DOCSLIB.ORG

OASIS Digital Signature Services (OASIS-DSS) an Architecture, Implementation and Interoperability Master’S Thesis at Graz University of Technology 2008

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
OASIS Digital Signature Services (OASIS-DSS) an Architecture, Implementation and Interoperability Master’S Thesis at Graz University of Technology 2008 OASIS Digital Signature Services (OASIS-DSS) An Architecture, Implementation and Interoperability Master’s Thesis at Graz University of Technology 2008 submitted by Konrad Lanz, bakk.techn., BSc Hons Institute for Applied Information Processing and Communications (IAIK), Graz University of Technology A-8010 Graz, Austria December 2008 © Copyright 2005-2008 Konrad Lanz Assessor: O.Univ.-Prof. Dipl.-Ing. Dr.techn. Reinhard Posch Supervisor: Ass.-Prof. Dipl.-Ing. Dr.techn. Peter Lipp i The candidate confirms that the work submitted is his own and the appropriate credit has been given where reference has been made to the work of others. I understand that failure to attribute material which is obtained from another source may be considered as plagiarism. (Signature of student) Signature Value F4BtvtUqSBPSgBeE2QPp1suVNoU75kZAk05AgIgLKJlMEov7RCAW35vkkEr/HwdR Signatory C=AT,OU=VSig,O=Hauptverband österr. Sozialvers.,CN=Konrad Lanz Date/Time-UTC 2008-12-15T23:15:40Z Issuer-Certificate C=AT,O=Hauptverband österr. Sozialvers.,CN=VSig CA 2 Serial-No. 17293657787164074630362273138432232730208 Method urn:pdfsigfilter:bka.gv.at:binaer:v1.1.0 Parameter etsi-bka-1.0@1229382940-394096199@31239-32542-0-14959-320 Verification Verification service: http://demo.a-sit.at/el_signatur/verification ©2005-2008 Konrad Lanz, All Rights reserved. Permission to copy this document is granted to Graz University of Technology i.e. the Institute for Applied Information Processing and Communications (IAIK) for in house educational purposes and its library and on a fair use basis. For permission to copy this document otherwise please do not hesitate to contact [email protected] with the following subject “request for copy permission MSc-Thesis 2008”. This document counts towards my degree classification. This thesis has been written in LATEX. ii Abstract OASIS Digital Signature Services (OASIS-DSS) An Architecture, Implementation and Interoperability This Master’s Thesis investigates “OASIS Digital Signature Services (OASIS-DSS)”, a client-server protocol that can contribute to hide the complexities of digital signature processing for “Extensible Markup Language (XML)” documents from the user. The challenges when creating “XML-Signature Syntax and Processing (XMLDSIG)” signatures range from making secure choices for transforms such as “XML Path Language Version 1.0 (XPath) filter transform”, “Extensible Stylesheet Language for Transformation (XSLT)” to canonicalization (C14n) of XML. Further, various cryptographic signature schemes, key distribution and the secure choice of hash functions need to be taken off a client and are better manageable centrally. When signed XML payload travels from client to server and back, broken signatures appear, the issue and proposed solutions are discussed in this thesis. When transforms and canonicalization in XMLDSIG depend on the context of the transport protocol signatures break. As such they are affected by inherited namespaces, inherited attributes or simply the presence of the transport protocol in the data model. XML documents can in general not be enveloped in one another. This thesis proposes to amend XML itself to enable round tripping of signed XML data. The architecture of OASIS-DSS itself was modified and extended to become implementable for all kinds of XML documents and transforms. A design and an implementation of an OASIS-DSS prototype library coping with the mentioned issues was performed. During the work on this thesis standardization activities were undertaken in the “Organization for the Advancement of Structured Information Standards (OASIS)” and the “World