Digital Signature Service

Total Page：16

File Type：pdf, Size：1020Kb

Digital Signature Service Table of Contents Introduction. 3 Purpose of the document . 3 Scope of the document . 3 Abbreviations and Acronyms . 4 References . 7 Useful links . 8 Build instructions . 9 DSS Core . 9 DSS Demonstrations . 12 General framework structure . 13 Maven modules . 13 DSS Utils . 19 DSS CRL Parser . 19 DSS PAdES . 19 Available demonstrations. 20 Signature’s profile simplification . 21 Signature profile guide. 22 The XML Signature (XAdES). 25 XAdES Profiles . 25 Versions support . 38 Reference Transformations. 39 Multiple signatures . 41 XAdES and specific schema version . 41 Sign a Trusted List . 42 Signature Extension. 42 BASELINE-T . 43 BASELINE-LT and -LTA . 44 Signature Validation . 44 Validation Process . 44 Validation Result Materials . 49 Validation Policy. 77 CAdES signature (CMS) . 86 PAdES signature (PDF). 87 PAdES Visible Signature . 90 Shadow attack detection . 97 JAdES signature (JWS) . 98 1 JWS Serialization type. 99 JAdES Signature Packaging . 100 Base64Url encoding. 101 ASiC signature (containers) . 102 Counter signatures. 105 Various parameters . 106 Signature policy . 106 Signature Policy Store. 111 Trust anchor inclusion policy . 112 Timestamps . 112 Timestamp creation . 112 Timestamp validation. 113 Available implementations of DSSDocument . 119 Management of signature tokens. ..

316

Copy Link

Recommended publications

On the Integrity and Trustworthiness of Web Produced Data
CORE Metadata, citation and similar papers at core.ac.uk Provided by Open Repository of the University of Porto On the Integrity and Trustworthiness of web produced data Luís A. Maia Mestrado Integrado em Engenharia de Redes e Sistemas Informáticos Departamento de Ciência de Computadores 2013 Orientador Professor Doutor Manuel Eduardo Carvalho Duarte Correia, Professor Auxiliar do Departamento de Computadores, Faculdade de Ciências da Universidade do Porto Todas as correções determinadas pelo júri, e só essas, foram efetuadas. O Presidente do Júri, Porto, ______/______/_________ Acknowledgments I would like to express my appreciation for the help of my supervisor in researching and bringing different perspectives and to thank my family, for their support and dedication. 3 Abstract Information Systems have been a key tool for the overall performance improvement of administrative tasks in academic institutions. While most systems intend to deliver a paperless environment to each institution it is recurrent that document integrity and accountability is still relying on traditional methods such as producing physical documents for signing and archiving. While this method delivers a non-efficient work- flow and has an effective monetary cost, it is still the common method to provide a degree of integrity and accountability on the data contained in the databases of the information systems. The evaluation of a document signature is not a straight forward process, it requires the recipient to have a copy of the signers signature for comparison and training beyond the scope of any office employee training, this leads to a serious compromise on the trustability of each document integrity and makes the verification based entirely on the trust of information origin which is not enough to provide non-repudiation to the institutions.
