Digital Signature Web Service using Smart Cards

H.K. Lu and K. Sachdeva (USA)


Digital Signature Service, Smart Cards, Web Security.


The Digital Signature Service (DSS) standard enables relying parties to delegate the signing process to a single entity, the signature service provider, which securely accesses and uses the private keys to sign. However, this model does not satisfy the stronger security and privacy requirements of users who manage their own private keys nor of users who are required to sign documents using smart cards or e-IDs issued by their organizations and governments. In this paper, we propose a method to solve this problem. The method allows relying parties to leverage the advantages of the DSS standard and utilize security devices such as smart cards for the signature operation. This approach is user centric, and provides better security and privacy.

Important Links:

Go Back