Skip to main content
SpringerLink
Log in

Digital Signatures without the Headaches

  • Chapter
ISSE 2006 — Securing Electronic Busines Processes

  • 509 Accesses

Abstract

Deploying support for digital signatures can be a major headache for any organisation. In many cases signatures are created on behalf of an organisation but may be applied by a constantly changing authorised group of personnel. The need to manage the allocation and certification of the multitude of user keys can be particularly burdensome and difficult to secure. This paper presents an alternative approach to the digital signing, which significantly reduces these headaches, being supported by a number of companies and standardised by OASIS. The OASIS “Digital Signature Services” (DSS) standard specifies the use of a specialised server for the creation and verification of signatures under control of remote clients. Instead of keys having to be held and managed individually, OASIS DSS enables keys and other aspects of the signing service to be managed centrally on a networked server. The OASIS DSS protocol supports a range of signature formats including XML and CMS. It is designed around a basic “Core” set of elements and procedures which can be profiled to support specific uses such as time-stamping (including XML structured timestamps), corporate entity seals, electronic post marks and code signing.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. OASIS Digital Signature Services Technical Committee http://www.oasis-open.orglconmiittees/tc_home.php?wg_abbrev=dss

  2. CMS Advanced Electronic Signatures (CAdES) http://www.etsi.org/services_products/freestandardlhome.htm

  3. XML Advanced Electronic Signatures (XAdES) http://www.etsi.org/services_products/freestandardlhome.htm

  4. Universal Postal Union-Electronic Post Mark http://www.upu.intlnews_centre/documents/enlbrochure_the_electronic_ post_mark_en.pdf

Download references

Author information

Authors and Affiliations

  1. Security & Standards Associates, Grays, Essex, UK

    Nick Pope

  2. Universitat Politècnica de Catalunya, Barcelona, Spain

    Juan Carlos Cruellas

Authors
  1. Nick Pope
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Juan Carlos Cruellas
    View author publications

    You can also search for this author in PubMed Google Scholar

Rights and permissions

Reprints and permissions

Copyright information

© 2006 Friedr. Vieweg & Sohn Verlag | GWV-Fachverlage GmbH, Wiesbaden

About this chapter

Cite this chapter

Pope, N., Cruellas, J.C. (2006). Digital Signatures without the Headaches. In: ISSE 2006 — Securing Electronic Busines Processes. Vieweg. https://doi.org/10.1007/978-3-8348-9195-2_13

Download citation

  • DOI: https://doi.org/10.1007/978-3-8348-9195-2_13

  • Publisher Name: Vieweg

  • Print ISBN: 978-3-8348-0213-2

  • Online ISBN: 978-3-8348-9195-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation