Certipost e-signing Services. Rev Description of Change Author Date
|
|
- Victor Atkins
- 6 years ago
- Views:
Transcription
1 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 1 f 12 Rev Descriptin f Change Authr Date 1.0 First Versin Wim Culier 15/06/2007 Clarificatins t enable this plicy t be used fr mre prducts Wim Culier 23/08/ Intrductin. Scpe This dcument cvers the plicy rules that are used t state under which cnditins an electrnic signature generatin and validatin methds are valid when used within the cntext f the Certipst e-signing service f Handwritten Equivalent level. Mrever, the present dcument sets the rles and bligatins f all actrs invlved in the e-signing Handwritten Equivalent transactins. These rights and bligatins fr entities invlved in e-signing Handwritten Equivalent transactins are stated in the frm f bth cntract bligatins and technical requirements. Finally, the present dcument versees the technical standards and peratins used t create the electrnic signatures thrugh the Certipst e-signing Handwritten Equivalent service Organizatin f the dcument The rganizatin f this dcument is based n the signature plicy framewrk as defined in ETSI TR v.1: Signature plicy reprt Preceding language versin This dcument is translated in several languages. In case f cnflicting cntent between the different languages, the English versin precedes. The different language versins can be fund in the fllwing lcatin: English versin: Signing_HandwrittenEquivalentSignaturePlicy_EN_v.pdf Dutch versin (Nederlandstalige versie): Signing_HandwrittenEquivalentSignaturePlicy_NL_v.pdf French versin (versin francphne): Signing_HandwrittenEquivalentSignaturePlicy_FR_v.pdf 1.4. Definitins Advanced Electrnic Signature: means an electrnic signature that meets the fllwing requirements: It is uniquely linked t the signatry; It is capable f identifying the signatry; It is created using means that the signatry can maintain under his sle cntrl; and It is linked t the data t which it relates in such a manner that any subsequent change f the data is detectable. Certificatin Authrity (CA): An authrity trusted by ne r mre users t create and assign certificates. Optinally the certificatin authrity may create the users keys. Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
2 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 2 f 12 Certificate identifier: a unique identifier f a Certificate cnsisting f the name f the CA and f the certificate serial number assigned by the CA. Certificate Plicy: A named set f rules that indicates the applicability f a certificate t a particular cmmunity and/r class f applicatin with cmmn security requirements. Certificate Validity perid: The time interval during which the CA warrants that it will maintain infrmatin abut the status f the certificate. Certificate revcatin list: a list cntaining the serial numbers f revked certificates frm a given CA, tgether with ther revcatin infrmatin. Certificatin path: A chain f multiple certificates, cmprising a certificate f the public key wner (the end entity) signed by ne CA, and zer r mre additinal certificates f CAs signed by ther CAs. Certificatin Service Prvider: an entity r a legal r natural persn wh issues certificates r prvides ther services related t electrnic signatures; [EC 1999/93] CRL distributin pint: A directry entry r ther distributin surce fr CRLs; a CRL distributed thrugh a CRL distributin pint may cntain revcatin entries fr nly a subset f the full set f certificates issued by ne CA r may cntain revcatin entries fr multiple CAs. Data t be signed (DTBS): the cmplete electrnic data t be signed (including bth Signer's Dcument and Signature Attributes) Digital signature: data appended t, r a cryptgraphic transfrmatin f, a data unit that allws a recipient f the data unit t prve the surce and integrity f the data unit and prtect against frgery, e.g. by the recipient. e-signing Framewrk: The Certipst e-signing framewrk is the whle f the Certipst e-signing signature plicies and the cmpnent enfrcing cmpliance t the plicy in questin fr creating and verifying e-signing signatures. This framewrk can be used by different frnt-end applicatins as part f a Certipst prduct r service. e-signing Handwritten Equivalent Service: e-signing Service that is limited t the creatin f signatures accrding t the present Signature Plicy (Handwritten Equivalent signatures). e-signing Service: Any prduct r service that makes use f the Certipst e-signing Framewrk t create electrnic signatures fr the user f the service. Since this dcument is limited t the Handwritten Equivalent type f signature, when this term is mentined further in this dcument this means the e-signing Handwritten Equivalent Service. End entity: A certificate subject that uses its public key fr purpses ther than fr signing certificates. Electrnic signature: means data in electrnic frm that are attached t r lgically assciated with ther electrnic data Hash functin: A functin that maps string f bits t fixed-length strings f bits, satisfying the fllwing tw prperties: - It is cmputatinally unfeasible t find fr a given utput an input that maps t this utput - It is cmputatinally unfeasible t find fr a given input a secnd input which maps t the same utput Initial verificatin: a prcess perfrmed by a Verifier that must be dne sn after a signature is generated in rder t capture the infrmatin that will make it valid fr lng term verificatin. Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
3 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 3 f 12 Object identifier: a sequence f numbers that uniquely and permanently references an bject. OCSP: see Online Certificate Status Prtcl Online certificate status prtcl: real time n line trusted surce f certificate status infrmatin. Parallel signature: the applicatin f separate independent signatures t the same Signer s dcument Public key: That key f an entity s asymmetric key pair that can be made public Private key: That key f an entity's asymmetric key pair that shuld nly be used by that entity. Qualified certificate: a certificate which meets the requirements laid dwn in Annex I f the Directive and is prvided by a certificatin-service-prvider wh fulfils the requirements laid dwn in Annex II f the Directive [EC 1999/93] Qualified electrnic signature: an advanced electrnic signature which is based n a qualified certificate and which is created by a secure-signature-creatin device (Nte: Definitin f Art. 5.1 signature taken frm the Directive [4]). Secure Signature Creatin Device: means a signature creatin device that meets the requirements laid dwn in [4], Annex III. Signature attributes: Additinal infrmatin that is signed tgether with the Signer's Dcument. Signature creatin data: means unique data, such as cdes r private cryptgraphic keys, which are used by the signatry t create an electrnic signature. Signature creatin device: means cnfigured sftware r hardware used t implement the signature creatin data. Signature plicy: a set f technical and prcedural requirements fr the creatin and verificatin f an electrnic signature, under which the signature can be determined t be valid. Signature plicy identifier: Object Identifier that unambiguusly identifies a Signature Plicy. Signature plicy issuer: An rganizatin that creates, maintains and publishes a signature plicy. Signature plicy issuer name: A name f a Signature Plicy Issuer. Signature verificatin: a prcess perfrmed by a Verifier either sn after the creatin f an electrnic signature r later t determine if an electrnic signature is valid against a signature plicy implicitly r explicitly referenced. Signature verificatin data: data, such as cdes r public cryptgraphic keys, which are used fr the purpse f verifying an electrnic signature; [EC 1999/93] Signature verificatin device: cnfigured sftware r hardware used t implement the signature verificatindata [EC 1999/93] Signer: Entity that creates an (electrnic) signature (physical r legal persn). Signer s identity: the registered name f the Signer (i.e. as registered by the CSP supplying the Signer s certificate). Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