[Show full text]
Bibliography of Erik Wilde
dretbiblio dretbiblio Erik Wilde's Bibliography References [1] AFIPS Fall Joint Computer Conference, San Francisco, California, December 1968. [2] Seventeenth IEEE Conference on Computer Communication Networks, Washington, D.C., 1978. [3] ACM SIGACT-SIGMOD Symposium on Principles of Database Systems, Los Angeles, Cal- ifornia, March 1982. ACM Press. [4] First Conference on Computer-Supported Cooperative Work, 1986. [5] 1987 ACM Conference on Hypertext, Chapel Hill, North Carolina, November 1987. ACM Press. [6] 18th IEEE International Symposium on Fault-Tolerant Computing, Tokyo, Japan, 1988. IEEE Computer Society Press. [7] Conference on Computer-Supported Cooperative Work, Portland, Oregon, 1988. ACM Press. [8] Conference on Oﬃce Information Systems, Palo Alto, California, March 1988. [9] 1989 ACM Conference on Hypertext, Pittsburgh, Pennsylvania, November 1989. ACM Press. [10] UNIX | The Legend Evolves. Summer 1990 UKUUG Conference, Buntingford, UK, 1990. UKUUG. [11] Fourth ACM Symposium on User Interface Software and Technology, Hilton Head, South Carolina, November 1991. [12] GLOBECOM'91 Conference, Phoenix, Arizona, 1991. IEEE Computer Society Press. [13] IEEE INFOCOM '91 Conference on Computer Communications, Bal Harbour, Florida, 1991. IEEE Computer Society Press. [14] IEEE International Conference on Communications, Denver, Colorado, June 1991. [15] International Workshop on CSCW, Berlin, Germany, April 1991. [16] Third ACM Conference on Hypertext, San Antonio, Texas, December 1991. ACM Press. [17] 11th Symposium on Reliable Distributed Systems, Houston, Texas, 1992. IEEE Computer Society Press. [18] 3rd Joint European Networking Conference, Innsbruck, Austria, May 1992. [19] Fourth ACM Conference on Hypertext, Milano, Italy, November 1992. ACM Press. [20] GLOBECOM'92 Conference, Orlando, Florida, December 1992. IEEE Computer Society Press. http://github.com/dret/biblio (August 29, 2018) 1 dretbiblio [21] IEEE INFOCOM '92 Conference on Computer Communications, Florence, Italy, 1992.
[Show full text]
EDTA Conference: Part 1
EDTA, iText and INBATEK Conference Bangkok, July 27, 2017 © 2015, iText Group NV, iText Software Corp., iText Software BVBA How standards drive business . History of PDF . Umbrella of standards . Focus on: PDF/A, PDF/UA, PAdES, PDF 2.0, next-generation PDF © 2015, iText Group NV, iText Software Corp., iText Software BVBA Speaking the same language Not being able to understand each other is a punishment, NOT a business model! Standards are about speaking the same language! 3 How standards drive business © 2015, iText Group NV, iText Software Corp., iText Software BVBA History of PDF Version Date # pages Content Adobe PDF 1.0 June 1993 230 43 tables, 42 figures Adobe PDF 1.1 23 January 1996 302 20 references Adobe PDF 1.2 12 November 1996 394 137 tables, 86 examples Adobe PDF 1.3 July 2000 696 223 tables, 73 figures Adobe PDF 1.4 December 2001 978 277 tables, 20 color plates Adobe PDF 1.5 August 2003 1172 333 tables, 70 figures Adobe PDF 1.6 November 2004 1236 370 tables, 80 figures Adobe PDF 1.7 October 2006 1310 389 tables, 98 figures ISO 32000-1:2008 (PDF 1.7) 1 July 2008 756 (A4) 78 Normative References ISO 32000-2:2017 (PDF 2.0) 2017 970 (A4) 5836 “shall”, 411 “should” 4 How standards drive business © 2015, iText Group NV, iText Software Corp., iText Software BVBA PDF: an umbrella of standards PDF Portable Document Format First released by Adobe in 1993 ISO Standard since 2008 ISO 32000 PDF/X PDF/A PDF/E PDF/VT PDF/UA Related: graphic arts archive engineering printing accessibility • EcmaScript (ISO) • PRC (ISO) Since 2001 Since 2005 Since 2008 Since 2010 Since 2012 • PAdES (ETSI) ISO 15930 ISO 19005 ISO 24517 ISO 16612 ISO 14289 • ZUGFeRD (DIN) 5 How standards drive business © 2015, iText Group NV, iText Software Corp., iText Software BVBA PDF/A ISO 19005: long-term preservation © 2015, iText Group NV, iText Software Corp., iText Software BVBA Goals and concept ISO-19005, Long-term preservation of documents, Approved parts will never become invalid, Individual parts define new, useful features.
