Skip to main content
SpringerLink
Log in

Moderne Vertrauensdienste für vertrauenswürdige Transaktionen

Ergebnisse des Forschungsprojektes “FutureTrust”

  • Schwerpunkt
  • Published:
Datenschutz und Datensicherheit - DuD Aims and scope Submit manuscript

Zusammenfassung

Die eIDAS-Verordnung eröffnet vielfältige Chancen für die vertrauenswürdige Abwicklung elektronischer Transaktionen. Durch gezielte Forschungsaktivitäten und die Entwicklung von Open Source Komponenten erleichtert das EU-Projekt “FutureTrust” die Entstehung und Nutzung moderner Vertrauensdienste.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Literatur

  1. (EU) 910/2014. Verordnung (EU) Nr. 910/2014 des Europäischen Parlaments und des Rates vom 23. Juli 2014 über elektronische Identifizierung und Vertrauensdienste im Binnenmarkt und zur Aufhebung der Richtlinie 1999/93/EG. https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32014R0910. 2014.

  2. Mladenov, V., Mainka, C., Meyer, K., zu Selhausen, Grothe, M., and Schwenk, J. How to break PDF Signatures. https://www.pdf-insecurity.org. 2019.

  3. ETSI EN 319 122-1. Electronic Signatures and Infrastructures (ESI); V1.1.1. http://www.etsi.org/deliver/etsi_en/319100_319199/31912201/01.01.01_60/en_31912201v010101p.pdf. 2016.

  4. ETSI EN 319 132-1. Electronic Signatures and Infrastructures (ESI); V1.1.1. https://www.etsi.org/deliver/etsi_en/319100_319199/31913201/01.01.01_60/en_31913201v010101p.pdf. 2016.

  5. ETSI EN 319 142-1. Electronic Signatures and Infrastructures (ESI); PAdES digital signatures; Part 1: Building blocks and PAdES baseline signatures, V1.1.1. http://www.etsi.org/deliver/etsi_en/319100_319199/31914201/01.01.01_60/en_31914201v010101p.pdf. 2016.

  6. RFC 7515. M. Jones, J. Bradley, N. Sakimura: JSON Web Signature (JWS). https://tools.ietf.org/html/rfc7515. 2015.

  7. BSI TR-03125. Bundesamt für Sicherheit in der Informationstechnik (BSI): Beweiswerterhaltung kryptographisch signierter Dokumente, BSI TR-03125, Version 1.2.1. https://tr-esor.de. 2018.

  8. Hühnlein, D., Korte, U., Kühne, A., and Röck, A. Neue APIs für das eIDAS-Ökosystem. im vorliegenden Heft. 2019.

  9. ETSI TS 119 511. Electronic Signatures and Infrastructures (ESI); Policy and security requirements for trust service providers providing long-term preservation of digital signatures or unsigned data using signature techniques. 2019.

  10. ETSI TS 119 512. Electronic Signatures and Infrastructures (ESI); Protocols for trust service providers providing long-term data preservation services. 2019.

  11. ecsec & LuxTrust. ChipGateway Protocol. https://www.oasis-open.org/committees/download.php/60049/ChipGateway-Specification-OASIS.pdf. 2017.

  12. Hühnlein, D., Hühnlein, T., Schuberth, S., Lottes, R., Crossley, N., and Otto, F. “How to harmonise local and remote signing,” in Open Identity Summit 2019, GI LNI. 2019.

  13. OASIS DSS LocSig. “DSS Extension for Local Signature Computation Version 1.0,” 27 July 2015. [Online]. Available: http://docs.oasis-open.org/dss-x/localsig/v1.0/cs01/localsig-v1.0-cs01.pdf.

  14. OASIS L/R. Local and Remote Signature Profile for OASIS Digital Signature Services Version 2.0. 2018.

  15. Bleckmann, F., Frank, G., Hoppe, M., and Schnattinger, T.Notifizierung von eID-Systemen gemäß eIDAS. im vorliegenden Heft.

  16. Roßnagel, H., Camenisch, J., Fritsch, L., Gross, T., Houdeau, D., Lehmann, A., and Shamah, J. (2012).“FutureID – Shaping the Future of Electronic Identity,” DuD, 36(3), pp. 189-194.

  17. Kubach, M., and Hühnlein, D. Vertrauenswürdige Identitäten für die Cloud: Arbeiten und Ergebnisse des SkIDentity-Projekts. Fraunhofer Verlag. 2014.

  18. 2016/679/EU. Verordnung (EU) 2016/679 des Europäischen Parlaments und des Rates vom 27. Apr. 2016 zum Schutz natürlicher Personen bei der Verarbeitung personenbezogener Daten, zum freien Datenverkehr und zur Aufhebung der Richtlinie 95/46/EG (Datenschutz-Grundverordnung). http://data.europa.eu/eli/reg/2016/679/oj. 2016.

  19. ETSI TS 119 612. Electronic Signatures and Infrastructures (ESI); Trusted Lists. http://www.etsi.org/deliver/etsi_ts/119600_119699/119612/02.02.01_60/ts_119612v020201p.pdf. 2016.

  20. Buterin, V. A Next-Generation Smart Contract and Decentralized Application Platform. 2017.

  21. Benet, J. IPFS – Content Addressed, Versioned, P2P File System (DRAFT 3). 2014.

  22. RFC 4998. Gondrom, T.; Brandner, R.; Pordesch, U. https://tools.ietf.org/html/rfc4998. 2007.

  23. ETSI EN 319 162-1. Electronic Signatures and Infrastructures (ESI); Associated Signature Containers (ASiC); Part 1: Building blocks and ASiC baseline containers. http://www.etsi.org/deliver/etsi_en/319100_319199/31916201/01.00.00_20/en_31916201v010000a.pdf. 2015.

