Scribd Logo
Upload

Welcome to Scribd!

  • Network of ESignature Validation Services - Alain Esterle

    Uploaded by

    radoniaina
    3 views7 pages
    Guide

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Guide

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    3 views7 pages

    Network of ESignature Validation Services - Alain Esterle

    Uploaded by

    radoniaina
    Guide

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 7

    Network of eSignature

    Validation Services
    7th PEPPOL Conference
    Making Procurement Better
    Rome, 29-30 May 2012
    ADETEF - Esteral Consulting

    eSignature Validation
    Scheme

    1.) PEPPOL XKMS Resquester: end-users


    2.) PEPPOL XKMS Responder: Validation Services (VS)
    3.) PEPPOL Public Registry Service (PPRS): VS addresses (TSLs)
    ADETEF - Esteral Consulting

    Networked eSignature Validation Services


    Germany
    Bremen On Line
    (BOS)

    Estonia
    Unizeto

    France
    Lex Persona

    Page 3

    ADETEF - Esteral Consulting

    PEPPOL Validation Parameters

    Output of XKMS

    Certificate Policy none


    TS 102-042
    TS 101 456

    Exists

    LCP

    NCP

    Independent
    Assurance

    self

    Ext.
    Doc.

    Int.
    audit

    Super Ext.
    Ext.
    Super Accre.
    audits certif. + Ext. + Ext.
    audits audits

    Public Key
    (length + algo.)

    Too
    weak

    3 y.

    5-10
    years

    Increasing levels of
    security

    Hash function
    TS 102-176-1

    Too
    weak

    3 y.

    5-10
    years

    Increasing levels of
    security

    ADETEF - Esteral Consulting

    NCP+

    QCP

    QCP+

    Pilots for eSignature Validation

    ADETEF - Esteral Consulting

    Mapping with the French RGS regulation


    RGS = Reference security Framawork:
    three levels of certificates, signature, etc.
    specific and detailed requirements
    Mapping table between RGS requirements and PEPPOL parameters
    PEPPOL
    parameters

    RGS *

    RGS **

    RGS ***

    Qualified
    Certificate
    Independent
    Assurance

    2 (LCP)

    4 (NCP+)

    6 (QCP+)

    Hash function
    Key length

    1 (SHA-1)
    2 (SHA-256)

    1 (SHA-1)
    2 (SHA-256)

    2
    ADETEF - Esteral Consulting

    1 (SHA-1)
    2 (SHA-256)
    2
    6

    Next steps
    Revision of the French Public Procurement
    Regulation:
    RGS & European national TSLs

    Revision of Directive 1999/93


    Regulation
    Supervision instead of accreditation
    Signature verification at same level as creation
    OCSP mandatory

    Move from PEPPOL to BCSS


    ADETEF - Esteral Consulting

    You might also like