Wide Web Consortium (W3C)”. The author participated in the OASIS-DSS technical committee and W3C XML Security Working Group and its predecessor. Various amendments to OASIS-DSS addressing shortcomings identified during the work on this thesis have been committed. iii iv Kurzfassung OASIS Digital Signature Services (OASIS-DSS) An Architecture, Implementation and Interoperability Diese Masterarbeit untersucht ,,OASIS Digital Signature Services (OASIS-DSS)“ ein Client-Server Pro- tokoll, das dazu beitragt¨ die Komplexitat¨ digitaler Signatur Verarbeitung von ,,Extensible Markup Lan- guage (XML)“ Dokumenten dem User abzunehmen. Die Herausforderungen beim Erstellen von ,,XML- Signature Syntax and Processing (XMLDSIG)“ Signaturen reichen von der Wahl sicherer Transforma- tionen wie ,,XML Path Language Version 1.0 (XPath) Filtertransformationen“, ,,Extensible Stylesheet Language for Transformation (XSLT)“ bis hin zum Kanonisieren (C14n) von XML. Verschiedene kryp- tographische Signaturverfahren, Schlusselmanagement¨ und die sichere Wahl einer Hashfunktion konnen¨ dem Client abgenommen werden. Diese Entscheidungen werden oft besser zentral auf einem Server getroffen. Wenn signiertes XML vom Client zum Server und retour gesendet wird, brechen immer wieder Sig- naturen. Diese Problematik und Losungsvorschl¨ age¨ werden in dieser Arbeit diskutiert. Auch wenn Transformationen und Kanonisierung in XMLDSIG vom Kontext des Transportprotokolls abhangen,¨ konnen¨ Signaturen brechen. Als solche sind diese von geerbten Namensraumen,¨ geerbten Attributen oder schlicht von der Gegenwart des Transportprotokolls im Datenmodell betroffen. XML ist unter der Operation des Einfugens¨ eines Dokumentes in ein anderes im Allgemeinen nicht abgeschlossen. Diese Arbeit schlagt¨ vor XML selbst anzupassen um XML uncodiert direkt in XML so transportieren zu konnen,¨ dass signierte XML Inhalte originalgetreu erhalten werden. Die Architektur von OASIS-DSS selbst wurde so modifiziert und erweitert, dass eine Implementier- barkeit fur¨ generelle XML Dokumente und allgemeine Transformationen moglich¨ ist. Ein Design und eine Implementierung einer OASIS-DSS Prototypen-Bibliothek, die oben genannte Probleme behan- delt, wurden durchgefuhrt.¨ Wahrend¨ dieser Masterarbeit wurden bei der ,,Organization for the Advancement of Structured Informa- tion Standards (OASIS)“ und dem ,,World Wide Web Consortium (W3C)“ Standardisierungstatigkeiten¨ unternommen. Der Autor war Mitglied des OASIS-DSS Technischen Komitees (TC) und bei der W3C XML Security Working Group und deren Vorgangergruppe.¨ An verschiedensten Anderungen¨ von OASIS-DSS wurde fortlaufend mitgearbeitet. v vi Acknowledgements I would like to thank . Edith. 1998 was the luckiest year in my life, and not because XML was published. Edith thank you for your support, your patience and the last ten years. Eva, my mum for supporting me in everything I ever did. Peter Lipp my supervisor for trusting in my abilities right from the beginning. The Institute for Applied Information Processing and Communications (IAIK) and its head Reinhard Posch my assessor for giving me the chance to do this work at this institute. Many thanks to Harald Bratko for proof reading this document and Dieter Bratko for giving me advice on Public-Key Infrastructure (PKI). Especially, Clemens Orthacker for his friendship and proof reading the document. Konrad Lanz vii Formatting conventions in this thesis. • acronym (ACR) - acronyms • ACR - abbreviated acronym • code - in-line code elements • <ds:Signature> - refers to Extensible Markup Language (XML) elements • <dss:SignRequest> - refers to XML Schema (Schema) element declarations • dss:SignRequestType - refers to Schema types declarations • RequestID - XML attributes or Schema attribute declarations viii Contents Statement . .i Kurzfassung . .v Abstract . iii Acknowledgements . vii 1 Introduction 1 2 Background 3 2.1 The Extensible Markup Language (XML) . .3 2.1.1 The X and typing in XML . .5 2.1.2 XML, a good choice for a signature . .8 2.2 Namespaces and Types . .9 2.2.1 Namespaces help to extend XML grammars . .9 2.2.2 XML Schema (Schema) . 