4 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 4 f 12 Signer s dcument: The electrnic data t which the electrnic signature is attached t r lgically assciated with. Time-Mark: A prf-f-existence fr a datum at a particular pint in time, in the frm f a recrd in a secure audit trail, which includes at least a trustwrthy time value and a hash representatin f the datum. Time stamp: A prf-f-existence fr a date at a particular pint in time, in the frm f a data structure signed by a Time Stamping Authrity, which includes at least a trustwrthy time value, a unique identifier fr each newly generated time stamp, an identifier t uniquely indicate the time-stamp plicy under which the time stamp was created, a hash representatin f the datum, i.e. a data imprint assciated with a ne-way cllisin resistant uniquely identified hash-functin. Time stamp authrity: An authrity trusted by ne r mre users t prvide a Time Stamping Service. Time stamp service: A service that prvides a trusted assciatin between a date and a particular pint in time, in rder t establish reliable evidence indicating the time at which the datum existed. Usual verificatin: a prcess perfrmed by a Verifier that may be dne years after the electrnic signature was prduced, des nt need t capture mre data than the data that was captured at the time f initial verificatin. Validatin data: additinal data, cllected by the Signer and/r a Verifier, needed t verify the electrnic signature in rder t meet the requirements f the signature plicy. It may include: certificates, revcatin status infrmatin, time-stamps r Time-Marks. Verifier: An entity that validates r verifies an electrnic signature (physical r legal persn). This may be either a relying party r a third party interested in the validity f an electrnic signature. 2. Certipst e-signing Service 2.1. Certipst e-signing actrs Signer: see abve Verifier: see abve Certipst e-signing service prvider: Certipst e-signing service prvider helps the Signer t create a signature accrding t the present signature plicy, in rder t ensure that the signature generated has a legal value equivalent t a handwritten signature as per the Directive [4] implemented in the Belgian law n electrnic signature [6]. Certipst e-signing service prvider helps the Verifier t assess whether a signature was cmpliant t the present signature plicy, and thus that the signature verified has a legal value equivalent t a handwritten signature as per the Directive [4] implemented in the Belgian law n electrnic signature [6] Certipst e-signing service descriptin The gal f the Certipst e-signing Service is t lwer the barrier fr electrnic dcument signing dramatically by taking the legal and technical cmplexity f this signing away frm the Signer wh applies the signature and Verifier wh trusts the signature. The Certipst e-signing Service is a service that will help users t create and verify Qualified Electrnic Signatures with lng term value. Qualified Electrnic Signatures are electrnic signatures that cmply with the requirements frm the Eurpean Directive [1] and Belgian law [2] cncerning electrnic signatures in such a way that frm a legal pint f view they are autmatically accepted as equivalent t a handwritten signature. As the requirements frm the Eurpean Directive and Belgian law are cmplex fr the general public, Certipst has created this service t take this cmplexity away frm the Signer and the Verifier. By simply using the Certipst e-signing service, bth the Signer and Verifier can be assured f cmpliance f their signature and verificatin methd t the Eurpean Directive and Belgian law. In additin, the Certipst e-signing service ffers a number Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
5 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 5 f 12 f supplementary measures t make sure that the cnditins fr lng term nn-repudiatin f signatures are met Supprted standard The signature will be frmatted in the standard XML Advanced Electrnic Signature standard (XAdES) i, t allw all measures t be applied fr lng term nn-repudiatin. XAdES defines several different signature prfiles. Each prfile adds additinal verificatin infrmatin n tp f the encapsulated prfile. The range ges frm the basic XAdES prfile, which is nly sufficient fr very shrt-term prf f nn-repudiatin up t XAdES- A which ffers enugh nn-repudiatin prf elements fr archiving. Fr mre infrmatin see the ETSI standard. The electrnic signature applied accrding t the present Signature Plicy must be frmatted in at least the XAdES-T prfile. This prfile cntains as well a timestamp that can prf at what time the signature was psed. Anther XAdES prfile that encapsulates a XAdES-T such as XAdES-X-L is f curse accepted as well. Fr signatures that have t be prven beynd the expiratin date f the certificate, the XAdES-X-L shuld be used (the XAdES-X-L als cntains the certificate status infrmatin). The signature itself will be created with the Signer s SSCD, the frmatting f the XAdES-T r XAdES-X-L signature dcument (and inclusin f timestamp(s) and pssibly certificate status infrmatin) will be perfrmed n the Certipst e-signing server. At any mment, any party in pssessin f the XAdES-T signature can add revcatin status infrmatin and timestamps t frm a XAdES-X-L. At any mment, any party in pssessin f the XAdES-X-L can add a new timestamp t frm a XAdES-A frmat fr a lng term archiving versin f the signature. All signatures created under this signature plicy will as well include within the XAdES frmat references t the present Signature Plicy in the frm f OID, hash and URL f the present Signature Plicy e-signing creatin The Signer can create a signature accrding t this Signature Plicy using the Certipst e-signing service. Multiple presentatin envirnments can use the Certipst e-signing Framewrk. It is pssible that the Certipst e-signing service will at a certain mment implement ther signature plicies than the present ne. The implementatins based n the Certipst e-signing Handwritten Equivalent Signature Plicy will have the fllwing in cmmn: 1. The user can select a file t be signed 2. The Certipst e-signing service will perfrm a number f verificatins (nt necessarily in this rder): a. Whether the signature is valid fr the specified signed file b. Certificate issued under an accepted Certificate Plicy (see sectin Certificate requirements). c. Validity f the certificate: certificate nt revked r suspended, certificate within validity perid (between valid frm and valid t dates), full certificate chain validatin (including validatin f all certificates in the chain) When ne f the verificatins fails, the signature prcess will be abrted. 3. The Certipst e-signing service will create the XAdES-T file. This includes the cllectin f a timestamp. In case the e-signing server creates a XAdES-X-L file, this includes the cllectin and inclusin f Certificate status infrmatin and timestamps e-signing verificatin The Verifier can use any means t verify the signature created accrding t this plicy. Hwever, fllwing cnditins must be met. The Certipst e-signing verificatin service implementatin meets all these criteria, and is pen fr use t any Verifier. i ETSI TS Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
6 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 6 f Assurance that the signature is valid fr the specified signed file. 2. Validity f the certificate at the time f signing: certificate nt revked r suspended, certificate nt expired and already valid, full certificate chain validatin (including validatin f all certificates in the chain). This may include the cnstructin f a XAdES-X-L frm the XAdES-T r a XAdES-A frm the XAdES-X-L. 3. Certificate issued under an accepted Certificate Plicy (see sectin Certificate requirements). 4. Verificatin f all the timestamps in the XAdES-T, XAdES-X-L r XAdES-A (in case additinal timestamps have been added fr lng term nn-repudiatin assurance), including the verificatin that the timestamp validity perids verlap (at any pint in time at least ne f the timestamps shuld be valid t assure in case f algrithm breach that never the nn-repudiatin value might have been cmprmised). 3. Signature plicy infrmatin 3.1. General Certipst e-signing Handwritten Equivalent Signature Plicy infrmatin Fllwing ETSI requirements ii, the Certipst e-signing Handwritten Equivalent signature plicy includes the fllwing data: 3.. Signature Plicy Identifier: Signature Plicy Name: Certipst e-signing Handwritten Equivalent Signature Plicy Signature Plicy OID: (the last tw digits define the majr and minr versins f the signature plicy respectively) Signature Plicy URL: Signing_HandwrittenEquivalentSignaturePlicy_EN_v1.0.pdf Date f issue 15 June Signature Plicy Issuer name: Certipst sa/nv cntact details: Registered ffice: Certipst s.a/n.v. Centre Mnnaie / MuntCentrum B-1000 Bruxelles / Brussel TVA B.T.W. BE RC Bruxelles / HR Brussel Operatinal address: Ninvesteenweg 196, B-9320 Erembdegem Phne: Fax: Signature Plicy Issuer OID: Signing Perid The present Signature Plicy is valid frm the date f issue till it becmes superseded by a next versin Cmmn Rules ii Specified in reference dcument [ 1] ETSI TR (V.1) : «Signature plicy reprt» Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
