The Community for Technology Leaders
RSS Icon
Subscribe
Issue No.02 - March-April (2013 vol.15)
pp: 42-49
Harigopal K.B. Ponnapalli , Infosys, India
Ashutosh Saxena , Infosys, India
ABSTRACT
This digital signature architecture provides browser-agnostic, client-side signature components and generic server-side signature validation components to help integrate signatures into Web applications. The authors also discuss ways to extend HTML syntax to support signatures.
INDEX TERMS
Digital signatures, Servers, Computer architecture, Business, Service oriented architecture, Cloud computing, Standards, security, digital signature, electronic commerce, Web technologies
CITATION
Harigopal K.B. Ponnapalli, Ashutosh Saxena, "A Digital Signature Architecture for Web Apps", IT Professional, vol.15, no. 2, pp. 42-49, March-April 2013, doi:10.1109/MITP.2012.23
REFERENCES
1. HTML 4.01 Specification, World Wide Web Consortium (W3C) specification, Dec. 1999; www.w3.org/TRhtml401.
2. Capicom Reference, Microsoft, 2012; http://msdn.microsoft.com/en-us/libraryaa375732(VS.85).aspx.
3. S. Mazumdar, "XML Digital Signature Tool," Mozilla Add-Ons, 2012; https://addons.mozilla.org/en-Us/thunderbird/ addonxml-digital-signature-tool.
4. B. Kaliski, PKCS#7: Cryptographic Message Syntax, Version 1.5, RFC 2315, March 1998; ftp://ftp.rsasecurity.com/pub/pkcs/ascii pkcs-7.asc.
5. R. Housley, Cryptographic Message Syntax (CMS), RFC 3852, July 2004; https://tools.ietf.org/htmlrfc3852.
6. M. Bartle et al., XML Signature Syntax and Processing (Second Edition), World Wide Web Consortium (W3C) recommendation, June 2008; www.w3.org/TRxmldsig-core.
7. "Cryptography Objects," Microsoft, 26 Oct. 2012; http://msdn.microsoft.com/en-us/library/ windows/desktopaa380254(v=vs.85).aspx#certificate_store_objects.
8. "Java Cryptography Architecture—API Specification & Reference," Oracle, 25 July 2004; http://docs.oracle.com/javase/1.5.0/docs/ guide/securityCryptoSpec.html.
9. PKCS#11: Cryptographic Token Interface Standard, RSA, 2004; ftp://ftp.rsa.com/pub/pkcs/pkcs-11/v2-20 pkcs-11v2-20.pdf.
10. PKCS#12: Personal Information Exchange Syntax Standard, RSA, 1999; ftp://ftp.rsasecurity.com/pub/pkcs/pkcs-12 pkcs-12v1.doc.
11. "Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile," tech. memo, The Internet Society, 2002; www.ietf.org/rfcrfc3280.txt.
12. "The Online Certificate Status Protocol (OCSP)," The Internet Society, 1999; www.ietf.org/rfcrfc2560.txt.
13. "HTML Signing Profile," World Wide Web Consortium (W3C), Feb. 2008; www.w3.org/2007/11h6n.
14. "Java PKI API Programmer's Guide," Oracle, 1993; http://download.oracle.com/javase/6/docs/ technotes/guides/security/certpathCertPathProgGuide.html.
15. Data Networks and Open System Communications, Int'l Telecommunication Union recommendation, 2002; www.itu.int/ITU-T/studygroups/com17/languages X.690-0207.pdf.
16. "The Base16, Base32, and Base64 Data Encodings," tech. memo, The Internet Society, 2006; http://tools.ietf.org/htmlrfc4648.
7 ms
(Ver 2.0)

Marketing Automation Platform Marketing Automation Tool