11 2.3 XML Technologies for Processing . 14 2.3.1 Simple API for XML (SAX) . 15 2.3.2 Document Object Model (DOM) . 17 2.3.3 XML Path Language Version 1.0 (XPath) . 18 2.3.4 Uniform Resource Identifier (URI) . 23 2.3.5 XML Pointer Language Version 1.0 (XPointer) . 28 2.3.6 Extensible Stylesheet Language for Transformation (XSLT) . 33 2.3.7 Cascading Style Sheets (CSS) . 35 2.4 Digital Signatures . 35 2.4.1 XML Digital Signatures . 36 2.5 Canonicalization . 42 2.5.1 Minimal Canonicalization (MC14n) . 42 2.5.2 C14n and C14n11 . 43 2.5.3 Exclusive XML Canonicalization Version 1.0 (Exc-C14n) . 45 2.5.4 Schema Centric XML Canonicalization Version 1.0 (ScC14n) . 47 2.5.5 Canonicalizations overview . 50 ix 3 OASIS-DSS 51 3.1 Incentives for using OASIS-DSS . 51 3.2 Basics . 53 3.2.1 dss:RequestBaseType............................... 55 3.2.2 dss:DocumentBaseType............................. 56 3.2.3 dss:DocumentType - Forms of payload . 57 3.3 Signing . 59 3.3.1 Basic processing for signing using XMLDSIG . 59 3.3.2 Enter the processing at various stages . 59 3.3.3 Important optional inputs and outputs for signature creation . 64 3.3.4 <dss:IncludeObject> - Creating enveloping signatures . 64 3.3.5 <dss:SignaturePlacement> - Creating enveloped signatures . 65 3.3.6 <dss:SignedReference> - More control on reference generation . 66 3.3.7 Further optional inputs and outputs for signature creation . 68 3.3.8 Other optional inputs . 68 3.3.9 dss:ResponseBaseType - Returning signed documents . 68 3.3.10 <dss:SignResponse> .............................. 69 3.4 Verifying . 71 3.4.1 Basic processing for verifying using XMLDSIG . 72 3.4.2 Important optional inputs and outputs for signature verification . 72 3.4.3 <dss:VerifyResponse> .............................. 73 3.5 Signing, Verifying - concluding remarks
Load more

Recommended publications
  • An Arbitration System for Student Evaluation Based on XML Signature
    2nd EUROPEAN COMPUTING CONFERENCE (ECC’08) Malta, September 11-13, 2008 An Arbitration System for Student Evaluation based on XML Signature ROBERT ANDREI BUCHMANN, SERGIU JECAN Business Information Systems Dpt. Faculty of Economic Sciences and Business Administration Babes Bolyai University Cluj Napoca Str. Th. Mihali 58-60, ROMANIA [email protected], [email protected] Abstract: This paper promotes an e-learning application model for student evaluation, based on AJAX frameworks in order to provide improved user experience and asynchronous data exchange and the XML Signature standard in order to impose message authentications for the test papers. The motivation of this research is the need to arbitrate contestation for e-learning evaluation by providing an authentication and non-repudiation mechanism for both the students’ answers and the teachers’ evaluation criteria and rating, especially in open answer tests. Keywords: - e-learning, digital signature, AJAX 1 Introduction arose the issue of arbitration in contestation processes, especially in tests based on open E-learning already provides a mature model for questions, but also in multiple choice tests with educational processes. However, the separation no immediate answer validation. The proposed of parties in time and space is bound to solution is an extension to traditional e-learning communication gaps causing situations where an application models, regarding the evaluation arbitration system should provide trust module, based on XML-based digital signature mechanisms between the student and the and improved usability through AJAX teacher. The proposed application model is an frameworks. evolutionary step of the XML-driven e- commerce application previously implemented 3 Problem Solution for Flash 2004 with XML support and currently migrated under an AJAX framework and within 3.1 Instrumentation an e-learning context based on trust managed through XML Signatures.
