论文信息 - Enhancing the Modularity and Applicability of Web-Based Signature-Verification Tools

Enhancing the Modularity and Applicability of Web-Based Signature-Verification Tools

Electronic signature are an important concept and crucial tool for security-critical applications. Employing the full potential of electronic signatures requires the availability of appropriate signature-verification tools. Today, a plethora of different signature-verification tools exist that allow users to verify electronically signed files and documents. Unfortunately, most of these tools have been designed for a special use case and lack support for various fields of application. This renders the development of applications based on electronic signatures difficult and reduces usability for end users. To overcome this issue, we propose an improved architecture for signature-verification tools. This architecture ensures flexibility and an easy extensibility by following a plug-in-based approach. The applicability and practicability of the proposed architecture has been assessed by means of a concrete implementation. This implementation demonstrates the proposed architecture’s capability to meet requirements of various different application scenarios and use cases. This way, the proposed architecture and the developed implementation that relies on this architecture contribute to the security, usability, and efficiency of present and future electronic signature-based applications.

[1] Reinhard Posch,et al. Media-Break Resistant eSignatures in eGovernment: An Austrian Experience , 2009, SEC.

[2] Klaus Stranacher,et al. Interoperable Electronic Documents , 2012 .

[3] Russ Housley,et al. Cryptographic Message Syntax (CMS) , 2002, RFC.

[4] C. M. Sperberg-McQueen,et al. Extensible Markup Language (XML) , 1997, World Wide Web J..

[5] Reinhard Posch,et al. Reconstruction of electronic signatures from eDocument printouts , 2010, Comput. Secur..

[6] Thomas Zefferer,et al. Towards Mobile Government: Verification of Electronic Signatures on Smartphones , 2013, EGOVIS/EDEM.

[7] Sean Turner,et al. Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 4.0 Message Specification , 2019, RFC.

[8] Reinhard Posch,et al. Security architecture of the Austrian citizen card concept , 2002, 18th Annual Computer Security Applications Conference, 2002. Proceedings..

[9] Roy T. Fielding,et al. Hypertext Transfer Protocol - HTTP/1.1 , 1997, RFC.