Logo des Repositoriums

Auflistung nach Autor:in "Otto, Florian"

1 - 3 von 3
  • Textdokument
    How to harmonise local and remote signing
    (Open Identity Summit 2019, 2019) Hühnlein, Detlef; Wich, Tobias; Hühnlein, Tina; Schuberth, Sebastian; Lottes, René; Crossley, Neil; Otto, Florian
    While the generation of qualified electronic signatures traditionally required the use of local qualified electronic signature creation devices (QSCD) in form of smart cards for example, the eIDAS-Regulation [EU14] introduced the promising option for Hardware Security Module (HSM) based QSCDs and remote signature protocols, which are especially suitable for mobile environments. As the technical interfaces of these two approaches are fundamentally different, one until today needs to choose a solution, which either supports local or remote signing but not both. In this paper we show how to harmonise the two seemingly distinct worlds in order to enable adaptive signing solutions which seamlessly allow to use both local and remote QSCDs and provide the best possible user experience for the generation of qualified electronic signatures.
  • Konferenzbeitrag
    Qualified Electronic Signatures with the EU Digital Identity Wallet
    (Open Identity Summit 2024, 2024) Wich, Tobias; Hühnlein, Detlef; Otto, Florian; Prechtl, Mike
    Art. 5a of the amended eIDAS-Regulation (EU) 2024/1183 establishes the European Digital Identity Framework and introduces the European Digitial Identity Wallet (EUDIW), which will meet the requirements of assurance level “high” for identity proofing and authentication (see Art. 5a Nr. 11) and is envisioned to be able to create Qualified Electronic Signatures (QES) free of charge for non-professional purposes (see Art. 5a Nr. 4 (e) and Nr. 5 (g)). As it will not be feasible in practice to certify the secure elements of all smartphones in the market as Qualified Signature Creation Device (QSCD), one needs to look at remote signature solutions along the lines of ETSI TS 119 432 and the specification developed within the Cloud Signature Consortium (CSC) . The Architecture and Reference Framework (ARF) makes it clear that the EUDIW will support Verifiable Credentials (VCs) for the purpose of strong identification and authentication and the only missing step to enable QES in the EUDIW seems to be the integration of Verifiable Credentials and Verifiable Presentations according to W3C with the remote signature protocol of the CSC-API. The present paper shows how to integrate the two worlds to enable QES in the EUDIW using emerging standards, such as Selective Disclosure JSON Web Tokens (SD-JWT) and OpenID for Verifiable Presentations (OID4VP).
  • Textdokument
    Towards a standardised preservation service for qualified electronic signatures and qualified electronic seals
    (Open Identity Summit 2019, 2019) Otto, Florian; Wich, Tobias; Hühnlein, Tina; Prechtl, Mike; Hühnlein, Detlef
    To preserve the legal validity and conclusiveness of qualified electronic signatures and qualified electronic seals over long periods of time it is necessary to apply appropriate preservation techniques. The present contribution provides an overview of the corresponding standards for long-term preservation of digital signatures, which are currently developed within ETSI TC ESI and outlines the design of a corresponding reference implementation, which is currently developed within the EU-funded FutureTrust project.