[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: [Fwd: OASIS DSS Browser POST Profile]
Dear all, I copy below a message received from Frank Cornellis for consideration. Regards Juan Carlos. -------- Mensaje original -------- Asunto: OASIS DSS Browser POST Profile Fecha: Tue, 13 Oct 2009 16:09:24 +0200 De: Cornelis Frank <Frank.Cornelis@fedict.be> Para: stefan@drees.name <stefan@drees.name>, cruellas@ac.upc.edu <cruellas@ac.upc.edu>, kuehne@trustable.de <kuehne@trustable.de> CC: Hanssens Bart <Bart.Hanssens@fedict.be> Hi, At the recent EEMA conference in London I attended a meeting by Andreas Kuehne on OASIS DSS. Afterwards I briefly discussed the process for defining new DSS profiles with Andreas. As part of some eID Digital Signature Service proof-of-concept I already defined a lightweight eID DSS Browser POST profile for which the documentation is available at: http://eid-dss.googlecode.com/files/eid-dss-dev-guide.pdf A demo of the eID DSS service -requires a Belgian (test) eID card- is available at: https://www.e-contract.be/eid-dss-portal/ I would of course prefer to re-use the work that has already been done by OASIS in the area of digital signature service standards. However, there are two points in which my requirements differ from the already defined profiles by OASIS: * my eID DSS architecture has no central key repository. Each citizen has its own eID card carrying his/her non-repudiation key and corresponding certificate chain. * my eID DSS will only offer a SOAP based web service for the signature verification part. For signature creation I need a profile that offers web browser interaction (comparable with the SAML Browser POST Profile). Has there been some effort in this area in the past? Would there be some interest in such a DSS profile? Kind Regards, Frank.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]