ДСТУ ETSI TS 119 432:2022 Електронні підписи та інфраструктури (ESI). Протоколи віддаленого створення цифрового підпису (ETSI TS 119 432 V1.2.1 (2020-10), IDT)
ДСТУ ETSI TS 119 432:2022
(ETSI TS 119 432 V1.2.1 (2020–10), IDT)
Електронні підписи та інфраструктури (ESI).
Протоколи віддаленого створення цифрового підпису
Не є офіційним виданням.
Офіційне видання розповсюджує національний орган стандартизації
(ДП «УкрНДНЦ» http://uas.gov.ua)
Contents
Intellectual Property Rights
Foreword
Modal verbs terminology
Introduction
1 Scope
2 References
2.1 Normative references
2.2 Informative references
3 Definition of terms, symbols and abbreviations
3.1 Terms
3.2 Symbols
3.3 Abbreviations
4 Signature creation process, service decomposition
4.1 Signature creation process steps and data elements
4.2 Service main components and interfaces
4.3 Signature Creation Application
4.3.1 Signer's document and hashing
4.3.2 DTBS composition and formatting
4.3.3 DTBS preparation
4.3.4 SDO composer
4.4 Server Signing Application
4.4.1 Signature creation
4.4.1.1 Introduction
4.4.1.2 Signature activation
4.4.1.3 Signature creation by SCDev
5 Architectures for server signing
5.1 Overview
5.2 Introduction to architectures
5.3 Remote signing services with SCAL1
5.4 Remote signing services with SCAL2
5.5 Security, integrity and confidentiality
6 Protocol profiles specification
6.1 Introduction
6.2 OASIS DSS-X XML related protocol
6.3 CSC JSON related protocol
7 Protocol components definitions
7.1 Introduction
7.2 Component for asynchronous/synchronous operation mode selection
7.2.1 Component semantics
7.2.2 JSON related component
7.2.3 XML related component
7.2.4 Processing model
7.3 Component for identification of the request
7.3.1 Component semantics
7.3.2 JSON related component
7.3.3 XML related component
7.4 Component for credential authorization
7.4.1 Component semantics
7.4.2 JSON related component
7.4.3 XML related component
7.5 Component for defining optional data to be returned
7.5.1 Component semantics
7.5.2 JSON related component
7.5.3 XML related component
7.5.4 Processing model
7.6 Component for defining the validity period for asynchronous requests
7.6.1 Component semantics
7.6.2 JSON related component
7.6.3 XML related component
7.6.4 Processing model
7.7 Component for the client application authentication
7.7.1 Component semantics
7.7.2 JSON related component
7.7.3 XML related component
7.8 Component for identifying signature credentials
7.8.1 Component semantics
7.8.2 JSON related component
7.8.3 XML related component
7.9 Component for language selection
7.9.1 Component semantics
7.9.2 JSON related component
7.9.3 XML related component
7.10 Component for specifying the contents from certificate info to be returned
7.10.1 Component semantics
7.10.2 JSON related component
7.10.3 XML related component
7.10.4 Processing model
7.11 Component for managing digital signatures transactions
7.11.1 Component semantics
7.11.2 JSON related component
7.11.3 XML related component
7.11.4 Processing model
7.12 Component for service policy selection
7.12.1 Component semantics
7.12.2 JSON related component
7.12.3 XML related component
7.13 Component for signature creation policy selection
7.13.1 Component semantics
7.13.2 JSON related component
7.13.3 XML related component
7.14 Component for optional signature attributes/properties selection
7.14.1 Component semantics
7.14.2 JSON related component
7.14.3 XML related component
7.14.4 Processing model
7.15 Component for protocol identifier
7.15.1 Component semantics
7.15.2 JSON related component
7.15.3 XML related component
7.16 Component for requesting specific signature formats
7.16.1 Component semantics
7.16.2 JSON related component
7.16.3 XML related component
7.17 Component for signer identification
7.17.1 Component semantics
7.17.2 JSON related component
7.17.3 XML related component
7.18 Component for specifying response URL
7.18.1 Component semantics
7.18.2 JSON related component
7.18.3 XML related component
7.18.4 Processing model