[Show full text]
Signature Validation Procedures and Policies
ETSI TS 102 853 V1.1.2 (2012-10) Technical Specification Electronic Signatures and Infrastructures (ESI); Signature validation procedures and policies 2 ETSI TS 102 853 V1.1.2 (2012-10) Reference RTS/ESI-000074rev Keywords electronic signature, security, trust services ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N° 348 623 562 00017 - NAF 742 C Association à but non lucratif enregistrée à la Sous-Préfecture de Grasse (06) N° 7803/88 Important notice Individual copies of the present document can be downloaded from: http://www.etsi.org The present document may be made available in more than one electronic version or in print. In any case of existing or perceived difference in contents between such versions, the reference version is the Portable Document Format (PDF). In case of dispute, the reference shall be the printing on ETSI printers of the PDF version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at http://portal.etsi.org/tb/status/status.asp If you find errors in the present document, please send your comment to one of the following services: http://portal.etsi.org/chaircor/ETSI_support.asp Copyright Notification No part may be reproduced except as authorized by written permission. The copyright and the foregoing restriction extend to reproduction in all media.
[Show full text]
Multiple Electronic Signatures on Multiple Documents
Multiple electronic signatures on multiple documents Antonio Lioy and Gianluca Ramunno Politecnico di Torino Dip. di Automatica e Informatica Torino (Italy) Abstract. European, international and Internet standards are available to support electronic signatures. The most common signature formats are defined via the ASN.1 syntax with DER encoding, or the XML language. Furthermore PDF is a widespread document format with support for e-signatures. Application of signa- tures to e-documents must consider several aspects: long term signature validity, non-repudiation, qualified certificates, and many others. This paper focuses on the relationships among multiple documents and multiple signatures and analyses the support provided by current formats to this problem. Where lack of standardiza- tion or standard profiling is found, a proposal is made towards better application of e-signatures. 1 Introduction It's a common belief that the field of electronic signatures (in short e-signatures) is an already established one. While this is true for the basic technical and legal foundations, we believe that many aspects have still to be investigated and properly defined. In partic- ular, the flexibility and richness of signature and documents in the paper world are still unmatched, and this can cause unexpected problems in real-life applications. In this pa- per we focus on the problems related to multiple signatures on the same document (as in the case of countersignatures), signature of document parts or of multiple documents. The complex relationships between multiple signatures and documents are explored, with reference to the major formats, to identify problems and suggest solutions that can improve the practical applicability of electronic signatures.
[Show full text]
Situație Cu Obiectivele Autorizate Din Punct De Vedere Al
MINISTERUL AFACERILOR INTERNE Exemplar nr. 1 DEPARTAMENTUL PENTRU SITUAŢII DE URGENŢĂ Nr. 40212 din INSPECTORATUL GENERAL PENTRU SITUAŢII DE URGENŢĂ Târgu Jiu INSPECTORATUL PENTRU SITUAŢII DE URGENŢĂ “LT.COL. DUMITRU PETRESCU” AL JUDEŢULUI GORJ OBIECTIVE AUTORIZATE DIN PUNCT DE VEDERE AL SECURITĂŢII LA INCENDIU PE ANUL 2009 NR. NR. AUTORIZAŢIE DENUMIREA ADRESA/DENUMIREA CONSTRUCŢIEI CRT DE SECURITATE TITULARULUI PENTRU CARE A FOST EMISĂ LA INCENDIU AUTORIZAŢIEI AUTORIZAŢIA DE SECURITATE LA INCENDIU 1 898001 SC. DUDU SRL Cabana turistica montana 04.02.2009. 0251/471021 NOVACI, RINCA, STR. I ROIBU, NR.23 2 898002 SC. RODNA SRL Spatiu comercial P+1 04.02.2009. 0253/321607 TG-JIU, ALEEA PIETII, NR. 1. 3 898003 SC. TDG VILCEA Spatiu de depozitare 04.02.2009. SRL TG-JIU, STR. E. TEODOROIU, NR. 516 0722/207977 4 898004 SC. DUDU SRL Cabana turistica montana 05.02.2009. 0251/471021 NOVACI, RINCA, STR. I ROIBU, NR.23 5 898005 SC. EDILTERA SRL Pensiune turistica 15.02.2009 0353/806421 TG-JIU, STR. GRIVITEI, NR.26. 6 898006 SC. COLGORJ SRL Motel 20.02.2009. 0724/459974 TG-JIU, STR.JIULUI, NR. 3. 7 898007 SC. VEOLARIS SRL Pensiune turistica 20.02.2009. 0723/519369 RINCA, STR. I ROIBU, NR. 74 8 898008 SC. NAZIRA SRL Sp. Comercial 02.04.2009. 0253/223966 TG-JIU, STR.BARAJELOR. 9 898009 SC. ALEX Pensiune turistica 02.04.2009 &ANDREEA RINCA, NR 116 10 898010 SC. EVRIKASA Pensiune Agroturistica 09.04.2009. 0740/275554 COM. POLOVRAGI 11 898011 ZERNOVEANU Pensiune turistica 24.04.2009. LAVINIA COM. BAIA DE FIER, SAT.
