digital signing solution
play

digital signing solution over the web Fotis Loukos Charalampos - PowerPoint PPT Presentation

Jan 31, 2023 •108 likes •305 views

it.auth | A browser-based digital signing solution over the web Fotis Loukos Charalampos Tsipizidis Dimitris Daskopoulos Arist stotl tle Universi sity ty of Thess

  1. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ A browser-based digital signing solution over the web Fotis Loukos Charalampos Tsipizidis Dimitris Daskopoulos Arist stotl tle Universi sity ty of Thess ssalon oniki, , IT Center | Fotis Loukos Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  2. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Contents The problem Proposed solution • Architecture • Native Messaging Host • Native Messaging App (browser plugin) UX and Use cases Conclusion Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  3. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ The need Goal: Means: Requirements: • High assurance digital • Digital signatures on • Seamless digital signing identity in applications crypto devices (tokens) on the web • Non-repudiation of • Ease of use, rapid actions/documents installation, minimal maintenance Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  4. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Legacy solution Lack of standardized Creation of a Java applet the interface Java Applet that only method to between will sign access token browser and anything token Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  5. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ The problem with legacy solutions Drop of support for Java in the browser Increasing Java updates too perception of frequent and Java as hard for the end vulnerable user software The Java Applet Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  6. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Proposed solution Browser Javascript? based solution Not standard way to access token WebCrypto? Explicitly prevents access to hardware Browser extension with native components! Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  7. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Architecture USB Token Browser OS Native PKCS#11 Browser OS native Sign data Token extension messaging backend Library Computer Physical device Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  8. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Browser extension WebExtensions API • Currently runs on Google Chrome, Chromium and Opera • Will be supported at Firefox and Edge Responsible for launching OS native component • Acts as a Native Messaging Host • Launches the OS native component • It can supply it with either local files or data from the web server Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  9. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ OS native component Written in python • Portability (Windows, Linux, MacOSX)! • Uses the PyKCS11 library Responsible for signing • It receives a JSON formatted message from the web extension with the text to be signed • The component can either sign the text or its checksum (md5/sha1/sha2 supported) • It supports multiple encodings for input message and signature Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  10. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ OS native component Sample message • { “message”: “Hello world!”, “ srcenc ”: “plain”, “ dstenc ”: “base64”, “hash”: “sha256”, “ includecert ”: 1 } Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  11. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Workflow Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  12. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Installation experience Installer for native app backend • Also includes drivers for the AcademicID, an ID given to all Greek members of the academic community Plugin auto-installed on the browser when first visiting app page Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  13. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ User experience (1) - prepare Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  14. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ User experience (2) – unlock crypto device Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  15. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ User experience (3) - signed Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  16. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Where is it used? Already in production at AUTH • Signed course grading data in Student Information System (custom) • Future work for document signing in document management system (Alfresco) Interested? Contact us! Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  17. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Conclusion The benefits of a method to securely sign using a hardware token • The future on the web will certainly include digital signing. In a more standardized way. • But this is a working solution, today. • Sign actions (signed data stored on server) • Sign documents (signed docs submitted to services) Aristotle University of Thessaloniki, IT Center | Fotis Loukos

  18. it.auth | Κέντρο Ηλεκτρονικής Διακυβέρνησης ΑΠΘ Questions Aristotle University of Thessaloniki, IT Center | Fotis Loukos

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Digital signing Digital signing an upcomming service for all apache projects Target of project:

Digital signing Digital signing an upcomming service for all apache projects Target of project:

Digital signing Digital signing an upcomming service for all apache projects Target of project: Use symantec as provider Infra-root as Enterprise Service Provider PMC as Software Publishers Provide signing for microsoft jani

359 views • 8 slides
Improved multi-party contract signing Aybek Mukhamedov and Mark Ryan March 2, 2007 Digital

Improved multi-party contract signing Aybek Mukhamedov and Mark Ryan March 2, 2007 Digital

Improved multi-party contract signing Aybek Mukhamedov and Mark Ryan March 2, 2007 Digital Contract Signing Use digital signatures to sign a pre-agreed contract over a computer network Potentially useful for e-commerce Why it is not simple:

1.08k views • 27 slides
DIGITAL SIGNATURES 1 / 74 Signing by hand ALICE Pay Bob $100 COSMO ALICE

DIGITAL SIGNATURES 1 / 74 Signing by hand ALICE Pay Bob $100 COSMO ALICE

DIGITAL SIGNATURES 1 / 74 Signing by hand ALICE Pay Bob $100 COSMO ALICE Cosmo Alice Alice Bank =? no yes pay Bob Dont 2 / 74 Signing electronically SIGFILE scan Alice 101 1

654 views • 43 slides
Signing by hand ALICE Pay Bob $100 DIGITAL SIGNATURES COSMO ALICE Cosmo

