eIDAS

eIDAS (for “electronic IDentification, Authentication and trust Services”) is an European Union regulation.

eIDAS is regulated in EU Regulation 910/2014, that derogated EU Directive 1999/93/CE.

It is completely applied since 1 July 2016.

Types of certifications:

  • Physical Person
  • Representative of Juridical Person
  • Representative of entity without juridical representation
  • Representative of single and joint administrator

Each member states is compelled to choose a supervision organization. In the case of Spain in 2018, it is the Secretaría de Estado para la Sociedad de la Información y la Agenda
Digital, from the Ministerio de Energía, Turismo y Agenda Digital.

Electronic Signature Formats compatible with eIDAS

eIDAS compelled the creation of electronic signature formats in order to comply with eIDAS regulation:

  • XAdES
  • CAdES
  • PAdES

There is no signature format compatible with PKCS #7, as it was considered outdated when compared to CMS and it did not include some necessary compatibilities.

XAdES

XML Advanced Electronic Signatures (XAdES) is a set of extensions to XML-DSig recommentation in order to be compliant with eIDAS.

There are different XAdES profiles, in a non-extensive list:

  1. XAdES-BES
  2. XAdES-EPES
  3. XAdES-T
  4. XAdES-C
  5. XAdES-X-L

XAdES-X-L includes certificates and revocation lists (OCSP queries or CRLs) to be able to verify the signed document in the future even if the original source is not available.

XAdES is used to sign small files (up to 4 MB).

“FirmaXadesNet” is a .NET library in C# to generate XAdES signatures. You can find it on this external link.

There are at least the following Java implementations of XAdES:

  • Java XML Digital Signature API
  • Apache Santuario
  • XAdES4j
  • eID Digital Signature Service

CAdES

CMS Advanced Electronic Signatures (CAdES) is a set of extensions to Cryptographic Messagin System (CMS) that are compliant with eIDAS.

CAdES is used to sign big files (more than 4 MB).

PAdES

PDF Advanced Electronic Signatures (PAdES) that are compliant with eIDAS.

PAdES is used to check the information of both signature and content within PDFs.

You might also be interested in…

Leave a Reply

Your email address will not be published. Required fields are marked *