MINIMAL-FOOTPRINT MIDDLEWARE FOR THE CREATION OF QUALIFIED SIGNATURES

Martin Centner, Clemens Orthacker, Wolfgang Bauer

Abstract

Qualified electronic signatures are recognized as being equivalent to handwritten signatures and are supported by EU legislation. They require a secure signature creation device (SSCD) such as a smart card. Unfortunately, there are neither standard means for the integration of SSCDs withWeb applications, nor are the exiting means widely deployed. Web application providers are still faced with a lack of deployment of such means and a lack of integration with standard software. This paper will present a novel approach to address these issues by a middleware that does not require users to install dedicated software for the creation of qualified electronic signatures. The middleware is deployed as a web application and splits the signature creation process into two parts: One part is performed on the server side and the other part (requiring access to functions of the secure signature creation device) is deployed and executed as a lightweight component in the user’s browser on demand.

References

  1. BSI TR-03112 (2008). BSI - Technische Richtlinie: eCardAPI-Framework (BSI TR-03112). Bundesamt fr Sicherheit in der Informationstechnik.
  2. Hollosi, A. and Karlinger, G. (2004). The Austrian Citizen Card. AG Bürgerkarte. http://www.buergerkarte.at/konzept/securitylayer/ spezifikation/20040514/introduction/Introduction. en.html.
  3. IDABC 6485 (2007). Preliminary Study on Mutual Recognition of eSignatures for eGovernment applications, Report. European Commission / European eGovernement services (IDABC).
  4. Leitold, H., Hollosi, A., and Posch, R. (2002). Security architecture of the austrian citizen card concept. In Computer Security Applications Conference, 2002. Proceedings. 18th Annual, pages 391-400.
  5. Rössler, T. (2008). Giving an interoperable e-ID solution: Using foreign e-IDs in Austrian e-Government. Computer Law & Security Report, 24(5):447 - 453.
  6. Rössler, T. and Leitold, H. (2005). Identifikationsmodell der österreichischen Bürgerkarte. In Proceedings of the D-A-CH Security Conference 2005, University of Technology Darmstadt, Germany.
  7. Roßnagel, H. (2006). On diffusion and confusion - why electronic signatures have failed. Lecture Notes in Computer Science - Trust and Privacy in Digital Business, pages 71-80.
  8. Roßnagel, H. (2009). Mobile qualifizierte elektronische Signaturen. Datenschutz und Datensicherheit.
Download


Paper Citation


in Harvard Style

Centner M., Orthacker C. and Bauer W. (2010). MINIMAL-FOOTPRINT MIDDLEWARE FOR THE CREATION OF QUALIFIED SIGNATURES . In Proceedings of the 6th International Conference on Web Information Systems and Technology - Volume 1: WEBIST, ISBN 978-989-674-025-2, pages 64-69. DOI: 10.5220/0002808300640069


in Bibtex Style

@conference{webist10,
author={Martin Centner and Clemens Orthacker and Wolfgang Bauer},
title={MINIMAL-FOOTPRINT MIDDLEWARE FOR THE CREATION OF QUALIFIED SIGNATURES},
booktitle={Proceedings of the 6th International Conference on Web Information Systems and Technology - Volume 1: WEBIST,},
year={2010},
pages={64-69},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002808300640069},
isbn={978-989-674-025-2},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 6th International Conference on Web Information Systems and Technology - Volume 1: WEBIST,
TI - MINIMAL-FOOTPRINT MIDDLEWARE FOR THE CREATION OF QUALIFIED SIGNATURES
SN - 978-989-674-025-2
AU - Centner M.
AU - Orthacker C.
AU - Bauer W.
PY - 2010
SP - 64
EP - 69
DO - 10.5220/0002808300640069