Download
1 / 4
40 likes | 44 Views
This PSA solution by Oscar Burgos provides server and client signature capabilities, including server signature maintenance, policy-based signature configuration, and a client application for easy document accessibility. It addresses security concerns with connectivity requirements and offers various signature scenarios for web, desktop, MSP, SP, and public administration applications.
E N D
Oscar Burgos PSA Client & Server SignatureSolution 14 de gener de 2005 Autor: XXX XXXXX 14th February 2011
Signature Scenarios • Server Signatures • DSS-X based solution • Maintenance of signature standards done in server. • Signature configuration based in policies • Client Signatures • Client application (Java or platform dependent) • Difficult to maintain (heavy solution). • Document needs to be accessible in client side. • Needs connectivity (TSA, OCSP, CRLs) – Security issues…
Mixing Signature Scenarios Web Desktop WS WS MSP SP Public Administration Application • Signature Request • Document / Hash • Client/Server signature • Multiple Signature Policy (MSP) ID • Signing certificate? (if already known) Citizen Rq/Rp Signing Certificate Additional Attributes TBSigned (SP) SignedInfo hash value TBSigned SignatureValue (Raw Signature) Public Employee • Signature Response • Created Signature (w/UnsignedProperties) • Client Component • (i.e. Web: Java applet, Desktop: MS CryptoApi) • Selection of Signing Certificate • PKCS#1 – Raw Signature
Oscar Burgos oburgos@catcert.cat Aquesta obra estàsubjecta a una llicènciaReconeixement-No comercial-Sense obres derivades 2.5 Espanya de CreativeCommons. Per veure'n una còpia, visiteu http://creativecommons.org/licenses/by-nc-nd/2.5/es/deed.ca o envieu una carta a CreativeCommons, 171 Second Street, Suite 300, San Francisco, California 94105, USA."