7 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 7 f Rules fr the Signer Absence f time based dynamic cntent The Signer is respnsible that the file being signed des nt cntain any dynamic cntent that might mdify the visualized result f the file during time (e.g. amunts r sentences that change after a certain date). The Signer must nt include such dynamic cntent in any file the Signer creates that will be subject t use f the e- Signing service. In case the Signer wants t sign a dcument that he did nt create himself, he shuld make sure that such dynamic cntent is nt present. That is why we advice against the signing f dcuments cntaining macr s r ther executable cde. We advice in such a case t cnvert the file first t a frmat that des nt cntain dynamic cntent such as TIFF, PDF, JPEG, Dcuments accepted by law Althugh that the Belgian Law [6] lays dwn the cnditins fr electrnic signatures t be accepted as equivalent t handwritten signatures, ther laws smetimes lay dwn cnditins that rule ut electrnic signatures after all. Additinally, fr sme transactins, electrnic dcuments and/r electrnic signatures may nt be allwed accrding t the applicable cntractual cnditins (e.g. a certain frm f cmmunicatin was cntractually agreed that rules ut the use f electrnic signatures). The Signer is respnsible that the file being signed is accepted by law and applicable cntracts t be signed electrnically. In the present Signature Plicy, n exhaustive list can be prvided f types f cntent that are nt allwed by Belgian law t be signed electrnically, but particularly the types f cntent listed belw shuld be investigated by the Signer: testament cheque, rder nte and bill f exchange unilateral engagement by a nn-merchant t pay a certain amunt r gd f value cntracts which need t be registered, such as cntracts t rent a huse (by lack f e-registratin) authentic acts ( authentieke akten, "actes authentiques"), such as the cntract t buy real estate and dnatins. sme kinds f mandate, such as the mandate fr authentic acts, the mandate t accept a dnatin r the mandate t be present at the executin f civil state acts. Transactin under anther cuntry s legislatin might be subject t similar exceptins Signed attributes The fllwing set f Signed Attributes will be prvided by the Signer: Signing time Signing Certificate (including the full certificate path) Signature Plicy (in the frm f OID, hash and URL f the current Signature Plicy) Unsigned attributes The fllwing set f Unsigned Attributes shuld be prvided by the Signer. If nt added by the Signer, they may be added by the Verifier. Timestamps: this must include SignatureTimeStamps (timestamp n the signature itself), this shuld include SigAndRef TimeStamps (timestamp n the cmbinatin f the signature and the references t validatin infrmatin) an may include ArchiveTimeStamps (timestamps added ver time t maintain lng term nn-repudiatin value) Cuntersignature (pssibly, nt mandatry) Certificate values: this must include the CmpleteCertificate Refs and shuld include the Certificate- Values Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
8 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 8 f 12 Certificate status references: this must include the CmpleteRevcatinData Refs and shuld include the RevcatinValues Rules fr the Verifier Signed attributes Signing time: nly t be used as an indicatin, nly a timestamp can give cnclusive infrmatin abut a time reference. The ldest timestamp within the XAdES structure will be used t determine signing time. Signing Certificate: Full verificatin f the signing certificate fr the signing time (signing time during the lifetime f the certificate, certificate nt revked r suspended, full verificatin n the certificate chain) Nte: Althugh the XAdES-X-L frmat cntains certificate verificatin data, this certificate verificatin data can have been cllected nt taking a cautinary perid in cnsideratin (see cautinary perid in the sectin Timestamping). Perfrming a new nline certificate status verificatin can nly cnclusively give the crrect status if this new nline verificatin is perfrmed after the cautinary perid but befre the expiratin f the certificate. Often certificate status infrmatin services d nt keep mentin n revcatin r suspensin n expired certificates. Therefre the way the verificatin is perfrmed depends n the state f the certificate at verificatin time. When perfrming a verificatin befre expiratin f the Signature certificate: The Verifier shuld as well perfrm a new nline certificate status verificatin. In case this new verificatin shws the certificate being revked r suspended, the Verifier shuld nt trust the signature in case the date and time f revcatin r suspensin is earlier r equal t signing date and time, even if the certificate revcatin data included in the XAdES-X-L signature claims the certificate t have been valid at that time. Only when the Verifier can nt btain such new status infrmatin, the certificate status infrmatin frm the XAdES-X-L itself can be used as nly certificate status infrmatin, implying an acceptance f the resulting risk. When perfrming a verificatin after expiratin f the Signature certificate: The certificate status infrmatin frm the XAdES-X-L itself must be used as nly certificate status infrmatin, implying an acceptance f the resulting risk. A new nline certificate status verificatin cannt be trusted upn t cntain crrect revcatin data abut the certificate. Signature Plicy: The Verifier shuld check that this is indeed the Signature Plicy that was identified in the XAdES structure (by hash cmparisn) Unsigned attributes The fllwing set f Unsigned Attributes shuld be prvided by the Signer. If nt added by the Signer, they may be added by the Verifier. Timestamps: Several timestamps can have been applied. Except the verificatin f the validity f the timestamps themselves and the timestamp signing certificates, the Verifier shuld make sure that timestamps are included in such a way that the timestamp validity perids verlap (at any pint in time at least ne f the timestamps shuld be valid t assure in case f algrithm breach that never the nn-repudiatin value might have been cmprmised), and this fr the perid between the Signing time and the mment f the verificatin. Cuntersignature (pssibly, nt mandatry): Same checks as n the first signature. Certificate values: Used in the verificatins abve. Certificate status references: Used in the verificatins abve. Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