  24. Otto, F., Wich, T., Hühnlein, T., Prechtl, M., and Hühnlein, D. “Towards a standardised preservation service for qualified electronic signatures and qualified electronic seals,” in Open Identity Summit 2019, GI-LNI. 2019.

  25. ETSI TR 102 038. TC Security – Electronic Signatures and Infrastructures (ESI); XML format for signature policies. 2002.

  26. ETSI TS 102 853. Electronic Signatures and Infrastructures (ESI); Signaturue verification procedures and policies. http://www.etsi.org/deliver/etsi_ts/102800_102899/102853/01.01.01_60/ts_102853v010101p.pdf. 2012.

  27. ETSI EN 319 102-1. Electronic Signatures and Infrastructures (ESI); Procedures for Creation and Validation of AdES Digital Signatures; Part 1: Creation and Validation, Version 1.1.1. http://www.etsi.org/deliver/etsi_en/319100_319199/31910201/01.01.01_60/en_31910201v010101p.pdf. 2016.

  28. ETSI TS 199 172-1. Electronic Signatures and Infrastructures (ESI); Signature Policies; Part 1: Building blocks and table of contents for human readable signature policy documents. http://www.etsi.org/deliver/etsi_ts/119100_119199/11917201/01.01.01_60/ts_11917201v010101p.pdf. 2015.

  29. ETSI TS 119 102-2. Electronic Signatures and Infrastructures (ESI); V1.1.1. https://www.etsi.org/deliver/etsi_ts/119100_119199/11910202/01.01.01_60/ts_11910202v010101p.pdf. 2018.

  30. ETSI TS 119 432. Electronic Signatures and Infrastructures (ESI); Protocols for remote digital signature creation. 2019.

  31. SAML 2.0. “OASIS Standard,” 15 March 2005. [Online]. Available: http://docs.oasis-open.org/security/saml/v2.0/saml-metadata-2.0-os.pdf.

  32. eIDAS Spec. eIDAS Technical Subgroup. https://joinup.ec.europa.eu/software/cefeid/document/eidas-technical-specifications-v10. 2015.

  33. RFC 6749. D. Hardt (Ed.): The OAuth 2.0 Authorization Framework. https://tools.ietf.org/html/rfc6749. 2012.

  34. OpenID Connect. OpenID Foundation. http://openid.net/connect/. 2015.

  35. FIDO. “FIDO Alliance,” 2015. [Online]. Available: https://fidoalliance.org/.

  36. GSMA-CPAS5. CPAS 5 OpenID Connect – Mobile Connect Profile – Version 1.1. https://github.com/GSMA-OneAPI/Mobile-Connect/tree/master/specifications. 2015.

  37. Hühnlein, T. “Method and device for authentification”. EU Patent EP2439900B1, 30 12 2015.

  38. EPC 208-08. European Payments Council: EPC e-Mandates e-Operating Model – Detailed Specification, Version 1.2: http://www.europeanpaymentscouncil.eu/index.cfm/knowledge-bank/epc-documents/epc-e-mandates-e-operating-model-detailed-specification/epc208-08-e-operating-model-detailed-specification-v12-approvedpdf/. 2013.

  39. Zwattendorfer, B., and Zefferer, T. T. A.“The Prevalence of SAML within the European Union,” in 8th International Conference on Web Information Systems and Technologies (WEBIST). http://www.webist.org/?y=2012. 2012.

  40. OASIS DSS v1.0. “Profile for Comprehensive Multi-Signature Verification Reports Version 1.0,” 12 November 2010. [Online]. Available: http://docs.oasis-open.org/dss-x/profiles/verificationreport/oasis-dssx-1.0-profiles-vr-cs01.pdf.

  41. eIDAS – TSP-Map, 2019. [Online]. Available: https://www.eid.as/tsp-map/#/.

  42. EU Trusted List. “European Commision,” 2019. [Online]. Available: https://ec.europa.eu/digital-agenda/en/eu-trusted-lists-certification-service-providers.

  43. European Commission. “Trusted List Browser,” 2019. [Online]. Available: https://webgate.ec.europa.eu/tl-browser/#/.

  44. Hühnlein, D. Besichtigung des „eIDAS-Ökosystems“. https://blog.skidentity.de/eidas-oekosystem/. 2017.

  45. Bender, J., Metzler, B., and Räth, N. Neues vom Online-Ausweis – Europäisch, mobil, vor Ort – und mit Nachwuchs. im vorliegenden Heft.

  46. Houdeau, D., Hühnlein, T., and Wolfenstetter, K.-D. Digitale als Fundament der vertrauenswürdigen Transformation. im vorliegenden Heft.

  47. Wich, T. Open Source für den mobilen Identitätsnachweis und die Signatur. im vorliegenden Heft.

  48. FranceConnect. https://franceconnect.gouv.fr/. 2019.

  49. ecsec GmbH. SkIDentity ermöglicht go.eIDAS in nur zwei Minuten. https://skidentity.de/ermoeglicht-go.eIDAS-in-nur-2-Minuten. 2018.

Download references

Author information

Authors and Affiliations

  1. Bochum, Deutschland

    Jörg Schwenk &  Tobias Wich

  2. Michelau, Deutschland

    Detlef Hühnlein

Authors
  1. Jörg Schwenk
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Tobias Wich
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Detlef Hühnlein
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Jörg Schwenk.

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Schwenk, J., Wich, T. & Hühnlein, D. Moderne Vertrauensdienste für vertrauenswürdige Transaktionen . Datenschutz Datensich 43, 214–219 (2019). https://doi.org/10.1007/s11623-019-1095-5

Download citation

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s11623-019-1095-5

Search

Navigation