LogoLogo
  • Signature Validation Service
    • Trust Service Provider
    • Electronic and digital signatures
  • Digital signatures concepts
    • Simplified PKI model
    • Digital certificate
    • CRLs and OCSP
    • Trusted List (TL)
    • Certificate Chain and Certification Path Validation
  • Document Processing
    • Signature creation
    • Signature validation
    • Timestamping
    • Multiple signatures
  • Signature Applicability Rules / Signature Policy
  • Deployment
    • Bare-metal
    • Kubernetes
    • Standalone
    • Remarks
  • Administration guide
    • SimpleSign
    • Trust1Connector
    • DSS API Service
    • DSS API Utilities service
  • Architecture component overview
  • AdES validation constraints/policy
Powered by GitBook
On this page

Digital signatures concepts

This section aims to briefly introduce PKI-based digital signature concepts, more specifically concepts related to digital signatures supported by X.509 digital certificates issued by Certification Authorities (CA), and making use of asymmetric cryptography. Such signatures are the kind of signatures that are handled in DSS.

For the rest of this section, the creation of a digital signature value is assumed to be the encryption of the digest of a data object using a private key for which there exists a corresponding X.509 public key certificate issued by a CA.

For the purpose of introducing those concepts, we will first provide a simplified description of the PKI model in which digital signatures are created. The goal of this model is not to provide an accurate and exhaustive description and definition of a PKI but to provide a basis for introducing the main PKI concepts that are useful to DSS users.

Last updated 6 months ago