7.19 Component for submitting document(s) or hash(es) to be signed
7.19.1 Component semantics
7.19.2 JSON related component
7.19.3 XML related component
7.20 Component for returning service information
7.20.1 Component semantic
7.20.2 JSON related component
7.20.3 XML related component
7.21 Component for returning signed documents or signatures
7.21.1 Component semantics
7.21.2 JSON related component
7.21.3 XML related component
7.22 Component for returning signing credential information
7.22.1 Component semantics
7.22.2 JSON related component
7.22.3 XML related component
7.23 Component for returning the list of the signing certificate(s)
7.23.1 Component semantics
7.23.2 JSON related component
7.23.3 XML related component
7.24 Component for notifying operation result(s)
7.24.1 Component semantics
7.24.2 JSON related component
7.24.3 XML related component
7.25 Component for service policy identification
7.25.1 Component semantics
7.25.2 JSON related component
7.25.3 XML related component
7.26 Component for identification of the response
7.26.1 Component semantics
7.26.2 JSON related component
7.26.3 XML related component
7.27 Component for signature creation policy identification
7.27.1 Component semantics
7.27.2 JSON related component
7.27.3 XML related component
7.28 Component for returning credential authorization mode
7.28.1 Component semantics
7.28.2 JSON related component
7.28.3 XML related component
7.29 Component for returning digital signature value(s)
7.29.1 Component semantics
7.29.2 JSON related component
7.29.3 XML related component
7.30 Component for returning sole control assurance level required
7.30.1 Component semantics
7.30.2 JSON related component
7.30.3 XML related component
8 Remote signature creation messages
8.1 Introduction
8.2 AdES signatures creation messages
8.2.1 Request message (A)
8.2.1.1 Component for requesting AdES signatures creation
8.2.1.2 JSON related component
8.2.1.3 XML related component
8.2.2 Response message (B)
8.2.2.1 Component for responding to AdES signatures creation requests
8.2.2.2 JSON related component
8.2.2.3 XML related component
8.3 DSVs creation messages
8.3.1 Request message (C)
8.3.1.1 Component for requesting DSVs creation
8.3.1.2 JSON related component
8.3.1.3 XML related component
8.3.2 Response message (D)
8.3.2.1 Component for responding to DSVs creation requests
8.3.2.2 JSON related component
8.3.2.3 XML related component
8.4 Messages for asynchronous processing (E)
8.4.1 Component for managing pending-requests
8.4.2 JSON related component
8.4.3 XML related component
8.5 Signing certificates list messages
8.5.1 Request message (F)
8.5.1.1 Component for requesting signing certificates list
8.5.1.2 JSON related component
8.5.1.3 XML related component
8.5.2 Response message (G)
8.5.2.1 Component for responding to certificates list requests
8.5.2.2 JSON related component
8.5.2.3 XML related component
8.6 Credential information retrieval messages
8.6.1 Request message (H)
8.6.1.1 Component for requesting credential information
8.6.1.2 JSON related component
8.6.1.3 XML related component
8.6.2 Response message (I)
8.6.2.1 Component for responding to credential information requests
8.6.2.2 JSON related component
8.6.2.3 XML related component
8.7 Service information messages (J)
8.7.1 Request message (J)
8.7.1.1 Component for requesting service information
8.7.1.2 JSON related component
8.7.1.3 XML related component
8.7.2 Response message (K)
8.7.2.1 Component for responding to service information requests
8.7.2.2 JSON related component
8.7.2.3 XML related component
8.8 Component use summary
Annex A (normative): XML and JSON Schema files
A.1 JSON Schema file location for "$schema" "http://uri.etsi.org/19432/v1.2.1/json#"
A.2 XML Schema file location for namespace http://uri.etsi.org/19432/v1.1.1#
Annex B (informative): OpenAPI description file
Annex C (informative): Bibliography
Annex D (informative): Change History
History
Повна версія документа доступна в тарифі «ВСЕ ВРАХОВАНО».
