Digital Signature Services (DSS) is an OASIS standard.
As part of a Technical Committee (TC), specialising in “signature services”, a “Core” specification was created by the international standardization organization OASIS in 2007. This standard defines the basic functionality for the creation (SignRequest /-Response) and validation (VerifyRequest /-Response) of CMS- and XMLDSig-compliant signatures. Due to the wide range of requirements from the various application areas of signatures and time-stamps, the core specification has been extended by a series of so-called “profiles”, e.g. for use with code signing, entity seals or processing XAdES- and CAdES-compliant artifacts. In the following years further profiles were developed, e.g. for detailed signature verification reports and for signature creation devices not located within the server instance.
Based on this previous work, the challenges of a new “API-Ecosystem” were addressed in the OASIS Digital Signature Services eXtended (DSS-X) TC with version 2.0 of the Core, which also separates the semantics of the interface from the concrete implementation using a specific syntax. In addition to the XML syntax adopted from version 1, JSON, which is often used in modern web applications, is now also supported. Additional syntaxes could be defined, if required. For example, an ASN.1 based syntax would be conceivable to enable a particularly compact format for mobile and embedded applications with the “Packed Encoding Rules” (PER). To ensure the highest possible visibility and acceptance of the standard, the DSS-X Technical Committee, in collaboration with the OASIS Infrastructure team, has started to provide the interface on the „SwaggerHub“ collaboration platform. For this purpose, the JSON schema is extended by a series of meta-information to comply with the OpenAPI specification.
The profiles, recently created by ETSI and currently at OASIS, enable the specific characteristics of the AdES signature formats in combination with local and remote eIDAS-compliant signature created devices via the DSS-X interface. The additional attributes of the signatures (e.g., the embedded certificate status information, time-stamps or evidence records) allow a wide applicability of this format. Since the initial standardisation, the associated interface extensions for the XAdES and CAdES formats are defined by the “AdES-Profile”. As part of version 2.0, the AdES-Profile is currently updated to support the latest developments related to the AdES formats. In particular, the PAdES format based on the PDF specification is also supported in accordance with ETSI EN 319 142-1. With this PAdES format multiple signatures in a workflow and the visual representation of an electronic signature in a PDF document can be realised.
For use within the eIDAS environment, the support of so-called “policies” by the DSS-X specification proves to be valuable. This allows the caller to submit a “policy” to the service, required for the desired action. The addressed server instance decides whether it can meet the required quality level or whether the request must be rejected. If the request is processed, the applied “policy” can be transferred to the caller within the response structure. This ensures that a consensus has been reached on the minimum quality level to be applied.
and 26 Related for: Digital Signature Services information
A digitalsignature is a mathematical scheme for verifying the authenticity of digital messages or documents. A valid digitalsignature on a message gives...
DigitalSignatureServices (DSS) is an OASIS standard. As part of a Technical Committee (TC), specialising in “signatureservices”, a “Core” specification...
In cryptography, the Elliptic Curve DigitalSignature Algorithm (ECDSA) offers a variant of the DigitalSignature Algorithm (DSA) which uses elliptic-curve...
Electronic signatures are a legal concept distinct from digitalsignatures, a cryptographic mechanism often used to implement electronic signatures. While...
signature allows users to electronically perform the actions for which they previously had to give a signature on paper. Estonia's digitalsignature system...
trusted services. Qualified website authentication certificate Turner, Dawn M. "What is a Qualified Digital Certificate for Electronic Signatures in eIDAS"...
periods of time. Qualified electronic signatures can be considered as a digital equivalent to handwritten signatures. The purpose of eIDAS was to create...
Signature Bank was an American full-service commercial bank headquartered in New York City and with 40 private client offices in the states of New York...
electronic signatures and digital certificates. eIDAS defines the standards for how trust service providers are to perform their services of authentication...
Security Services (MOSS) is a protocol that uses the multipart/signed and multipart/encrypted framework to apply digitalsignature and encryption services to...
and validation for digital certificates, including TLS/SSL certificates, email security via S/MIME certificates, digitalsignature certificates, code...
XML Signature (also called XMLDSig, XML-DSig, XML-Sig) defines an XML syntax for digitalsignatures and is defined in the W3C recommendation XML Signature...
the effect and validity of electronic signatures, including, but not limited to, cryptographic digitalsignatures, includes: Ley Nº 25.506 (B.O. 14/12/2001)...
liability Part V: Effect of DigitalSignature Part VI: Repositories and Date/Time Stamp Services Part VII: General DigitalSignature Act 1997 This article incorporates...
A mobile signature is a digitalsignature generated either on a mobile phone or on a SIM card on a mobile phone. The term first appeared in articles introducing...
activities DigitalSignatureServices, OASIS standard XML-based request/response protocols DigitalSignature Standard, which uses the DigitalSignature Algorithm...
technology. eIDAS has created standards for which electronic signatures, qualified digital certificates, electronic seals, timestamps, and other proof...
Keyless Signatures Infrastructure (KSI) is a globally distributed system for providing time-stamping and server-supported digitalsignatureservices. Global...
advanced electronic signatures or timestamp tokens into one single digital container. Under the eIDAS-regulation, an associated signature container (ASiC)...
Keyless Signatures Infrastructure (KSI) is a globally distributed system for providing time-stamping and server-supported digitalsignatureservices. Global...
information about the identity of its owner (called the subject), and the digitalsignature of an entity that has verified the certificate's contents (called...
enterprise level. Some of the services available are: Sign forms with an electronic signature or digitalsignature Request e-signatures Create branded forms Track...
in the merger into NetUpdate. DocuTouch held patents on Web-based digitalsignatures and collaboration. With internal support from Gonser, Lorenzini negotiated...
and trust services for electronic transactions in the European Single Market. eIDAS created standards for the use of electronic signatures so that they...
also been used by the World Service: 16 language services show video reports on the website, and the Arabic and Persian services have their own television...