[Show full text]
Retea Scolara
Nr Cod 1 1831106235 2 1841105456 3 1861100027 4 1852101941 5 1852101959 6 1852101923 7 1852101932 8 1852101977 9 1881106007 10 1861105638 11 1861105751 12 1861105914 13 1882106735 14 1861105484 15 1861105398 16 1861105588 17 1861100018 18 1861105977 19 1861105611 20 1861105864 21 1861105968 22 1861105353 23 1861105439 24 1861104664 25 1861106205 26 1862101331 27 1862101376 28 1862101408 29 1862101236 30 1862101281 31 1862101245 32 1862105276 33 1862104094 34 1862100488 35 1862100895 36 1862100823 37 1862100868 38 1862100918 39 1862100927 40 1862100945 41 1862105285 42 1862105222 43 1862105204 44 1862105294 45 1862105258 46 1862105077 47 1862105199 48 1862104809 49 1862105163 50 1862105059 51 1862105181 52 1861104596 53 1861105543 54 1862104777 55 1862102938 56 1862102567 57 1862103586 58 1862102635 59 1862106431 60 1862102047 61 1862105136 62 1862103134 63 1862100497 64 1862104058 65 1862102671 66 1862103835 67 1862104203 68 1862100606 69 1862103826 70 1862102282 71 1862103785 72 1862100651 73 1862103966 74 1862100122 75 1862102083 76 1862100434 77 1862101679 78 1862104239 79 1862101661 80 1862103283 81 1862103844 82 1862100981 83 1862103238 84 1862103912 85 1862103618 86 1862100407 87 1862100303 88 1862102133 89 1862100416 90 1862101091 91 1862103179 92 1862103532 93 1862103627 94 1862103609 95 1862103306 96 1862104379 97 1862102531 98 1862103107 99 1862104402 100 1862104483 101 1862101584 102 1862101566 103 1862102617 104 1862105095 105 1862104013 106 1862104949 107 1862103342 108 1862106485 109 1862102196 110 1862103021 111 1862104456
[Show full text]
Date Calitative Despre Școlile Gimnaziale Gorj
Date calitative despre școlile gimnaziale Gorj Media Media diferenţelor Media mediilor la Număr mediilor de mediei mediilor Maximul Minimul Cod Judeţ evaluarea școli absolvire evaluarea diferenței diferenței naţională cls. 5-8 națională - absolvire 5-8 GJ 115 8,43 7,02 -1,58 -3,13 -0,12 Național 5.867 8,59 6,79 -2,16 -7,11 0,26 Diferenţa mediei Media mediilor Media mediilor la mediilor Rang după Cod Număr de Rang după Judeţ Nume Mediu de absolvire cls. 5- evaluarea evaluarea diferență pe Şcoală elevi diferență pe țară 8 naţională națională - județ absolvire 5-8 GJ 112 SCOALA GIMNAZIALA "C-TIN. SAVOIU" TG-JIU 143 U 8,91 8,79 -0,12 1 40 GJ 113 SCOALA GIMNAZIALA "CONSTANTIN BRANCUSI" TIRGU-JIU 50 U 8,76 8,64 -0,12 2 41 GJ 155 SCOALA GIMNAZIALA BARBATESTI 25 R 8,36 8,15 -0,22 3 61 GJ 207 SCOALA GIMNAZIALA PRIGORIA 23 R 8,03 