Signing by hand ALICE Pay Bob $100 DIGITAL SIGNATURES COSMO ALICE Cosmo

Signing by hand ALICE Pay Bob $100 DIGITAL SIGNATURES COSMO ALICE Cosmo Alice Alice Bank =? no yes pay Bob Dont Mihir Bellare UCSD 1 Mihir Bellare UCSD 2 Signing electronically Signing electronically

629 views • 9 slides
Code Signing for the Web Creating Digital Signatures for Backdrop CMS and Silkscreen CMS Modules

Code Signing for the Web Creating Digital Signatures for Backdrop CMS and Silkscreen CMS Modules

Code Signing for the Web Creating Digital Signatures for Backdrop CMS and Silkscreen CMS Modules John Franklin Sentai Digital Silkscreen CMS Maintainer In the next 50 minutes... What are Backdrop & Silkscreen? Encryption, PKI, and

907 views • 28 slides
Analysis of optimistic multi-party contract signing Rohit Chadha 1,2 , Steve Kremer 3 , Andre

Analysis of optimistic multi-party contract signing Rohit Chadha 1,2 , Steve Kremer 3 , Andre

Analysis of optimistic multi-party contract signing Rohit Chadha 1,2 , Steve Kremer 3 , Andre Scedrov 1 1 University of Pennsylvania 2 University of Sussex 3 Universit Libre de Bruxelles Digital Contract signing Use dig ita l sig na ture s

623 views • 31 slides
Digital Services at the Telecommunication Development Bureau (BDT) The Situation Digital

Digital Services at the Telecommunication Development Bureau (BDT) The Situation Digital

Digital Services at the Telecommunication Development Bureau (BDT) The Situation Digital Health sector Transformation System Solution approach mindset Sector digitalisation and digital Solution/experimentation to narrow-

423 views • 25 slides
1 FLP Partial Intuition Implication for fair exchange Quote from paper: Need a trusted

1 FLP Partial Intuition Implication for fair exchange Quote from paper: Need a trusted

TECS Week 2005 Contract Signing Two parties want to sign a contract Contract-Signing Protocols Multi-party signing is more complicated The contract is known to both parties The protocols we will look at are not for contract

402 views • 7 slides
Signing Day 2020 Virtual Signing Day Program Introduction: Annie Dolan-Niles, Technical

Signing Day 2020 Virtual Signing Day Program Introduction: Annie Dolan-Niles, Technical

Signing Day 2020 Virtual Signing Day Program Introduction: Annie Dolan-Niles, Technical Studies Dir. Welcome: Bob Sanborn, Superintendent Student recognition: 6 students Remarks from teacher(s), employer(s), student, family

384 views • 27 slides
YOUR DIGITAL HEALTHCARE SOLUTION We aim to shape future of healthcare by inspiring and

YOUR DIGITAL HEALTHCARE SOLUTION We aim to shape future of healthcare by inspiring and

YOUR DIGITAL HEALTHCARE SOLUTION We aim to shape future of healthcare by inspiring and developing digital solutions that will improve the treatments and services for patients worldwide OUR HISTORY 2008 Founded by a group of ICT experts and

911 views • 23 slides
Decentralized Tech - The Next 5 Years Conrad Barski, M.D. CEO, Forward Blockchain Privacy

Decentralized Tech - The Next 5 Years Conrad Barski, M.D. CEO, Forward Blockchain Privacy

Decentralized Tech - The Next 5 Years Conrad Barski, M.D. CEO, Forward Blockchain Privacy "The digital signing mechanism in Bitcoin & Ethereum is the most secure one ever created" "The digital signing mechanism in Bitcoin

828 views • 35 slides
ViewSonic Digital Signage Training Daniel Woodward March 2007 Welcome! Agenda Market

ViewSonic Digital Signage Training Daniel Woodward March 2007 Welcome! Agenda Market

ViewSonic Digital Signage Training Daniel Woodward March 2007 Welcome! Agenda Market overview and potential Elements of a Digital Signage Solution Todays Solution ViewSonic Solution Zone and Format Screen Examples ViewSonic Products

506 views • 25 slides
FULL STACK DIGITAL MARKETING SOLUTION FROM #AACRO MODEL ITS OUR PROVEN DIGITAL MARKETING

FULL STACK DIGITAL MARKETING SOLUTION FROM #AACRO MODEL ITS OUR PROVEN DIGITAL MARKETING

FULL STACK DIGITAL MARKETING SOLUTION FROM #AACRO MODEL ITS OUR PROVEN DIGITAL MARKETING MODEL FOR PROMOTING YOUR BUSINESS DIGITAL MARKETING MIX ITS MIXING VARIOUS INTERNET BASED MARKETING ACTIVITIES BASED ON NATURE OF YOUR BUSINESS,

1.03k views • 23 slides
Digital Safety Point-of-Sale Activation Solution Winner of the 2017 Retail Industry Leaders

Digital Safety Point-of-Sale Activation Solution Winner of the 2017 Retail Industry Leaders