9 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 9 f Trust cnditins Signing Certificate Certificate requirements The trust pints that must be used fr the start f prcessing f the Signing Certificate path (the self-signed certificates fr the CAs) are limited t: Belgium Electrnic Identity card (eid) certificates: Belgium Rt CA Certipst E-Trust certificates: Certificate Path Length Belgacm E-Trust Rt CA fr qualified certificates Certipst E-Trust TOP Rt CA GTE CyberTrust Glbal Rt N limitatin n Certificate Path Length applies. Acceptable Certificate Plicies Only certificate plicies are accepted that apply t Qualified Certificates stred n SSCD. Naming cnstraints N naming cnstraints apply. Explicit Indicatin f the certificate plicies eid Certipst E-Trust (eid Citizen signing certificate) (eid Freigner signing certificate) x (Certipst E-Trust qualified fr qualified signatures fr physical persns) x (Certipst E-Trust qualified fr qualified signatures fr legal persns) x (Certipst E-Trust qualified fr qualified signatures fr physical persns) x (Certipst E-Trust qualified fr qualified signatures fr legal persns) x (Certipst E-Trust qualified fr qualified signatures fr cmmunities) Revcatin Requirements Revcatin status infrmatin n the Signer certificate shuld be validated in the fllwing way: eid certificates: The OCSP service shuld be used. When the OCSP service cannt be used fr whatever reasn, full CRLs shuld be used. Certipst certificates: Full CRLs shuld be used. Revcatin status infrmatin n the CA certificates in the Signer certificate chain shuld be validated in the fllwing way: eid certificates: The OCSP service shuld be used. When the OCSP service cannt be used fr whatever reasn, full CRLs shuld be used. Certipst certificates: Full CRLs shuld be used. Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
10 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 10 f Timestamping Time Stamping Authrities Public Key Rules The certificate f the time stamping authrities public key shuld include the timestamping ExtendedKeyUsage (OID: ). Naming cnstraints N naming cnstraints apply. Cautinary Perid At the time f the creatin f the signature XAdES-X-L frmat by the e-signing service prvider, a validatin will be perfrmed n the validity f the certificate used fr signing. This includes the verificatin whether the certificate was nt revked r suspended during at the mment it was used fr signing. Such verificatin is prefrmed by getting revcatin infrmatin frm the certificate issuer (CRL r OCSP). Sme time ges by between the mment that the certificate was requested t be revked and the time that the revcatin services (CRL r OCSP server) publish this status. That means that there is a small risk that the revcatin status cllected during the creatin f the XAdES-X-L is nt crrect (the certificate being cnsidered valid while it is nt). As a result there is a risk that the XAdES-X-L claims a valid signature, while in reality the signature is nt valid. A means t eliminate this risk is by waiting fr a certain perid (cautinary perid r grace perid) after the actual signature befre creating the XAdES-X-L. If this grace perid is larger then the time that it takes fr the certificate status service t publish the revcatin infrmatin the risk is cmpletely mitigated. Hwever in this Signature Plicy, it was chsen nt t impse such a grace perid fr the fllwing reasns: 1. The certificates allwed by this Signature Plicy are stred n an SSCD, which limits cnsiderably the risk f abuse f a stlen r lst certificate. 2. Including a grace perid wuld in mst cases disrupt the nrmal flw f events in which the signature takes part in such a way that this wuld mre then ffset the psitive effect f applying such grace perid. 3. Even if the XAdES-X-L des nt cntain verificatin infrmatin frm after such grace perid, present signature plicy requests the Verifier t verify the revcatin data nline t assess whether the signing certificate was nt revked r suspended at the time f signature. Maximum Acceptable Time Nt applicable Certificate requirements Belgacm E-Trust Rt CA fr Qualified Certificates Certificate Path Length N limitatin n Certificate Path Length applies. Acceptable Certificate Plicies There is n specific indicatin n the acceptable Certificate Plicies. Naming cnstraints N naming cnstraints apply Revcatin Requirements Revcatin status infrmatin n the timestamping certificate shuld be validated in the fllwing way: Certipst certificates: Full CRLs shuld be used. Revcatin status infrmatin n the CA certificates in the timestamping certificate chain shuld be validated in the fllwing way: Certipst certificates: Full CRLs shuld be used. Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
11 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 11 f Attributes N attribute signing is part f this signature plicy Algrithm Cnstraints Fllwing Signer algrithm cnstraints apply t signatures created under this Signature Plicy: The Signing Algrithms : One f the fllwing algrithms shuld be used: RSA / SHA1, RSA/SHA256, RSA/SHA512 Minimum Key Length: The Certificate Plicies that are accepted define the minimum key length. This signature plicy des nt define Algrithm Cnstraints n certificates r timestamping authrities Cmmn Extensins N cmmn extensins have been defined in this signature plicy Cmmitment Rules Nt applicable Signature Validatin Plicy Extensins N Signature Validatin Plicy Extensins are applicable Area f applicatin, Business Applicatin dmain, transactinal cntext This signature plicy applies t the cntext f a Certipst e-signing Handwritten Equivalent transactin Cmputer- prcessible vs. human-readable signature plicy Tw frmats f signature plicies can be implemented: Cmputer-prcessible plicy and human readable signature plicy. Frm the develpers pint f view it wuld be cnvenient, if the plicy is available in a cmputerprcessible frmat. Hwever, because it is the Signer that gives a cmmitment with regard t the cntent f the signed dcument as per this plicy, there must always be a human readable versin f the plicy. Mrever, the Signer must be able t read the plicy befre creating a signature under it. Fr the reasns we have expressed abve, Certipst pted fr a human-readable plicy Explicit vs. implicit signature plicy The reference t a signature plicy within a signed dcument may be either implicit r explicit. We pted fr an explicit reference t the signature plicy indicated by the Signer within the electrnic signature (and thus prtected by the electrnic signature frm the Signer). In this case, the benefit is t allw a prcessing f the electrnic signatures, even lng after they have been generated and utside their riginal cntext f use (e.g. in frnt f a judge). The Signature Plicy is identifiable by a unique identifier, e.g. an OID (Object IDentifier), and verifiable using a hash f the signature plicy. S each time an electrnic signature is generated, it includes within the signed dcument the unique identifier f the signature plicy, the hash value f the signature plicy and a lcatin (URL)) where a cpy f the Signature Plicy may be btained Certipst e-signing Handwritten Equivalent signature plicy publicatin Befre signing, a Signer shuld be sure which security plicy will apply. In the same way, when verifying an electrnic signature, a Verifier needs t make sure t use the crrect security plicy. Certipst issues its wn signature plicies and make them available t end-entities by placing them n a secure web site (that can be accessed via SSL). By this way, an end-entity (a Signer r Verifier) has the guarantee that he is in pssessin f the genuine plicy. Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
12 Certipst e-signing Handwritten Equivalent Signature Plicy Dcument OID: Apprval Status: Apprved Versin: 12 f Certipst e-signing Handwritten Equivalent signature plicy archiving In case the current versin f this signature plicy is superseded, the next versin f the signature plicy will identify the repsitry where the current signature plicy versin will be archived and hw a Verifier can get access. This might be required fr the verificatin f electrnic signature created under the current signature plicy versin Certipst e-signing Handwritten Equivalent signature plicy cnfrmance statements The present Signature Plicy claims cnfrmance t ETSI TS , ETSI TR and t the Belgian Law f 9th July References [1]: ETSI TR (v.1): Signature plicy reprt. [2]: ETSI TS ETSI TS (v1.2.2): XML Advanced Electrnic Signatures (XAdES). [3]: RFC 3280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revcatin List (CRL) Prfile. [4]: EC 1999/93: Eurpean Cmmunity (EC) DIRECTIVE 1999/93/EC OF THE EUROPEAN PARLIAMENT AND COUNCIL ON A COMMUNITY FRAMEWORK FOR ELECTRONIC SIGNATURES [5]: ETSI TR (v.1): Signature Plicy fr Extended Business Mdel. [6]: The 9th f July 2001 Belgian Law abut electrnic signatures. Handwritten Equivalent Signature Plicy Versin Cpyright 2007 Certipst sa/nv. All rights reserved.
E-Lock Policy Manager White Paper
White Paper Table f Cntents 1 INTRODUCTION... 3 2 ABOUT THE POLICY MANAGER... 3 3 HOW E-LOCK POLICY MANAGER WORKS... 3 4 WHAT CAN I DO WITH THE POLICY MANAGER?... 4 4.1 THINGS YOU CONTROL IN SIGNING...
