The value of a legal evidence is ackwnoledged all the more if it also satisfies criteria of durability and portability. Because of the way the evidences are build (it binds the content and the exchanging parties identities with the event it relates to) and by complying to technology standards, provides you with the insurance that you will always be able to use your evidences in a court, at anytime, independantly from our service !
Below is a list of standards strictly followed :
CEN/ISSS – European Committee for Standardization/ Information Society Standardization System
CWA 14169 – Secure Signature-creation devices “EAL 4+”
CWA 14170 – Security requirements for signature creation applications
CWA 14171 – General guidelines for electronic signature verification
CWA 14365 – Guide on the Use of Electronic Signatures – Part 1: Legal and Technical Aspects
NIST – National Institute of Standards and Technology
FIPS Pub 186: Digital Signature Standard. 19 May 1994.
NIST – FIPS 140-1 Level 2 and 3 physical protection certification
Request for Comments (RFCs)
Housley, R., Polk, W., Ford, W. and D. Solo, “Internet X.509 Public Key Infrastructure: Certificate and CRL Profile”, RFC 3280, April 2002
Housley, R., “Cryptographic Message Syntax”, RFC 3852, July 2004
Housley, R., “Cryptographic Message Syntax (CMS) Algorithms”, RFC 3370, August 2002
Kaliski, B., “PKCS #7: Cryptographic Message Syntax, Version 1.5.”, RFC 2315, March 1998
CCITT. Recommendation X.209: Specification of Basic Encoding Rules for Abstract Syntax Notation One (ASN.1).1988
RSA Security – Public-Key Cryptography Standards (PKCS)
PKCS #1: RSA Cryptography Standard
PKCS #3: Diffie-Hellman Key Agreement Standard
PKCS #7: Cryptographic Message Syntax Standard
PKCS #10: Certification Request Syntax Standard
PKCS #11: Cryptographic Token Interface Standard
Great post, I bet a lot of work and research went into this article.
Thank You Ruthe.