    [Show full text]
  • On the Integrity and Trustworthiness of Web Produced Data
    CORE Metadata, citation and similar papers at core.ac.uk Provided by Open Repository of the University of Porto On the Integrity and Trustworthiness of web produced data Luís A. Maia Mestrado Integrado em Engenharia de Redes e Sistemas Informáticos Departamento de Ciência de Computadores 2013 Orientador Professor Doutor Manuel Eduardo Carvalho Duarte Correia, Professor Auxiliar do Departamento de Computadores, Faculdade de Ciências da Universidade do Porto Todas as correções determinadas pelo júri, e só essas, foram efetuadas. O Presidente do Júri, Porto, ______/______/_________ Acknowledgments I would like to express my appreciation for the help of my supervisor in researching and bringing different perspectives and to thank my family, for their support and dedication. 3 Abstract Information Systems have been a key tool for the overall performance improvement of administrative tasks in academic institutions. While most systems intend to deliver a paperless environment to each institution it is recurrent that document integrity and accountability is still relying on traditional methods such as producing physical documents for signing and archiving. While this method delivers a non-efficient work- flow and has an effective monetary cost, it is still the common method to provide a degree of integrity and accountability on the data contained in the databases of the information systems. The evaluation of a document signature is not a straight forward process, it requires the recipient to have a copy of the signers signature for comparison and training beyond the scope of any office employee training, this leads to a serious compromise on the trustability of each document integrity and makes the verification based entirely on the trust of information origin which is not enough to provide non-repudiation to the institutions.
    [Show full text]
  • XML Signature/Encryption — the Basis of Web Services Security
    Special Issue on Security for Network Society Falsification Prevention and Protection Technologies and Products XML Signature/Encryption — the Basis of Web Services Security By Koji MIYAUCHI* XML is spreading quickly as a format for electronic documents and messages. As a consequence, ABSTRACT greater importance is being placed on the XML security technology. Against this background research and development efforts into XML security are being energetically pursued. This paper discusses the W3C XML Signature and XML Encryption specifications, which represent the fundamental technology of XML security, as well as other related technologies originally developed by NEC. KEYWORDS XML security, XML signature, XML encryption, Distributed signature, Web services security 1. INTRODUCTION 2. XML SIGNATURE XML is an extendible markup language, the speci- 2.1 Overview fication of which has been established by the W3C XML Signature is an electronic signature technol- (WWW Consortium). It is spreading quickly because ogy that is optimized for XML data. The practical of its flexibility and its platform-independent technol- benefits of this technology include Partial Signature, ogy, which freely allows authors to decide on docu- which allows an electronic signature to be written on ment structures. Various XML-based standard for- specific tags contained in XML data, and Multiple mats have been developed including: ebXML and Signature, which enables multiple electronic signa- RosettaNet, which are standard specifications for e- tures to be written. The use of XML Signature can commerce transactions, TravelXML, which is an EDI solve security problems, including falsification, spoof- (Electronic Data Interchange) standard for travel ing, and repudiation. agencies, and NewsML, which is a standard specifica- tion for new distribution formats.
