When electronic signature becomes a information services ... - IPSec
When electronic signature becomes a information services ... - IPSec
When electronic signature becomes a information services ... - IPSec
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
systems. 69 The European Interoperability Framework 70 is another good set of guidelines that<br />
can be used to form usable <strong>services</strong> and – eventually – to start making individual lives easier.<br />
© Paweł Krawczyk, 2010<br />
Paweł Krawczyk is an <strong>information</strong> security consultant based in Krakow, Poland; he has<br />
experience in design and assessment of <strong>information</strong> security systems; he is holder of CISSP<br />
certificate.<br />
http://ipsec.pl/<br />
pawel.krawczyk@hush.com<br />
69<br />
The document contains a consistent sequence of organisational and technical controls, starting from registration of users up to their<br />
authentication as they use the system. All typical techniques are taken into account – passwords, one time passwords, software <strong>signature</strong> and<br />
hardware <strong>signature</strong>. All are assigned relative security strengths. A list of business processes is produced and assigned relative security<br />
requirements. At the end, these two lists are matched.<br />
70<br />
European Interoperability Framework 2.0 (draft) http://ec.europa.eu/idabc/en/document/7728