More informationONTARIO LABOUR RELATIONS BOARD. Filing Guide. A Guide to Preparing and Filing Forms and Submissions with the Ontario Labour Relations Board
ONTARIO LABOUR RELATIONS BOARD Filing Guide A Guide t Preparing and Filing Frms and Submissins with the Ontari Labur Relatins Bard This Filing Guide prvides general infrmatin nly and shuld nt be taken
More informationPAY EQUITY HEARINGS TRIBUNAL. Filing Guide. A Guide to Preparing and Filing Forms and Submissions with the Pay Equity Hearings Tribunal
PAY EQUITY HEARINGS TRIBUNAL Filing Guide A Guide t Preparing and Filing Frms and Submissins with the Pay Equity Hearings Tribunal This Filing Guide prvides general infrmatin nly and shuld nt be taken
More informationCookbook Qermid Defibrillator web service Version This document is provided to you free of charge by the. ehealth platform
Ckbk Qermid Defibrillatr web service Versin 1.01 This dcument is prvided t yu free f charge by the ehealth platfrm Willebrekkaai 38 38, Quai de Willebrek 1000 BRUSSELS All are free t circulate this dcument
More informationSOLA and Lifecycle Manager Integration Guide
SOLA and Lifecycle Manager Integratin Guide SOLA and Lifecycle Manager Integratin Guide Versin: 7.0 July, 2015 Cpyright Cpyright 2015 Akana, Inc. All rights reserved. Trademarks All prduct and cmpany names
More informationSoftware Usage Policy Template
Sftware Usage Plicy Template This template is t accmpany the article: The Sftware Usage Plicy - An Indispensible Part f Yu SAM Tlbx The full article can be fund here: http://www.itassetmanagement.net/tag/plicy-template/
More informationAdmin Report Kit for Exchange Server
Admin Reprt Kit fr Exchange Server Reprting tl fr Micrsft Exchange Server Prduct Overview Admin Reprt Kit fr Exchange Server (ARKES) is an Exchange Server Management and Reprting slutin that addresses
More informationProcurement Contract Portal. User Guide
Prcurement Cntract Prtal User Guide Cntents Intrductin...2 Access the Prtal...2 Hme Page...2 End User My Cntracts...2 Buttns, Icns, and the Actin Bar...3 Create a New Cntract Request...5 Requester Infrmatin...5
More informationSERVICE LEVEL AGREEMENT. Mission: Certificates Management
SERVICE LEVEL AGREEMENT BSM: This SLA is cvered by BSM s fr Infrastructure, Supprt and Prjects This SLA is a cmplement t the Master Service Agreement V5.0 as described in art 2.2 (MSA) Missin: Certificates
More informationSmartPass User Guide Page 1 of 50
SmartPass User Guide Table f Cntents Table f Cntents... 2 1. Intrductin... 3 2. Register t SmartPass... 4 2.1 Citizen/Resident registratin... 4 2.1.1 Prerequisites fr Citizen/Resident registratin... 4
More informationDate: October User guide. Integration through ONVIF driver. Partner Self-test. Prepared By: Devices & Integrations Team, Milestone Systems
Date: Octber 2018 User guide Integratin thrugh ONVIF driver. Prepared By: Devices & Integratins Team, Milestne Systems 2 Welcme t the User Guide fr Online Test Tl The aim f this dcument is t prvide guidance
More informationVMware AirWatch Certificate Authentication for Cisco IPSec VPN
VMware AirWatch Certificate Authenticatin fr Cisc IPSec VPN Fr VMware AirWatch Have dcumentatin feedback? Submit a Dcumentatin Feedback supprt ticket using the Supprt Wizard n supprt.air-watch.cm. This
More informationOATS Registration and User Entitlement Guide
OATS Registratin and User Entitlement Guide The OATS Registratin and Entitlement Guide prvides the fllwing infrmatin: OATS Registratin The prcess and dcumentatin required fr a firm r Service Prvider t
More informationOverview of Data Furnisher Batch Processing
Overview f Data Furnisher Batch Prcessing Nvember 2018 Page 1 f 9 Table f Cntents 1. Purpse... 3 2. Overview... 3 3. Batch Interface Implementatin Variatins... 4 4. Batch Interface Implementatin Stages...
More informationAccess the site directly by navigating to in your web browser.
GENERAL QUESTIONS Hw d I access the nline reprting system? Yu can access the nline system in ne f tw ways. G t the IHCDA website at https://www.in.gv/myihcda/rhtc.htm and scrll dwn the page t Cmpliance
More informationWELMEC Guide on evaluation of Purely Digital Parts
WELMEC 10.10 2016 Guide n evaluatin f Purely Digital Parts WELMEC is a cperatin between the legal metrlgy authrities f the Member States f the Eurpean Unin and EFTA. This dcument is ne f a number f Guides
More informationPRIVACY AND E-COMMERCE POLICY STATEMENT
PRIVACY AND E-COMMERCE POLICY STATEMENT Tel-Tru Manufacturing Cmpany ( Tel-Tru ) is dedicated t develping lng-lasting relatinships that are built n trust. Tel-Tru is cmmitted t respecting the wishes f
More informationProper Document Usage and Document Distribution. TIP! How to Use the Guide. Managing the News Page
Managing the News Page TABLE OF CONTENTS: The News Page Key Infrmatin Area fr Members... 2 Newsletter Articles... 3 Adding Newsletter as Individual Articles... 3 Adding a Newsletter Created Externally...
More informationUsers, groups, collections and submissions in DSpace. Contents
Users, grups, cllectins and submissins in DSpace Cntents Key cncepts... 2 User accunts and authenticatin... 2 Authrisatin and privileges... 2 Resurce plicies... 2 User rles and grups... 3 Submissin wrkflws...
More informationPoint-to-Point Encryption (P2PE)
Payment Card Industry (PCI) Pint-t-Pint Encryptin (P2PE) Template fr P2PE Applicatin Reprt n Validatin (Applicatin P-ROV) Applicatin P-ROV Template Fr Applicatins used with PCI P2PE Hardware/Hardware Standard
More informationPlease contact technical support if you have questions about the directory that your organization uses for user management.
Overview ACTIVE DATA CALENDAR LDAP/AD IMPLEMENTATION GUIDE Active Data Calendar allws fr the use f single authenticatin fr users lgging int the administrative area f the applicatin thrugh LDAP/AD. LDAP
More informationPatch Management Policy
Patch Management Plicy (Versin 1) Dcument Cntrl Infrmatin: Date: 21/5/18 Master Tracking Name Patch Management Plicy Master Tracking Reference Owning Service / Department Exeter IT Issue: 1 Apprvals: Authrs:
More informationIntroduction to Mindjet on-premise
Intrductin t Mindjet n-premise Mindjet Crpratin Tll Free: 877-Mindjet 1160 Battery Street East San Francisc CA 94111 USA Phne: 415-229-4200 Fax: 415-229-4201 www.mindjet.cm 2012 Mindjet. All Rights Reserved
More informationComplyWorks Subscription User Guide. October 6, 2011
CmplyWrks Subscriptin User Guide Octber 6, 2011 Cntents 1. Register... 3 2. Get cmpliant... 3 a) Pay fr yur accunt... 3 b) Cllect the dcuments yu ll need... 4 c) Enter yur infrmatin... 4 d) Publish yur
More informationAuthor guide to submission and publication
Authr guide t submissin and publicatin Cntents Cntents... 1 Preparing an article fr submissin... 1 Hw d I submit my article?... 1 The decisin prcess after submissin... 2 Reviewing... 2 First decisin...