    [Show full text]
  • Bibliography of Erik Wilde
    dretbiblio dretbiblio Erik Wilde's Bibliography References [1] AFIPS Fall Joint Computer Conference, San Francisco, California, December 1968. [2] Seventeenth IEEE Conference on Computer Communication Networks, Washington, D.C., 1978. [3] ACM SIGACT-SIGMOD Symposium on Principles of Database Systems, Los Angeles, Cal- ifornia, March 1982. ACM Press. [4] First Conference on Computer-Supported Cooperative Work, 1986. [5] 1987 ACM Conference on Hypertext, Chapel Hill, North Carolina, November 1987. ACM Press. [6] 18th IEEE International Symposium on Fault-Tolerant Computing, Tokyo, Japan, 1988. IEEE Computer Society Press. [7] Conference on Computer-Supported Cooperative Work, Portland, Oregon, 1988. ACM Press. [8] Conference on Office Information Systems, Palo Alto, California, March 1988. [9] 1989 ACM Conference on Hypertext, Pittsburgh, Pennsylvania, November 1989. ACM Press. [10] UNIX | The Legend Evolves. Summer 1990 UKUUG Conference, Buntingford, UK, 1990. UKUUG. [11] Fourth ACM Symposium on User Interface Software and Technology, Hilton Head, South Carolina, November 1991. [12] GLOBECOM'91 Conference, Phoenix, Arizona, 1991. IEEE Computer Society Press. [13] IEEE INFOCOM '91 Conference on Computer Communications, Bal Harbour, Florida, 1991. IEEE Computer Society Press. [14] IEEE International Conference on Communications, Denver, Colorado, June 1991. [15] International Workshop on CSCW, Berlin, Germany, April 1991. [16] Third ACM Conference on Hypertext, San Antonio, Texas, December 1991. ACM Press. [17] 11th Symposium on Reliable Distributed Systems, Houston, Texas, 1992. IEEE Computer Society Press. [18] 3rd Joint European Networking Conference, Innsbruck, Austria, May 1992. [19] Fourth ACM Conference on Hypertext, Milano, Italy, November 1992. ACM Press. [20] GLOBECOM'92 Conference, Orlando, Florida, December 1992. IEEE Computer Society Press. http://github.com/dret/biblio (August 29, 2018) 1 dretbiblio [21] IEEE INFOCOM '92 Conference on Computer Communications, Florence, Italy, 1992.
    [Show full text]
  • EDTA Conference: Part 1
    EDTA, iText and INBATEK Conference Bangkok, July 27, 2017 © 2015, iText Group NV, iText Software Corp., iText Software BVBA How standards drive business . History of PDF . Umbrella of standards . Focus on: PDF/A, PDF/UA, PAdES, PDF 2.0, next-generation PDF © 2015, iText Group NV, iText Software Corp., iText Software BVBA Speaking the same language Not being able to understand each other is a punishment, NOT a business model! Standards are about speaking the same language! 3 How standards drive business © 2015, iText Group NV, iText Software Corp., iText Software BVBA History of PDF Version Date # pages Content Adobe PDF 1.0 June 1993 230 43 tables, 42 figures Adobe PDF 1.1 23 January 1996 302 20 references Adobe PDF 1.2 12 November 1996 394 137 tables, 86 examples Adobe PDF 1.3 July 2000 696 223 tables, 73 figures Adobe PDF 1.4 December 2001 978 277 tables, 20 color plates Adobe PDF 1.5 August 2003 1172 333 tables, 70 figures Adobe PDF 1.6 November 2004 1236 370 tables, 80 figures Adobe PDF 1.7 October 2006 1310 389 tables, 98 figures ISO 32000-1:2008 (PDF 1.7) 1 July 2008 756 (A4) 78 Normative References ISO 32000-2:2017 (PDF 2.0) 2017 970 (A4) 5836 “shall”, 411 “should” 4 How standards drive business © 2015, iText Group NV, iText Software Corp., iText Software BVBA PDF: an umbrella of standards PDF Portable Document Format First released by Adobe in 1993 ISO Standard since 2008 ISO 32000 PDF/X PDF/A PDF/E PDF/VT PDF/UA Related: graphic arts archive engineering printing accessibility • EcmaScript (ISO) • PRC (ISO) Since 2001 Since 2005 Since 2008 Since 2010 Since 2012 • PAdES (ETSI) ISO 15930 ISO 19005 ISO 24517 ISO 16612 ISO 14289 • ZUGFeRD (DIN) 5 How standards drive business © 2015, iText Group NV, iText Software Corp., iText Software BVBA PDF/A ISO 19005: long-term preservation © 2015, iText Group NV, iText Software Corp., iText Software BVBA Goals and concept ISO-19005, Long-term preservation of documents, Approved parts will never become invalid, Individual parts define new, useful features.
