LogoLogo
  • Signature Validation Service
    • Trust Service Provider
    • Electronic and digital signatures
  • Digital signatures concepts
    • Simplified PKI model
    • Digital certificate
    • CRLs and OCSP
    • Trusted List (TL)
    • Certificate Chain and Certification Path Validation
  • Document Processing
    • Signature creation
    • Signature validation
    • Timestamping
    • Multiple signatures
  • Signature Applicability Rules / Signature Policy
  • Deployment
    • Bare-metal
    • Kubernetes
    • Standalone
    • Remarks
  • Administration guide
    • SimpleSign
    • Trust1Connector
    • DSS API Service
    • DSS API Utilities service
  • Architecture component overview
  • AdES validation constraints/policy
Powered by GitBook
On this page
  1. Digital signatures concepts

Simplified PKI model

Last updated 1 year ago

A (simplified) description of the PKI model and where DSS is involved in that model is given in the figure below.

In this simplified model, a PKI is composed of:

  • Certificates;

  • Certification Authorities (CA) issuing the certificates;

  • Certificate Revocation Lists (CRL) issued by CAs; and

  • OCSP responders providing information on the status of certificates.

In turn, DSS within that model, can be used to implement Signature creation applications (SCA) and/or Signature Validation Applications (SVA)

Each of those concepts are further detailed in the next sections.