...
The ability for anyone to sign
Jürgen: one-time signature with OTP (i.e enter code sent via SMS) - weaker security
Jürgen: signature with hardware device (smart card, phone etc) - stronger security
Use ID BB to authorize and sign a document.
Jürgen: ID BB is probably good for cloud platforms (i.e signing portals)
Jürgen: Should be possible to sign with standalone app, without ID BB
Auditability
Validatable
Revoke signaturescertificate.
Jürgen: Is it meant to be revoke certificates? Revoking signatures I think very hard to do.
Highly secure.
Preservation of esignature
Jürgen: Non-Repudiation
Jürgen: Lawful/qualified e-signatures (i.e made equal to hand written handwritten signatures by law)
Assumptions:
Has an ekyc or authentication service.
Jürgen: Registration/KYC should be possible to be performed online or face to face
Jürgen: Should be possible to performed via phone call/SMS
Bulk signing is out of scope.
Collaboration in the signature is limited by the type of the document and the support of the document.
There should be levels of how strongly KYS is done/
Challenges:
Central service vs Distributed model
What if there is no eKyc/auth available?
Phone-based signature?
...
Government signing the document G2P – Priority
End user signing the document. P2G - Priority
Bussiness signing the document. B2B or B2C - last
Key principles:
Flow:
Sign using a cryptographic key and explain
...
Sample Use cases: - Priority 1
Use case 1: Payroll signature - Can we have the payroll statement signed before its sent for the payment block.
Use case 2:
Kassy use cases
Local signature - Cryptographic token
Distance signature - sign your own
Before you get a key you should get the kyc from the certificate authority.
Gtax generates the key and certificate to sign and then returns the application.
...