Encryption Service
"eGov-Bus is funded by the European Community under the Information Society Technologies priority of the Sixth Framework Programme"
Motivation
The Module encryption service for secure storage of personal citizen data, in the following also referred to as encryption service, enables data protection legislation compliant secure storage of personal data of citizens. The encryption service provides a means to achieve confidentiality of arbitrary input data by cryptographic encryption using state-of-the-art algorithms and data formats. In the overall eGov-Bus scenario it is primarily the advanced process generator (APG) that requests encryption of personal citizen data for intermediate (short term) storage. The security requirement addressed by the encryption service is:
- APG wants to protect sensitive personal User information against system attackers.
Description
The encryption service provides means to encrypt arbitrary data utilizing the intended recipients’ public keys. An encryption standards compliant structure containing (or referencing) the encrypted content is created by the service. The encryption service further provides means to decrypt standard compliant encrypted data using registered secret keys. The encrypted data and decryption keys must be provided to the service. The following encryption formats are supported:
| Format | Specification |
|---|---|
| XML encryption syntax | [XMLEnc] |
| CMS encryption syntax | [RFC 3369] |
| CCE encryption format | [CCE] |
XML Encryption Syntax as well as CMS encryption syntax are widely used and accepted encryption standards. The CCE (Citizen Card Encrypted) encryption standard was specified in the context of Austrian eGovernment applications to be used with the Austrian citizen card. It is still evolving and serves only as complementary encryption format within eGov-Bus (for example, to be used as backup encryption format).
Downloads
Please note the open source license terms.
| Title | Version | Date | |
|---|---|---|---|
 |
Specification (Specification of the encryption service) |
1.0.0 | 2007-05-16 |
|
Documentation | 1.0.0 | 2007-08-10 |
 |
XSD Schemas and WSDL file (XSD Schemas and WSDL file for separate download) |
1.0.5 | 2008-04-08 |
|
Release (.war) | 1.0.5 | 2008-04-08 |
|
Release (.jar) | 1.0.5 | 2008-04-08 |
|
Source code | 1.0.5 | 2008-04-08 |
History
| Bemerkung | Version | Datum |
|---|---|---|
| XSD Schemas and WSDL file (XSD Schemas and WSDL file for separate download) |
1.0.0 | 2007-05-16 |
| Release | 1.0.0 | 2007-08-03 |
| Source code | 1.0.0 | 2007-08-03 |
References
- [RFC 3369] RFC 3369: Cryptographic Message Syntax (CMS), http://www.ietf.org/rfc/rfc3369.txt
- [XMLEnc] XML Encryption Syntax and Processing. W3C Recommendation http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/
- [CCE] Citizen Card Encrypted 1.0.0 file format specification, http://demo.a-sit.at/buergerkarte/cce_tool/resources/CCE-Dateiformat.pdf