    [Show full text]
  • Introduction to XML
    Introduction to XML CS 317/387 Agenda – Introduction to XML 1. What is it? 2. What’s it good for? 3. How does it work? 4. The infrastructure of XML 5. Using XML on the Web 6. Implementation issues & costs 2 1. What is it? Discussion points: First principles: OHCO Example: A simple XML fragment Compare/contrast: SGML, HTML, XHTML A different XML for every community Terminology 3 1 Ordered hierarchies of content objects Premise: A text is the sum of its component parts A <Book> could be defined as containing: <FrontMatter>, <Chapter>s, <BackMatter> <FrontMatter> could contain: <BookTitle> <Author>s <PubInfo> A <Chapter> could contain: <ChapterTitle> <Paragraph>s A <Paragraph> could contain: <Sentence>s or <Table>s or <Figure>s … Components chosen should reflect anticipated use 4 Ordered hierarchies of content objects OHCO is a useful, albeit imperfect, model Exposes an object’s intellectual structure Supports reuse & abstraction of components Better than a bit-mapped page image Better than a model of text as a stream of characters plus formatting instructions Data management system for document-like objects Does not allow overlapping content objects Incomplete; requires infrastructure 5 Content objects in a book Book FrontMatter BookTitle Author(s) PubInfo Chapter(s) ChapterTitle Paragraph(s) BackMatter References Index 6 2 Content objects in a catalog card Card CallNumber MainEntry TitleStatement TitleProper StatementOfResponsibility Imprint SummaryNote AddedEntrySubject(s) Added EntryPersonalName(s) 7 Semistructured Data Another data model, based on trees. Motivation: flexible representation of data. Often, data comes from multiple sources with differences in notation, meaning, etc. Motivation: sharing of documents among systems and databases.
    [Show full text]
  • Multiple Electronic Signatures on Multiple Documents
    Multiple electronic signatures on multiple documents Antonio Lioy and Gianluca Ramunno Politecnico di Torino Dip. di Automatica e Informatica Torino (Italy) Abstract. European, international and Internet standards are available to support electronic signatures. The most common signature formats are defined via the ASN.1 syntax with DER encoding, or the XML language. Furthermore PDF is a widespread document format with support for e-signatures. Application of signa- tures to e-documents must consider several aspects: long term signature validity, non-repudiation, qualified certificates, and many others. This paper focuses on the relationships among multiple documents and multiple signatures and analyses the support provided by current formats to this problem. Where lack of standardiza- tion or standard profiling is found, a proposal is made towards better application of e-signatures. 1 Introduction It's a common belief that the field of electronic signatures (in short e-signatures) is an already established one. While this is true for the basic technical and legal foundations, we believe that many aspects have still to be investigated and properly defined. In partic- ular, the flexibility and richness of signature and documents in the paper world are still unmatched, and this can cause unexpected problems in real-life applications. In this pa- per we focus on the problems related to multiple signatures on the same document (as in the case of countersignatures), signature of document parts or of multiple documents. The complex relationships between multiple signatures and documents are explored, with reference to the major formats, to identify problems and suggest solutions that can improve the practical applicability of electronic signatures.
    [Show full text]
  • Digital Archive: Arrange, Assign & Sign!