More informationRelease Notes Version: - v18.13 For ClickSoftware StreetSmart September 22, 2018
Release Ntes Versin: - v18.13 Fr ClickSftware StreetSmart September 22, 2018 Cpyright Ntice Cpyright 2018 ClickSftware Technlgies Ltd. All rights reserved. N part f this publicatin may be cpied withut
More informationLicensing the Core Client Access License (CAL) Suite and Enterprise CAL Suite
Vlume Licensing brief Licensing the Cre Client Access License (CAL) Suite and Enterprise CAL Suite Table f Cntents This brief applies t all Micrsft Vlume Licensing prgrams. Summary... 1 What s New in this
More informationMaximo Reporting: Maximo-Cognos Metadata
Maxim Reprting: Maxim-Cgns Metadata Overview...2 Maxim Metadata...2 Reprt Object Structures...2 Maxim Metadata Mdel...4 Metadata Publishing Prcess...5 General Architecture...5 Metadata Publishing Prcess
More informationOVAL Language Design Document
OVAL Language Design Dcument Versin 5.1 2006 The MITRE Crpratin. All rights reserved. Intrductin...3 OVAL Overview...3 Implementatin f the Language...3 OVAL Definitin Schema...4 ...4 ...4
More informationInfrastructure Series
Infrastructure Series TechDc WebSphere Message Brker / IBM Integratin Bus Parallel Prcessing (Aggregatin) (Message Flw Develpment) February 2015 Authr(s): - IBM Message Brker - Develpment Parallel Prcessing
More informationCookbook ORTHOpride web service Version v1. This document is provided to you free of charge by the. ehealth platform
Ckbk ORTHOpride web service Versin v1 This dcument is prvided t yu free f charge by the ehealth platfrm Willebrekkaai 38 38, Quai de Willebrek 1000 BRUSSELS All are free t circulate this dcument with reference
More informationCortex Quick Reference Supplier Guide Service Receipt Rejections for Husky Suppliers
Crtex Quick Reference Supplier Guide Service Receipt Rejectins fr Husky Suppliers Objective f the dcument The bjective f the dcument is t prvide a quick reference fr Husky suppliers t address the Cmmn
More informationRISKMAN REFERENCE GUIDE TO USER MANAGEMENT (Non-Network Logins)
Intrductin This reference guide is aimed at managers wh will be respnsible fr managing users within RiskMan where RiskMan is nt cnfigured t use netwrk lgins. This guide is used in cnjunctin with the respective
More informationAdverse Action Letters
Adverse Actin Letters Setup and Usage Instructins The FRS Adverse Actin Letter mdule was designed t prvide yu with a very elabrate and sphisticated slutin t help autmate and handle all f yur Adverse Actin
More informationExtended Traceability Report for Enterprise Architect
Extended Traceability Reprt User Guide Extended Traceability Reprt fr Enterprise Architect Extended Traceability Reprt fr Enterprise Architect... 1 Disclaimer... 2 Dependencies... 2 Overview... 2 Limitatins
More informationTown of Warner, New Hampshire Information Security Policy
Twn f Warner, New Hampshire Infrmatin Security Plicy Date Adpted: Bard f Selectmen David E. Hartman David Karrick, Jr. Clyde Carsn Table f Cntents Table f Cntents 1 Intrductin 2 Ethics and Acceptable Use
More informationPAGE NAMING STRATEGIES
PAGE NAMING STRATEGIES Naming Yur Pages in SiteCatalyst May 14, 2007 Versin 1.1 CHAPTER 1 1 Page Naming The pagename variable is used t identify each page that will be tracked n the web site. If the pagename
More informationSoftware Engineering
Sftware Engineering Chapter #1 Intrductin Sftware systems are abstract and intangible. Sftware engineering is an engineering discipline that is cncerned with all aspects f sftware prductin. Sftware Prducts
More informationCisco Tetration Analytics, Release , Release Notes
Cisc Tetratin Analytics, Release 1.102.21, Release Ntes This dcument describes the features, caveats, and limitatins fr the Cisc Tetratin Analytics sftware. Additinal prduct Release ntes are smetimes updated
More informationClassFlow Administrator User Guide
ClassFlw Administratr User Guide ClassFlw User Engagement Team April 2017 www.classflw.cm 1 Cntents Overview... 3 User Management... 3 Manual Entry via the User Management Page... 4 Creating Individual
More informationPrivacy Policy. Information We Collect. Information You Choose to Give Us. Information We Get When You Use Our Services
Privacy Plicy Last Mdified: September 26, 2016 Pictry is a fast and fun way t share memes with yur friends and the wrld arund yu. Yu can send a Pictry game t friends and view the pictures they submit in
More informationTest Pilot User Guide
Test Pilt User Guide Adapted frm http://www.clearlearning.cm Accessing Assessments and Surveys Test Pilt assessments and surveys are designed t be delivered t anyne using a standard web brwser and thus
More informationNew Tenancy Contact - User manual
New Tenancy Cntact - User manual Table f Cntents Abut Service... 3 Service requirements... 3 Required Dcuments... 3 Service fees... 3 Hw t apply fr this service... 4 Validatin Messages... 28 New Tenancy
More informationYour New Service Request Process: Technical Support Reference Guide for Cisco Customer Journey Platform
Supprt Guide Yur New Service Request Prcess: Technical Supprt Reference Guide fr Cisc Custmer Jurney Platfrm September 2018 2018 Cisc and/r its affiliates. All rights reserved. This dcument is Cisc Public
More informationINSTALLING CCRQINVOICE
INSTALLING CCRQINVOICE Thank yu fr selecting CCRQInvice. This dcument prvides a quick review f hw t install CCRQInvice. Detailed instructins can be fund in the prgram manual. While this may seem like a
More informationIMPORTING INFOSPHERE DATA ARCHITECT MODELS INFORMATION SERVER V8.7
IMPORTING INFOSPHERE DATA ARCHITECT MODELS INFORMATION SERVER V8.7 Prepared by: March Haber, march@il.ibm.cm Last Updated: January, 2012 IBM MetaData Wrkbench Enablement Series Table f Cntents: Table f
More informationHP Server Virtualization Solution Planning & Design
Cnsulting & Integratin Infrastructure Services HP Server Virtualizatin Slutin Planning & Design Service descriptin Hewlett-Packard Cnsulting & Integratin Infrastructure Cnsulting Packaged Services (HP
More informationEnrolling onto the Open Banking Directory How To Guide
Enrlling nt the Open Banking Directry Hw T Guide Date: Octber 2017 Versin: v3.0 Classificatin: PUBLIC OPEN BANKING LIMITED ENROLLING ONTO THE OPEN BANKING DIRECTORY Page 1 f 14 Cntents 1. Intrductin 3
More informationOracle FLEXCUBE Universal Banking Development Workbench- Screen Development II
Oracle FLEXCUBE Universal Banking 12.0.3 Develpment Wrkbench- Screen Develpment II August 2013 1 Cntents 1 Preface... 3 1.1 Audience... 3 1.2 Related Dcuments... 3 2 Intrductin... 4 3 Generated Files...
