security and efficiency of the digital trust ecosystem. Their open-source contributions, coupled with their focus on user experience and interface design, have simplified access and verification processes within Vaccify. BlockApex's contributions extend beyond the current initiative, as they actively drive innovation for future digital trust ecosystems, shaping a safer and more resilient post-pandemic world. Together, BlockApex and TrustNet Pakistan worked on paving the way for secure and privacy-preserving digital systems that address pressing healthcare challenges.


Vaccify exemplifies the power of technological innovation and community collaboration in addressing the challenges posed by the COVID-19 pandemic. By providing a secure and efficient means of verifying COVID-19 vaccination status, Vaccify paves the way for a post-pandemic world where trust, privacy, and verification are paramount. As individuals and organizations join the Vaccify movement, the vision of a resilient and connected society becomes attainable. Together, we can build a future where digital credentials empower individuals, protect public health, and drive the transformation of various sectors on a global scale.

Give a read to Hack analysis Of DeusDAO!

More Audits

Kokomo Finance - Hack Analysis (March 27, 2023)

Kokomo Finance has taken off with approximately $4 million worth of user funds, leaving users unable to withdraw their funds. Wrapped Bitcoin deposits were rugged, with almost $2M of tokens still remaining in the project’s pools on Optimism.

Harvest Finance Hack Analysis & POC

Harvest finance got hacked for around $34M due to a flashloan attack which manipulated the price in the Curve pool to retrieve more USDT tokens than originally deposited USDT amount in fUSDT pool.

Merlin DEX - April 26, 2023

In April 2023, Merlin DEX,a decentralized exchange (DEX) built on ZkSync, suffered a hack during a Liquidity Generation Event for its MAGE token, resulting in an estimated loss of $1.8 million from the protocol.

Remote Work & Cybersecurity Risks 

It is crucial to come up with innovative solutions against cyberattacks, especially when your workforce is remotely working. Since we know that remote work comes with a bunch of security risks, it is essential to cater to them.

Infiltrating the EVM-II: Inside the War Room's Arsenal

War Room is an immersive, high-energy environment incorporating a dedicated team of experts that comes together to form the backbone of the War Room. Read more in this part

DeFiGeek Community JAPAN - Hack Analysis (Apr 17, 2023)

On Apr 17, 2023. The DeFiGeek Community fell victim to a security breach in which an attacker exploited a flash loan vulnerability, causing the loss of 10 ETH (valued at over $20,000) from their DeFiGeek Community Pool Dai (fDAI-102

Infiltrating the EVM-III: Unravel the Impact Of Blockchain On Bug Fixing!

Fixing a bug in traditional software development is often likened to solving a difficult puzzle, each presenting its own challenges. This task has always been complex and time-consuming. However, resolving bugs in a blockchain system is even more demanding due to its transparent & permissionless nature and the high stakes involved with users' funds.

Consumer Privacy & Data Breach Part I - Is It a Global Issue?

Data breaches and consumer privacy are one of the most alarming security issues in IT space. About 45% of the world’s population uses social media which makes approximately 3.48 billion people to be interacting with any kind of social media network. These tremendous amounts of connections can lead to various kinds of vulnerabilities if the data is gone into the wrong hands creating pretty damaging consequences.

Sonar Bridge V2 Initial Audit

BlockApex (Auditor) was contracted by SONAR (Client) for the purpose of conducting a Smart Contract Audit/Code Review for Sonar Bridge V2. This document presents the findings of our analysis which took place on 28th September 2021.

1 2 3 10
Designed & Developed by: 
All rights reserved. Copyright 2023