    Digital Archive: Arrange, Assign & Sign! Patrícia Raquel Vieira Sousa Mestrado Integrado em Engenharia de Redes e Sistemas Informáticos Departamento de Ciência de Computadores 2016 Orientador Prof. Dr. Luís Filipe Coelho Antunes, Professor Auxiliar, FCUP Coorientador Eng. Pedro Vasconcelos Castro Lopes Faria, Consultor, HealthySystems Todas as correções determinadas pelo júri, e só essas, foram efetuadas. O Presidente do Júri, Porto, ______/______/_________ Patr´ıcia Raquel Vieira Sousa Digital archive: Arrange, Assign & Sign! Departamento de Ciˆencia de Computadores Faculdade de Ciˆencias da Universidade do Porto Junho de 2016 Patr´ıcia Raquel Vieira Sousa Digital archive: Arrange, Assign & Sign! Disserta¸c˜ao submetida `aFaculdade de Ciˆencias da Universidade do Porto como parte dos requisitos para a obten¸c˜ao do grau de Mestre em Engenharia de Redes em Sistemas Inform´aticos Orientador: Prof. Dr. Lu´ıs Filipe Coelho Antunes Co-orientador: Eng. Pedro Vasconcelos Castro Lopes Faria Departamento de Ciˆencia de Computadores Faculdade de Ciˆencias da Universidade do Porto Junho de 2016 To my parents and my love for all the support and patience... 3 Acknowledgments I want to thank my advisor Professor Lu´ıs Antunes for the support in all this time of work, for all suggestions that improved my thesis and for this opportunity. I also want to thank my co-advisor Pedro Faria for all dedication, support, patience and guidance that made all this work possible. Thanks for innovative ideas and the security knowledge transmitted during this thesis. I also want to thank Professor Manuel Eduardo Correia for the interest that has always shown for this thesis work and for all the support and ideas.
    [Show full text]
  • A Systematic Literature Review on Existing Digital Government Architectures: State-Of-The-Art, Challenges, and Prospects
    administrative sciences Article A Systematic Literature Review on Existing Digital Government Architectures: State-of-the-Art, Challenges, and Prospects Baseer Ahmad Baheer * , David Lamas and Sónia Sousa School of Digital Technologies, Tallinn University, Narva maantee 25, 10120 Tallinn, Estonia; [email protected] (D.L.); [email protected] (S.S.) * Correspondence: [email protected]; Tel.: +372-5375-4954 Received: 12 February 2020; Accepted: 16 April 2020; Published: 22 April 2020 Abstract: System architecture plays a crucial role in the establishment of Digital Government infrastructure. Over recent decades, various architectures have been introduced by scholars for the establishment of Digital Government infrastructure. However, there is no uniform agreement on Digital Government architecture concepts required for Digital Government infrastructure. To more thoroughly examine the Digital Government architecture introduced in this article, we collected 103 papers published between 2003 and 2020 retrieved from five leading literature databases. To conduct our research, we followed best practice scholarly accepted guidelines for researchers. Per the guidelines, we formulated research questions and employed an approach based on specific inclusion and exclusion criteria to meet our research goals. Our study found evidence that there is a lack of knowledge in terms of the state-of-the-art in Digital Government infrastructure and its challenges concerning existing Digital Government architectures. We identified a set of primary Digital Government architecture characteristics and building blocks on which the Digital Government infrastructures are built. These components are meant to improve the design of future Digital Government systems and applications. Furthermore, our research revealed a need for designing a reference architecture to provide government organizations with the best practice knowledge of already existing Digital Government architectures.