More informationMapping between DFDL 1.0 Infoset and XML Data Model
Stephen M Hansn (IBM) Mapping between DFDL 1.0 Infset and XML Data Mdel Status f This Dcument This wrking draft dcument prvides infrmatin t the OGF cmmunity n the Data Frmat Descriptin Language (DFDL)
More information$ARCSIGHT_HOME/current/user/agent/map. The files are named in sequential order such as:
Lcatin f the map.x.prperties files $ARCSIGHT_HOME/current/user/agent/map File naming cnventin The files are named in sequential rder such as: Sme examples: 1. map.1.prperties 2. map.2.prperties 3. map.3.prperties
More informationEnterprise Chat and Developer s Guide to Web Service APIs for Chat, Release 11.6(1)
Enterprise Chat and Email Develper s Guide t Web Service APIs fr Chat, Release 11.6(1) Fr Unified Cntact Center Enterprise August 2017 Americas Headquarters Cisc Systems, Inc. 170 West Tasman Drive San
More informationBlackBerry Server Installation and Upgrade Service
Server and Upgrade Service Prgram Descriptin ( Install and Upgrade Service Prgram Descriptin ) NOTE: This dcument includes all attached Annexes, is prvided fr infrmatinal purpses nly, and des nt cnstitute
More informationPrivacy Policy concerning the use of the website and the use of cookies
Privacy Plicy cncerning the use f the website and the use f ckies Agria understands the imprtance f the privacy f its custmers and the prtectin f their persnal data. Present plicy utlines the handling
More informationUNMETERED LOAD GUIDELINE - DETERMINATION OF DEVICE LOAD AND ANNUAL ENERGY CONSUMPTION FOR UNMETERED DEVICE TYPES
UNMETERED LOAD GUIDELINE - DETERMINATION OF DEVICE LOAD AND ANNUAL ENERGY CONSUMPTION FOR UNMETERED DEVICE TYPES PREPARED BY: Market Develpment DOCUMENT REF: VERSION: 1.0 DATE: Nvember 2013 STATUS Draft
More informationUsing SPLAY Tree s for state-full packet classification
Curse Prject Using SPLAY Tree s fr state-full packet classificatin 1- What is a Splay Tree? These ntes discuss the splay tree, a frm f self-adjusting search tree in which the amrtized time fr an access,
More informationCreating a TES Encounter/Transaction Entry Batch
Creating a TES Encunter/Transactin Entry Batch Overview Intrductin This mdule fcuses n hw t create batches fr transactin entry in TES. Charges (transactins) are entered int the system in grups called batches.
More informationOverview. Enhancement for Policy Configuration Module
Overview Digital File Plicy Management: Cnfiguratin Mdule Enhancement and Inter-applicatin Plicy Sharing Digital file plicies determine hw digital files are prcessed befre being depsited int RUcre repsitry.
More informationForcepoint UEBA Management of Personal Data
Frcepint UEBA Management f Persnal Data 2018 Frcepint LLC. All Rights Reserved Dcument Classificatin: Public FPWSCMPD-2018MAY24 Frcepint UEBA Management f Persnal Data CONTENTS Disclaimer... 2 General...
More informationEuropean Federated Validation Service Study. Solution Profile MOA Signature Verification software
Eurpean Federated Validatin Service Study Slutin Prfile MOA Signature Verificatin sftware This reprt / paper was prepared fr the IDABC prgramme by: Authr s name: Indicated in the slutin prfile belw, under
More informationInvestor Services Online Quick Reference Guide FTP Delivery
The File Transfer Prtcl (FTP) feature f Investr Services Online enables yu t autmatically transmit any reprt frm Investr Services Online n t yur cmpany s FTP servers thrugh a secure methd f cmmunicatin
More informationCRISP Directory Input File Requirement for MHBE Carriers
CRISP Directry Input File Requirement fr MHBE Carriers March 22, 2013 (Versin 1.2) Table f Cntents Cntents 1. Overview.... 3 1.1 Scpe.... 3 1.2 Purpse.... 3 1.3 Prcess Overview.... 3 1.4 Prcess Flw....
More informationUFuRT: A Work-Centered Framework and Process for Design and Evaluation of Information Systems
In: Prceedings f HCI Internatinal 2007 UFuRT: A Wrk-Centered Framewrk and Prcess fr Design and Evaluatin f Infrmatin Systems Jiajie Zhang 1, Keith A. Butler 2 1 University f Texas at Hustn, 7000 Fannin,
More informationDigital Imaging and Communications in Medicine (DICOM) Supplement 204 TLS Security Profiles
Digital Imaging and Cmmunicatins in Medicine (DICOM) Supplement 204 TLS Security Prfiles Prepared by: DICOM Standards Cmmittee, Wrking Grup 6 1300 N. 17th Street Rsslyn, Virginia 22209 USA VERSION: Public
More informationCustomer Information. Agilent 2100 Bioanalyzer System Startup Service G2949CA - Checklist
This checklist is used t prvide guidance and clarificatin n aspects f the auxillary Startup Service (G2949CA) including Security Pack Installatin and Familiarizatin f yur Agilent 2100 Bianalyzer System
More informationUpdate: Users are updated when their information changes (examples: Job Title or Department). o
Learn Basic User Integratin Batch File Prcessing The Learn Basic User Integratin is designed t manage the rganizatinal changes cmpanies are challenged with n a daily basis. Withut a basic type f integratin,
More informationStock Affiliate API workflow
Adbe Stck Stck Affiliate API wrkflw The purpse f this dcument is t illustrate the verall prcess and technical wrkflw fr Adbe Stck partners wh want t integrate the Adbe Stck Search API int their applicatins.
More informationFACE Trademark Usage Guidelines & Copyright Permissions
FACE Trademark Usage Guidelines & Cpyright Permissins The Open Grup Future Airbrne Capability Envirnment (FACE ) Cnsrtium uses FACE and FACE lg design ("the Trademark(s)) in cnnectin with, but nt limited
More informationCompliance Guardian 4. User Guide
Cmpliance Guardian 4 User Guide Issued September 2015 Table f Cntents What's New in this Guide... 3 Abut Cmpliance Guardian... 4 Cmplementary Prducts... 5 Submitting Dcumentatin Feedback t AvePint... 6
More informationUser Manual. Revised June 18, 2007
User Manual Revised June 18, 2007 TABLE OF CONTENTS 1. AN INTRODUCTION TO NVTREC... 3 2. NVTREC HOME PAGE... 3 3. ACCOUNT REGISTRATION... 5 4. ACCOUNT HOME PAGE... 5 5. FACILITY REGISTRATION... 6 6. EDITING
More informationDepartment of Computer Information Systems KEMU
Advanced DBMS: CISY 423 Department f Cmputer Infrmatin Systems KEMU Database Security OBJECTIVES Database Security and Authrizatin Database Users Creating Users/Accunts in cmmercial DBMS Discretinary Access
More informationElement Creator for Enterprise Architect
Element Creatr User Guide Element Creatr fr Enterprise Architect Element Creatr fr Enterprise Architect... 1 Disclaimer... 2 Dependencies... 2 Overview... 2 Limitatins... 3 Installatin... 4 Verifying the
More informationReporting Requirements Specification
Cmmunity Mental Health Cmmn Assessment Prject OCAN 2.0 - ing Requirements Specificatin May 4, 2010 Versin 2.0.2 SECURITY NOTICE This material and the infrmatin cntained herein are prprietary t Cmmunity
More informationMicrosoft Excel Extensions for Enterprise Architect
Excel Extensins User Guide Micrsft Excel Extensins fr Enterprise Architect Micrsft Excel Extensins fr Enterprise Architect... 1 Disclaimer... 2 Dependencies... 2 Overview... 2 Installatin... 4 Verifying
More informationSetting up the ncipher nshield HSM for use with Kerberized Certificate Authority
Setting up the ncipher nshield HSM fr use with Kerberized Certificate Authrity Intrductin This dcument cntains instructins fr setting up ncipher nshield hardware security mdules (HSM) fr use with the Kerberized
More informationIntegration Framework for SAP Business One
Integratin Framewrk fr SAP Business One DIPrxy Cnfiguratin PUBLIC Glbal Rll-ut Octber 2018, B Zha TABLE OF CONTENTS 1 INTRODUCTION... 3 2 INSTALLATION... 3 3 CONFIGURATION... 5 3.1 Services in Service
More informationFinal Report. Graphical User Interface for the European Transport Model TREMOVE. June 15 th 2010
Date June 15 th 2010 Authrs Charitn Kuridis Dr Mia Fu Dr Andrew Kelly Thmas Papagergiu Client Eurpean Cmmissin DG Climate Actin Directrate A: Internatinal & Climate Strategy Unit A4: Strategy & Ecnmic
More informationAutomatic imposition version 5
Autmatic impsitin v.5 Page 1/9 Autmatic impsitin versin 5 Descriptin Autmatic impsitin will d the mst cmmn impsitins fr yur digital printer. It will autmatically d flders fr A3, A4, A5 r US Letter page
More informationKaltura MediaSpace Installation and Upgrade Guide. Version: 5.0
Kaltura MediaSpace Installatin and Upgrade Guide Versin: 5.0 Kaltura Business Headquarters 5 Unin Square West, Suite 602, New Yrk, NY, 10003, USA Tel.: +1 800 871 5224 Cpyright 2013 Kaltura Inc. All Rights
More informationStudent participation Students can register online, track progress, express interest and demonstrate proficiency.