7,70 -0,32 4 110 GJ 115 SCOALA GIMNAZIALA "GHEORGHE TATARASCU" TIRGU-JIU 99 U 8,72 8,33 -0,39 5 142 GJ 104 COLEGIUL NATIONAL "TUDOR VLADIMIRESCU" TG-JIU 46 U 9,28 8,87 -0,40 6 151 GJ 135 LICEUL TEHNOLOGIC TURCENI 77 U 8,84 8,40 -0,43 7 168 GJ 110 SCOALA GIMNAZIALA "SF.NICOLAE" TIRGU-JIU 63 U 8,69 8,21 -0,48 8 195 GJ 177 SCOALA GIMNAZIALA DUMBRAVENI, CRASNA 16 R 8,21 7,68 -0,53 9 224 GJ 188 SCOALA GIMNAZIALA HUREZANI 16 R 8,51 7,98 -0,53 10 229 GJ 103 COLEGIUL NATIONAL "SPIRU HARET" TG-JIU 52 U 8,86 8,31 -0,55 11 242 GJ 178 SCOALA GIMNAZIALA RADOSI, CRASNA 9 R 8,40 7,76 -0,64 12 302 GJ 218 SCOALA GIMNAZIALA SLIVILESTI 43 R 8,18 7,51 -0,67 13 332 GJ 105 LICEUL VOCATIONAL DE MUZICA SI ARTE PLASTICE "C-TIN BRAILOIU" TG-JIU
[Show full text]
Digital Archive: Arrange, Assign & Sign!
Digital Archive: Arrange, Assign & Sign! Patrícia Raquel Vieira Sousa Mestrado Integrado em Engenharia de Redes e Sistemas Informáticos Departamento de Ciência de Computadores 2016 Orientador Prof. Dr. Luís Filipe Coelho Antunes, Professor Auxiliar, FCUP Coorientador Eng. Pedro Vasconcelos Castro Lopes Faria, Consultor, HealthySystems Todas as correções determinadas pelo júri, e só essas, foram efetuadas. O Presidente do Júri, Porto, ______/______/_________ Patr´ıcia Raquel Vieira Sousa Digital archive: Arrange, Assign & Sign! Departamento de Ciência de Computadores Faculdade de Ciências da Universidade do Porto Junho de 2016 Patr´ıcia Raquel Vieira Sousa Digital archive: Arrange, Assign & Sign! Disserta¸cão submetida àFaculdade de Ciências da Universidade do Porto como parte dos requisitos para a obten¸cão do grau de Mestre em Engenharia de Redes em Sistemas Informáticos Orientador: Prof. Dr. Lu´ıs Filipe Coelho Antunes Co-orientador: Eng. Pedro Vasconcelos Castro Lopes Faria Departamento de Ciência de Computadores Faculdade de Ciências da Universidade do Porto Junho de 2016 To my parents and my love for all the support and patience... 3 Acknowledgments I want to thank my advisor Professor Lu´ıs Antunes for the support in all this time of work, for all suggestions that improved my thesis and for this opportunity. I also want to thank my co-advisor Pedro Faria for all dedication, support, patience and guidance that made all this work possible. Thanks for innovative ideas and the security knowledge transmitted during this thesis. I also want to thank Professor Manuel Eduardo Correia for the interest that has always shown for this thesis work and for all the support and ideas.