    [Show full text]
  • Assinatura De Documentos Com CC
    João Pedro Alves Fortunato João Pedro João Pedro Alves Fortunato ASSINATURA DE DOCUMENTOS EM TERMINAIS MÓVEIS Assinatura de documentos em terminais móveis recorrendo ao Cartão de Cidadão RECORRENDO AO CARTÃO DE CIDADÃO Relatório de Estágio Mestrado em Engenharia Informática orientada por: Prof. Dr. Fernando Barros e Eng. Avelino Martins apresentada ao Departamento de Engenharia Informática da Faculdade de Ciências e Tecnologia da Universidade de Coimbra Janeiro de 2018 Universidade de Coimbra de Universidade João Fortunato K.indd 1 23/01/2018 15:24:26 M > UNIVERSIDADE DE COIMBRA Assinatura de documentos em terminais móveis recorrendo ao Cartão de Cidadão João Pedro Alves Fortunato Assinatura de documentos em terminais móveis recorrendo ao cartão de cidadão i Assinatura de documentos em terminais móveis recorrendo ao cartão de cidadão ii Assinatura de documentos em terminais móveis recorrendo ao cartão de cidadão Resumo Com o avanço tecnológico das últimas décadas a escrita é cada vez mais realizada em documentos eletrónicos. Num mundo empresarial cada vez mais competitivo surge a necessidade de assinar documentos digitais de uma forma rápida para agilizar o processo de negócio. As assinaturas digitais foram criadas para garantir a autenticação, integridade e não- repúdio de documentos eletrónicos através de técnicas que ligam o assinante ao documento assinado, tais como o cálculo de um valor criptográfico obtido com o uso de informação privada que só o assinante possui. Este relatório documenta o trabalho realizado pelo aluno João Pedro Alves Fortunato, no âmbito de estágio em Engenharia Informática relativamente à especialidade de Engenharia de Software do mestrado em Engenharia Informática da Faculdade de Ciências e Tecnologia da Universidade de Coimbra.
    [Show full text]
  • A Guide on Eidas 910/2014 Namirial DTM Solution for Legally Compliant E-Signatures
    A guide on eIDAS 910/2014 Namirial DTM solution for legally compliant e-signatures NAMIRIAL GmbH Legal Office: Seilerstätte 16, 1010 Wien, Austria Main Office: Haider Straße 23, 4025 Ansfelden | Phone: +43-7229-88060 | www.xyzmo.com Fiscalnumber 09 258/9720 | VAT-ID: ATU70125036 Table of Contents 1 What is eIDAS? ............................................................................................................. 3 2 Electronic identification .................................................................................................. 3 3 Electronic signatures and seals ..................................................................................... 4 3.1 Advanced Electronic Signature ............................................................................... 4 3.2 Qualified Electronic Signature................................................................................. 5 4 Time stamping ............................................................................................................... 6 5 Electronic registered delivery service ............................................................................ 7 6 Qualified preservation service ....................................................................................... 7 7 Technologies to implement e-signatures ....................................................................... 7 7.1 PAdES Standard ..................................................................................................... 8 7.1.1 Basic Profile (based on ISO 32000-1)
    [Show full text]
  • XSL Formatting Objects XSL Formatting Objects
    XSL Formatting Objects XSL Formatting Objects http://en.wikipedia.org/wiki/XSL_Formatting_Objects This Book Is Generated By WikiType using RenderX DiType, XML to PDF XSL-FO Formatter Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation; with no Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A copy of the license is included in the section entitled "GNU Free Documentation License". 29 September 2008 XSL Formatting Objects Table of Contents 1. XSL Formatting Objects.........................................................4 XSL-FO basics. ...............4 XSL-FO language concepts. 6 XSL-FO document structure. 6 Capabilities of XSL-FO v1.0. 7 Multiple columns. ...........7 Lists.........................................................................8 Pagination controls. 8 Footnotes....................................................................8 Tables................................................ ........................8 Text orientation controls. 9 Miscellaneous...............................................................9 Capabilities of XSL-FO v1.1. 9 Multiple flows and flow mapping. 9 Bookmarks.................................................................10 Indexing....................................................................10 Last page citation. 10 Table markers. 10 Inside/outside floats. 10 Refined graphic sizing. 11 Advantages of XSL-FO. 11 Drawbacks
    [Show full text]