Page 1 f 31 Intrductin Our MAG 10 Learning Management System (LMS) is a Web based technlgy used t plan, implement, and assess a specific learning prcess. LMS is a training prgram which prvides cmplete
More informationPassword Management Guidelines
Unified Cntract System Passwrd Management Guidelines Versin 2.5 Revisin date: 26-06-2006 Authr:J.Thiyagarajan Cpyright 2006 by Hexaware Technlgies Limited All rights reserved. All text and figures included
More informationTL 9000 Quality Management System. Measurements Handbook. SFQ Examples
Quality Excellence fr Suppliers f Telecmmunicatins Frum (QuEST Frum) TL 9000 Quality Management System Measurements Handbk Cpyright QuEST Frum Sftware Fix Quality (SFQ) Examples 8.1 8.1.1 SFQ Example The
More informationEuropean Component Oriented Architecture (ECOA ) Collaboration Programme: Architecture Specification Part 3: Mechanisms
Eurpean Cmpnent Oriented Architecture (ECOA ) Cllabratin Prgramme: Architecture Specificatin Part 3: Mechanisms BAE Ref N: IAWG-ECOA-TR-007 Dassault Ref N: DGT 144482-F Issue: 6 Prepared by BAE Systems
More informationUNSW Technology Policy:
UNSW Technlgy Plicy: UNSW Plicy Respnsible Officer Cntact Officer Apprving Authrity UNSW Data Netwrk Cnnectin Plicy Chief Infrmatin Officer Manager Infrastructure Services Supprt UNSW IT Services Ph: x
More informationAdministration. User Guide
Administratin User Guide Table f Cntents Administratin at a Glance... 4 Cmpany Details... 4 Users... 5 Accunt Maintenance... 5 Search Accunts... 5 Edit... 6 Creating a New User... 7 Field Help... 8 Assigning
More informationSimple Object Access Protocol (SOAP)
Simple Object Access Prtcl (SOAP) Languages fr web Prf. Eugeni Di Sciasci Master s Degree Curse in Cmputer Engineering - (A.Y. 2016/2017) Web service architecture (1/2) A ppular interpretatin f Web services
More informationEphorus Integration Kit
Ephrus Integratin Kit Authr: Rbin Hildebrand Versin: 2.0 Date: May 9, 2007 Histry Versin Authr Cmment v1.1 Remc Verhef Created. v1.2 Rbin Hildebrand Single Sign On (Remved v1.7). v1.3 Rbin Hildebrand Reprting
More informationEMV. Terminal Type Approval Contactless Product. Administrative Process. Version 2.6 February 2017
EMV Terminal Type Apprval Cntactless Prduct Administrative Prcess Versin 2.6 February 2017 Legal Ntice Page i / v Legal Ntice This dcument summarizes EMVC s present plans fr evaluatin services and related
More informationTechnical Paper. Installing and Configuring SAS Environment Manager in a SAS Grid Environment
Technical Paper Installing and Cnfiguring SAS Envirnment Manager in a SAS Grid Envirnment Last Mdified: Octber 2016 Release Infrmatin Cntent Versin: Octber 2016. Trademarks and Patents SAS Institute Inc.,
More informationTechnical Paper. Installing and Configuring SAS Environment Manager in a SAS Grid Environment with a Shared Configuration Directory
Technical Paper Installing and Cnfiguring Envirnment Manager in a Grid Envirnment with a Shared Cnfiguratin Directry Last Mdified: January 2018 Release Infrmatin Cntent Versin: January 2018. Trademarks
More informationDNS (Domain Name Service)
mywbut.cm DNS (Dmain Name Service) The internet primarily uses IP addresses fr lcating ndes. Hwever, its humanly nt pssible fr us t keep track f the many imprtant ndes as numbers. Alphabetical names as
More informationOmniPCX Record PCI Compliance 2.3
S T R A T E G I C W H I T E P A P E R OmniPCX Recrd PCI Cmpliance 2.3 Alcatel-Lucent Enterprise Services Page 1/11 OmniPCX-Recrd R2.3 PCI Cmpliance White Paper Legal ntice Alcatel, Lucent, Alcatel-Lucent
More informationApp Center User Experience Guidelines for Apps for Me
App Center User Experience Guidelines fr Apps fr Me TABLE OF CONTENTS A WORD ON ACCESSIBILITY...3 DESIGN GUIDELINES...3 Accunt Linking Prcess... 3 Cnnect... 5 Accept Terms... 6 Landing Page... 6 Verificatin...
More informationPublic Documents Registration of authorities in IMI Guide for Access managers
Public Dcuments Registratin f authrities in IMI Guide fr Access managers 6th August 2018 Versin 2 PUBLIC DOCUMENTS -REGISTRATION GUIDE Dcument revisins Date Versin number Dcument changes 29/06/2018 0.1
More informationLiveEngage and Microsoft Dynamics Integration Guide Document Version: 1.0 September 2017
LiveEngage and Micrsft Dynamics Integratin Guide Dcument Versin: 1.0 September 2017 Cntents Intrductin... 3 Step 1: Sign Up... 3 CRM Widget Signing Up... 3 Step 2: Cnfiguring the CRM Widget... 4 Accessing
More informationThe following screens show some of the extra features provided by the Extended Order Entry screen:
SmartFinder Orders Extended Order Entry Extended Order Entry is an enhanced replacement fr the Sage Order Entry screen. It prvides yu with mre functinality while entering an rder, and fast access t rder,
More informationHow to use DCI Contract Alerts
Hw t use DCI Cntract Alerts Welcme t the MyDCI Help Guide series Hw t use DCI Cntract Alerts In here, yu will find a lt f useful infrmatin abut hw t make the mst f yur DCI Alerts which will help yu t fully
More informationEXBO e-signing Automated for scanned invoices
EXBO e-signing Automated for scanned invoices Signature Policy Document OID: 0.3.2062.7.2.1.12.1.0 Approval Status: Approved Version: 1.0 Page #: 1 of 13 1. Introduction 1.1. Scope This document covers
More informationTPCH Data Sharing Policies and Procedures
TPCH Data Sharing Plicies and Prcedures Intrductin: The TPCH Data Sharing Plicies and Prcedures were created based n the CC apprved Pima Cunty: HMIS Data Sharing Plan apprved by TPCH bard n February 24,
More informationMission Antyodaya Android Mobile & Web Application. Frequently Asked Questions
Missin Antydaya Andrid Mbile & Web Applicatin Frequently Asked Questins Natinal Infrmatics Centre v1.0 Missin Antydaya Mbile & Web Applicatin 1 Intrductin What is the name f Mbile applicatin? Earlier it
More information