Miroslav Pavleski (SETCCE) WORKSHOP: THREE STEPS TOWARDS STANDARD DIGITAL SIGNATURES ON WINDOWS PLATFORM Miroslav Pavleski (SETCCE)
About Digital Signatures Digital Signature and document standards Introduction About Digital Signatures Digital Signature and document standards SETCCE digital signature tools – proXSign®
Introduction (continued) Demo desktop application Demo Web application client-side Demo Web application server-side
About Digital Signatures Electronic analog of real-world signatures and stamps Enabler for paperless business Establishes connection between signing party and document content
Traditional symmetric key cryptography
Asymmetric key cryptography Key-pair
CRYPTOGRAPHY Cryptographic hash
Public Key Infrastructure Confirmation of identity Certificate Authority Legal authority Private Key Digital certificate
Signing Process
Enables confirmation of existence of content prior given point in time Digital Time-Stamps Enables confirmation of existence of content prior given point in time RFC 3161 standard
XML Signature Syntax and Processing http://www.w3.org/TR/xmldsig-core/ Standards - XML XML Signature Syntax and Processing http://www.w3.org/TR/xmldsig-core/ XML Signatures provide integrity, message authentication, and/or signer authentication services for data of any type, whether located within the XML that includes the signature or elsewhere
XML DSIG Structure <Signature> <SignedInfo> <Reference> <DigestMethod /> <DigestValue></DigestValue> </Reference> </SignedInfo> <SignatureValue></SignatureValue> <KeyInfo></KeyInfo>
XML Detached Signature <DocumentElement> <Data></Data> <Signature /> </DocumentElement>
XML ENVELOPED Signature <DocumentElement> <Data> <SubData> <Signature /> </SubData> </Data> </DocumentElement>
XML ENVELOPING Signature <SignedInfo /> <SignatureValue /> <KeyInfo /> <Object> Embeded Object Data </Object>
XML Advanced Electronic Signatures (XADES) Basic electronic signature (XAdES-BES) Explicit policy electronic signatures (XAdES-EPES) Electronic signature with time (XAdES-T) Electronic signature with complete validation data references (XAdES-C)
PDF Digital signatures Part of the PDF standard ISO 32000-1:2008 Accompanying standard Electronic document file format for long term preservation ISO 19005-1:2005 (PDF / A)
PDF Digital Signatures explained Uses the incremental updates (document revision functionality of PDF)
Software components for digital signatures, time-stamps and encryption Setcce proxsign Software components for digital signatures, time-stamps and encryption proXSign XML proXSign PDF
Three steps to Digital Signature in your Application Download and install proXSign dev. package http://www.proxsign.com/download Install test certificate Write integration code & test
Digital Identity installation in Windows certificate store DEMO Digital Identity installation in Windows certificate store
Integrate digital signing in Desktop Application DEMO Integrate digital signing in Desktop Application
Integrate digital signing in client-side JavaScript DEMO Integrate digital signing in client-side JavaScript
Integrate digital signing in Server code DEMO Integrate digital signing in Server code
Po zaključku predavanja prosim izpolnite vprašalnik. VPRAŠANJA? Po zaključku predavanja prosim izpolnite vprašalnik. Vprašalniki bodo poslani na vaš e-naslov, dostopni pa bodo tudi preko profila na spletnem portalu konference. www.ntk.si. Z izpolnjevanjem le tega pripomorete k izboljšanju konference. Hvala!