Versions Compared

Old Version 14

changes.mady.by.user sasi

Saved on

compared with

New Version 15

changes.mady.by.user sasi

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Government signing the document G2P – Priority

  • The end user signs the document. P2G - Priority

  • Business signing the document. B2B or B2C, G2B, B2G - last

Objective:

...

  • Quantum resistance - Not in scope as of now.

Objective:

  • The ability for anyone to sign

    • One authentication based E-signature

      • OTP

      • Biometrics

      • PIN

    • One Time Signature

      • WOTS+ - Not supported

      • XMSS - Not supported

    • Long-term signature

      • Smart cards

      • Smart Phone.

    • HD Signature

      • Smart phonePhone

  • Use ID BB to authorize and sign a document.

    • Should be possible to sign with a standalone app, without ID BB.

  • Auditability

  • Validatable

  • Revoke certificate.

  • Highly secure.

  • Preservation of E-Signature

  • Non-Repudiation

  • Long-term validatable.

  • Inclusive

    • Supports multiple social economic backgrounds.

  • Presentation

    • Can we support multiple signature types and let verifiers provide presentation layers?

Assumptions:

  • Has an ekyc or authentication service.

    • Registration/KYC should be possible to be performed online or face to face

    • Should be possible to perform via phone call/SMS

  • Bulk signing is out of scope.

  • Collaboration in the signature is limited by the type of the document and the support of the document.

  • Countries are expected to have digital signature law’s that consider e-signatures as equivalent to handwritten signatures.

  • No support for printing the digital document and validating the signature.

Challenges:

  • Central service vs Distributed model

  • What if there is no eKyc/auth available?

  • Phone-based signature?

  • Online and/or Offline validation

  • Can we use JSON-LD signatures so we can validate a linked PDF or HTML or image etc.

Key principles:

Flow:

Sign using a cryptographic key and explain

...

  • Sign you invoice.

  • Sign an RFP

  • Sign a business agreement.

Use case 2:

Use case 3: Signing and verifying a document using a desktop computer or mobile phone

Kassy use cases

  • Local signature - Cryptographic token

  • Distance signature - sign your own

  • Before you get a key you should get the kyc from the certificate authority.

  • Gtax generates the key and certificate to sign and then returns the application.

...