Abstract
The PEPPOL (Pan-European Public Procurement On-Line) project started May 2008 and lasted until end of August 2012. The aim of the project was to enable cross-border public procurement in the EU internal market. In most Member States, electronic tendering for public procurement requires use of qualified or advanced eSignature, meaning that cross-border e-tendering is only possible if eSignatures work cross-border. PEPPOL specified and implemented a validation service based solution for cross-border e-signatures. The focus is on the needs of the receiver of eSignatures (the relying party) as the actor that faces the major complexity. This paper sums up experience from PEPPOL’s work.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
Literatur
Apitzsch, J.: European Federated Validation Service Study: Solution Profile – VPS/Governikus Signing/Verification Modules. IDABC, August 2009.
Action-Plan on e-Signatures and e-Identification to Facilitate the Provision of Cross-Border Public Services in the Single Market. Communication from the Commission to the Council, the European Parliament, the European Economic and Social Committee and the Committee of the Regions, November 2008.
Commission Decision of 16 October 2009 setting out measures facilitating the use of procedures by electronic means through the ‘points of single contact’ under Directive 2006/123/EC of the European Parliament and of the Council on services in the internal market. Commission Decision 2009/767/EC, 2009.
A Digital Agenda for Europe. Communication from the Commission to the Council, the European Parliament, the European Economic and Social Committee and the Committee of the Regions, May 2010.
European Commission: Standardisation Mandate to the European Standardisation Organisations CEN, CENELEC and ETSI in the Field of Information and Communication Technologies Applied to Electronic Signatures. December 2009.
European Commission: Proposal for a Regulation of the European Parliament and of the Council on Electronic Identification and Trust Services for Electronic Transactions in the Internal Market. COM(2012) 238/2, June 2012.
CROBIES – Study on Cross-Border Interoperability of eSignatures. July 2010.
Digital Signature Service: http://joinup.ec.europa.eu/software/sd-dss/home
Data Validation and Certification Server Protocols. RFC3029, 2001.
Community Framework for Electronic Signatures. Directive 1999/93/EC of the European Parliament and of the Council, 1999.
Coordination of Procedures for the Award of Public Works Contracts, Public Supply Contracts and Public Service Contracts. Directive 2004/18/EC of the European Parliament and of the Council, 2004.
Coordinating the Procurement Procedures of Entities Operating in the Water, Energy, Transport and Postal Services Sectors. Directive 2004/17/EC of the European Parliament and of the Council, 2004.
On Services in the Internal Market. Directive 2006/123/EC of the European Parliament and of the Council, 2006.
ETSI: Electronic Signatures and Infrastructures (ESI); Policy Requirements for Certification Authorities issuing Qualified Certificates. ETSI TS 101 456 v1.4.3, 2007.
ETSI: Electronic Signatures and Infrastructures (ESI); Policy Requirements for Certification Authorities issuing Public Key Certificates. ETSI TS 102 042 v2.1.2, 2010.
IDABC: Study on Mutual Recognition of eSignatures: Update of Country Profiles – Analysis & Assessment Report. IDABC, October 2009 (PEPPOL used the 2008 issue as starting point).
Mondorf, A., Schmidt, D.M. and Wimmer, M.: Ensuring Sustainable Operation in Complex Environment: the PEPPOL Project and its VCD System. Proceedings of the Mediterranean Conference on Information Systems (MCIS), Tel-Aviv, September 2010.
OASIS: Digital Signature Service Core Protocols and Elements. 2007.
Demonstrator and Functional Specifications for Cross-Border Use of eSignatures in Public Procurement. PEPPOL Deliverable D1.3, August 2011.
Sealed, DLA Piper, Across: Study on the standardisation aspects of eSignature, Study for European Commission (DG Information Society and Media), November 2007.
Server-Based Certificate Validation Protocol. RFC5055, 2007.
W3C: XML Key Management Specification (XKMS 2.0). 2005.
Ølnes, J., Andresen, A., Buene, L., Cerrato, O. and Grindheim, H.: Making Digital Signatures Work across National Borders. Proceedings of the ISSE/SECURE 2007 Conference, Warsaw, September 2007.
Ølnes, J. et al: Electronic Signatures for Public Procurement across Europe. Proceedings of the ISSE 2008 Conference, Madrid, October 2008.
Ølnes, J., Buene, L., Andresen, A., Grindheim, H., Apitzsch, J. and Rossi, A.; A General Quality Classification System for eIDs and e-Signatures. Proceedings of the ISSE 2009 Conference, The Hague, October 2009.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 Springer Fachmedien Wiesbaden
About this chapter
Cite this chapter
Ølnes, J. (2012). PEPPOL – Experience from Four Years Work on eSignature Interoperability. In: Reimer, H., Pohlmann, N., Schneider, W. (eds) ISSE 2012 Securing Electronic Business Processes. Springer Vieweg, Wiesbaden. https://doi.org/10.1007/978-3-658-00333-3_27
Download citation
DOI: https://doi.org/10.1007/978-3-658-00333-3_27
Published:
Publisher Name: Springer Vieweg, Wiesbaden
Print ISBN: 978-3-658-00332-6
Online ISBN: 978-3-658-00333-3
eBook Packages: Computer ScienceComputer Science (R0)