Digital Safety Point-of-Sale Activation Solution Winner of the 2017 Retail Industry Leaders Association RTECH Innovation Award WWW.DIGTAL-SAFETY.US *** DIGITAL SAFETY CONFIDENTIAL *** *** DIGITAL SAFETY CONFIDENTIAL *** Digital Safety The

890 views • 9 slides
The National Scouting Report has been a major help to me and Georgia Tech in so many

The National Scouting Report has been a major help to me and Georgia Tech in so many

NSR SIGNING ANNOUNCEMENT NSR SIGNING ANNOUNCEMENT INTRODUCTORY EMAIL TO COLLEGE COACHES NSR WILL SEND AN ANNOUNCEMENT NOTIFYING SELECTED COLLEGES THAT THE PROSPECT HAS QUALIFIED, BOTH ATHLETICALLY AND ACADEMICALLY, FOR THE NSR PROGRAM. THE

460 views • 28 slides
Digital Progressive Lenses The ideal solution for Presbyopia The ideal solution for Presbyopia

Digital Progressive Lenses The ideal solution for Presbyopia The ideal solution for Presbyopia

Digital Progressive Lenses The ideal solution for Presbyopia The ideal solution for Presbyopia Progressive Lenses Parameters Width of far zone Width of progressive zone Corridor Length Maximum distortion Width of reading zone Eye path Far

686 views • 55 slides
S-100 Maintenance Proposals Part 10c (HDF5) Part 8 (Gridded data) S100WG4 / S102PT 25 February

S-100 Maintenance Proposals Part 10c (HDF5) Part 8 (Gridded data) S100WG4 / S102PT 25 February

S-100 Maintenance Proposals Part 10c (HDF5) Part 8 (Gridded data) S100WG4 / S102PT 25 February 1 March 2019 Raphael Malyankar Eivind Mong Sponsored by NOAA Overview Proposal 1: Provisions for use of HDF5 File Families.

191 views • 8 slides
Investor Presentation Intact Financial Corporation (TSX: IFC) February 2018 Canadas largest

Investor Presentation Intact Financial Corporation (TSX: IFC) February 2018 Canadas largest

AUTO HOME BUSINESS Investor Presentation Intact Financial Corporation (TSX: IFC) February 2018 Canadas largest home, auto and business insurer Largest market share 10-year outperformance Distinct brands versus the industry in a

295 views • 27 slides
Certificated EvaluationProcedure Employee Development and Evaluation Procedures For The 2015-16

Certificated EvaluationProcedure Employee Development and Evaluation Procedures For The 2015-16

UACT and CVUSD Certificated EvaluationProcedure Employee Development and Evaluation Procedures For The 2015-16 School Year The purpose of an effective teacher /nurse development and evaluation system is to inform, instruct and improve

379 views • 33 slides
NYLO NEW YORK CITY Blending NYLOs signature urban, industrial design with the energy, color

NYLO NEW YORK CITY Blending NYLOs signature urban, industrial design with the energy, color

NYLO NEW YORK CITY Blending NYLOs signature urban, industrial design with the energy, color and fashions of New Yorks jazz era, NYLO New York City creates a comfortable, social and stylish hotel experience. Its located on the Upper

329 views • 19 slides
Mental Health and Suicide Awareness The Silent Epidemic Adapted from Westpark Springs Hospital

Mental Health and Suicide Awareness The Silent Epidemic Adapted from Westpark Springs Hospital

Mental Health and Suicide Awareness The Silent Epidemic Adapted from Westpark Springs Hospital and The Jason Foundation raise awareness about suicide. The goals of this recognize warning signs. presentation are to: understand how to

98 views • 8 slides
Committee Meeting April 16, 2018 Exploring Equity through Data AGENDA Health Equity

Committee Meeting April 16, 2018 Exploring Equity through Data AGENDA Health Equity

Destination 2027 Steering Committee Meeting April 16, 2018 Exploring Equity through Data AGENDA Health Equity Definition th 2018 April 16 th 2018 Local Public Health System - Key Findings Wrap-Up and Next Steps Exploring Equity

814 views • 55 slides
Grand Tennis Club General Meeting October 13 th , 2016 1 Start of Meeting Formalities 2

Grand Tennis Club General Meeting October 13 th , 2016 1 Start of Meeting Formalities 2

Grand Tennis Club General Meeting October 13 th , 2016 1 Start of Meeting Formalities 2 Establish quorum: Missing: Bob Richman, Diane Vick and Judy Beran Present: Skip Pavitt, Dave Cowles, Ron Wagner, Linda Campanelli, Gerry Smith 5

623 views • 27 slides
Construction Goals for this presentation What is Silica? Where is Silica on our jobsites?

Construction Goals for this presentation What is Silica? Where is Silica on our jobsites?

Specifically Construction Goals for this presentation What is Silica? Where is Silica on our jobsites? How is Silica a hazard? What does OSHA require from Contractors? What is Table 1? Alternate Methods of Compliance (AMC)?

582 views • 22 slides

More recommend