Enable MOSIP to support ECC Algorithm during encryption & decryption

[Varaniya201]

Description:
As an identity and access management system user, I want the MOSIP to support encryption and decryption using the ECC algorithm So that user credentials and sensitive data can be securely encrypted, transmitted, and decrypted to prevent unauthorised access.

Acceptance Criteria:

1. ECC Encryption:

• The IDA module must allow encryption of sensitive auth data (e.g., auth request, otp, KYC data) using ECC public keys before transmitting data.

2. ECC Decryption:

• The IDA module must decrypt incoming encrypted data (auth request) using the ECC algorithm
• During KYC authentication decryption process must ensure that only authorized users with valid private keys can decrypt the data.

3. Authentication & Authorization:

• ECC encryption must be used during user authentication (e.g., signing or encrypting access tokens) to ensure that only legitimate users gain access to resources.
• The IDA module must verify digital signatures using ECC during authorization to validate requests and responses.

4. Error Handling & Security Alerts:

• The system must provide clear error messages when ECC encryption or decryption fails, without exposing sensitive details.

5. Compliance & Auditability:

• Encryption and decryption events should be logged for audit purposes, ensuring traceability and accountability in the identity and access lifecycle.

6. Backward Compatibility:

• Enabling system to sign downloaded UIN with RSA, ECC, Eddsa Algorithm

7. Migration Compatibility:

• Allowing the users to switch between RSA, ECC and Eddsa (Xdh - for encryption/decryption)