Download - Multimedia Communication and Information Logistics for AFTER-SALES AND PRODUCT LIFE-CYCLE SUPPORT
Multimedia Communication and
Information Logisticsfor
AFTER-SALES AND PRODUCT LIFE-
CYCLE SUPPORT
Click to edit Master title style
www.remtec.fi
© Copyright Remtec Systems, Ltd., All rights reserved.
XML and Digital Signatures
A Key to Reliable
eBusiness
Jörgen Westerling
Remtec Systems Ltd.
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
CONTENTS
eBusiness scenariosWhy do we need signatures?Types of security servicesWhat is a digital signature?The XML Signature WGApplication integrationDigital signature issues
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
eBUSINESS SCENARIOS
Official communication with public institutions application forms, identity documents, tax
declarations, etc.
Contractual relations in open networks eBuying, eSelling, financial transactions, etc.
Identifying or authorising purposes validate the identity of a correspondent, etc.
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
WHY DO WE NEED SIGNATURES?
Signatures are authenticSignatures are unforgeableSignatures are not reusableSigned documents are unalterableSignatures can not be repudiated
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
TYPES OF SECURITY SERVICES
Authentication Identification Real-world equivalent: passport
Confidentiality Privacy Real-world equivalent: sealed envelope
Non-repudiaton Signatures Real-world equivalent: personal signature
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
WHAT IS A DIGITAL SIGNATURE?
A digital signature confirms the identity of a message sender confirms the authenticity of the message confirms the integrity of the message is verifiable cannot be retracted
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
HOW DIGITAL SIGNATURES WORK
MessageBuy 100 stock
A6HR40HT84K8
Message Digest
One-wayHash
Functionf(msg)
irw983jkaf9irw983jkaf9
Digital Signature
MessageBuy 100 stock
Encrypted Message
Sender’sPrivate Key
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
HOW DIGITAL SIGNATURES WORK
irw983jkaf9irw983jkaf9
Digital Signature
MessageBuy 100 stock
Encrypted Message
A6HR40HT84K8
Message Digest
One-wayHash
Functionf(msg)
A6HR40HT84K8
Message DigestSender’sPublic Key
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
XML AND DIGITAL SIGNATURES
More and more of eBusiness transactions in our networks are XML-based. There is a real need for leveraging digital signature technology in these transactions. XML offers a established framework for transmitting signed content and generic tools for the processing and verification of signatures.
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
THE XML SIGNATURE WG
XML Signature Requirements public WD August 20, 1999
The mission of the WG develop a XML syntax used for digital signatures develop procedures for computing and verifying
digital signatures
Signatures will provide data integrity, authentication
and/or non-repudiation
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
THE XML SIGNATURE WG
Signature requirements XML-signatures apply to any resource
addressable by a locator XML-signatures must be able to apply to a
part or totality of an XML document An XML document of a certain type must still
be recognizable as its original type when signed
Must permit the use of arbitrary encryption alogrithms
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
THE XML SIGNATURE WG
XML-Signature Scenarios document describes different uses of XML-based digital
signatures enveloped-, unenveloped content etc.
A proposal to the XML Signature WG Richard D. Brown, GlobeSet, Inc. base for future work
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
APPLICATION INTEGRATION
For example a browser plug-in to add digital signatures to XML messages
Application services to verify digital signatures XML provides the framework
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
APPLICATION INTEGRATION
XMLForm
XMLForm
Add ServerSignature
CommitTransaction
CommitTransaction
Data(XML)
Data(XML)
DecodingDecoding
SignMessage
SignMessage
Add ClientSignature
VerifyServer
Signature
Posted HTMLForm
XML Message(signed by server)
XML Message(signed by both
server and client)
ServerBrowser
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
DIGITAL SIGNATURE ISSUES
Time Stamping a signature having been found once to be valid,
shall continue to be so, for the same data, months or years later
Key Length & Encryption Technology a breakthrough in encryption technology may
“reveal” all signatures made with that technology
Legal issues globally and locally applied different rules in different parts of the world
04/19/23 © Copyright Remtec Systems, Ltd., All rights reserved.
PUBLIC KEY INFRASTRUCTURE
CertificationAuthority
User
Directory
Services