[Show full text]
A Systematic Literature Review on Existing Digital Government Architectures: State-Of-The-Art, Challenges, and Prospects
administrative sciences Article A Systematic Literature Review on Existing Digital Government Architectures: State-of-the-Art, Challenges, and Prospects Baseer Ahmad Baheer * , David Lamas and Sónia Sousa School of Digital Technologies, Tallinn University, Narva maantee 25, 10120 Tallinn, Estonia; [email protected] (D.L.); [email protected] (S.S.) * Correspondence: [email protected]; Tel.: +372-5375-4954 Received: 12 February 2020; Accepted: 16 April 2020; Published: 22 April 2020 Abstract: System architecture plays a crucial role in the establishment of Digital Government infrastructure. Over recent decades, various architectures have been introduced by scholars for the establishment of Digital Government infrastructure. However, there is no uniform agreement on Digital Government architecture concepts required for Digital Government infrastructure. To more thoroughly examine the Digital Government architecture introduced in this article, we collected 103 papers published between 2003 and 2020 retrieved from five leading literature databases. To conduct our research, we followed best practice scholarly accepted guidelines for researchers. Per the guidelines, we formulated research questions and employed an approach based on specific inclusion and exclusion criteria to meet our research goals. Our study found evidence that there is a lack of knowledge in terms of the state-of-the-art in Digital Government infrastructure and its challenges concerning existing Digital Government architectures. We identified a set of primary Digital Government architecture characteristics and building blocks on which the Digital Government infrastructures are built. These components are meant to improve the design of future Digital Government systems and applications. Furthermore, our research revealed a need for designing a reference architecture to provide government organizations with the best practice knowledge of already existing Digital Government architectures.
[Show full text]
Assinatura De Documentos Com CC
João Pedro Alves Fortunato João Pedro João Pedro Alves Fortunato ASSINATURA DE DOCUMENTOS EM TERMINAIS MÓVEIS Assinatura de documentos em terminais móveis recorrendo ao Cartão de Cidadão RECORRENDO AO CARTÃO DE CIDADÃO Relatório de Estágio Mestrado em Engenharia Informática orientada por: Prof. Dr. Fernando Barros e Eng. Avelino Martins apresentada ao Departamento de Engenharia Informática da Faculdade de Ciências e Tecnologia da Universidade de Coimbra Janeiro de 2018 Universidade de Coimbra de Universidade João Fortunato K.indd 1 23/01/2018 15:24:26 M > UNIVERSIDADE DE COIMBRA Assinatura de documentos em terminais móveis recorrendo ao Cartão de Cidadão João Pedro Alves Fortunato Assinatura de documentos em terminais móveis recorrendo ao cartão de cidadão i Assinatura de documentos em terminais móveis recorrendo ao cartão de cidadão ii Assinatura de documentos em terminais móveis recorrendo ao cartão de cidadão Resumo Com o avanço tecnológico das últimas décadas a escrita é cada vez mais realizada em documentos eletrónicos. Num mundo empresarial cada vez mais competitivo surge a necessidade de assinar documentos digitais de uma forma rápida para agilizar o processo de negócio. As assinaturas digitais foram criadas para garantir a autenticação, integridade e não- repúdio de documentos eletrónicos através de técnicas que ligam o assinante ao documento assinado, tais como o cálculo de um valor criptográfico obtido com o uso de informação privada que só o assinante possui. Este relatório documenta o trabalho realizado pelo aluno João Pedro Alves Fortunato, no âmbito de estágio em Engenharia Informática relativamente à especialidade de Engenharia de Software do mestrado em Engenharia Informática da Faculdade de Ciências e Tecnologia da Universidade de Coimbra.
[Show full text]
Etsi Ts 101 733 V2.2.1 (2013-04)
ETSI TS 101 733 V2.2.1 (2013-04) Technical Specification Electronic Signatures and Infrastructures (ESI); CMS Advanced Electronic Signatures (CAdES) 2 ETSI TS 101 733 V2.2.1 (2013-04) Reference RTS/ESI-0001733version221 Keywords CAdES, e-commerce, electronic signature, security ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N° 348 623 562 00017 - NAF 742 C Association à but non lucratif enregistrée à la Sous-Préfecture de Grasse (06) N° 7803/88 Important notice Individual copies of the present document can be downloaded from: http://www.etsi.org The present document may be made available in more than one electronic version or in print. In any case of existing or perceived difference in contents between such versions, the reference version is the Portable Document Format (PDF). In case of dispute, the reference shall be the printing on ETSI printers of the PDF version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at http://portal.etsi.org/tb/status/status.asp If you find errors in the present document, please send your comment to one of the following services: http://portal.etsi.org/chaircor/ETSI_support.asp Copyright Notification No part may be reproduced except as authorized by written permission. The copyright and the foregoing restriction extend to reproduction in all media.
[Show full text]