The digital signature of documents and degrees is a topic widely discussed in the Federal Public Administration. Several laws and ordinances were created to standardize the issuance, validation and legal validity of digitally signed documents in national territory, such as the ordinances created by the Ministry of Education (MEC) to regulate the issuance of degrees in digital format. These ordinances created guidelines and standards that must be adopted by Federal Universities for the signing of in digital format. The main objective of this work is to study these ordinances, the main technologies and digital signature standards used in the literature to create a digital signature system model for University of Brasília-UnB, which complies with the MEC and ICP-Brazil standards. Moreover, the model must be developed with the main standards and technologies in the market, cohesive to the current UnB architecture, easy to maintain and update to new standards that may emerge, and also be a fully open source project. An architectural model and a prototype in Java language were developed using XAdES4j library as a microservice intermediated by the bus used in UnB. The prototype developed was compared with the current digital signature system named C3Web. The comparative tests and results between the two solutions showed that the current system used in UnB does not perform the signature in accordance with the standard proposed by the MEC, in addition to being a private system using proprietary technologies for the execution of digital signatures. The tests performed with the proposed model demonstrated that it performs the digital signature in accordance with the XAdES-T standard, regulations of the MEC and ICP-Brazil. In addition, the solution presented a performance comparable to the current system used by UnB with a little more effective security than the current system used. The current model developed in this work can be a basis for the creation of future subscription systems for Brazilian Universities.
[1]
Rostand Costa,et al.
Uso Não Financeiro de Blockchain: Um Estudo de Caso Sobre o Registro, Autenticação e Preservação de Documentos Digitais Acadêmicos
,
2018
.
[2]
Titin Winarti,et al.
Web-based document certification system with advanced encryption standard digital signature
,
2021
.
[3]
J. Hillman.
Book review
,
1994,
Eye.
[4]
Qurotul Aini,et al.
Application of Blockchain Technology for iLearning Student Assessment
,
2020
.
[5]
Jean Everson Martina,et al.
Blockchain and smart contracts for higher education registry in Brazil
,
2019,
Int. J. Netw. Manag..
[6]
Wei Chen,et al.
Digital signature scheme for information non-repudiation in blockchain: a state of the art review
,
2020,
EURASIP Journal on Wireless Communications and Networking.
[7]
Rui Zhang,et al.
Security and Privacy on Blockchain
,
2019,
ACM Comput. Surv..
[8]
Xiao Liang,et al.
Student Performance Protection Based On Blockchain Technology
,
2021
.
[9]
Vijay Atluri.
Proceedings of the 2004 workshop on Secure web service
,
2004
.
[10]
Juan-Carlos Cruellas Ibarz.
Bringing JSON signatures to ETSI AdES framework: Meet JAdES signatures
,
2020,
Comput. Stand. Interfaces.
[11]
Maxim A. Medvedev,et al.
Application of blockchain technologies and game approach in the educational process of universities
,
2021
.
[12]
Nan Meng,et al.
University Education Resource Sharing Based on Blockchain and IPFS
,
2020,
Advances in Intelligent Systems and Computing.
[13]
David Cooper,et al.
Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile
,
2008,
RFC.