Digital Signature Signing Services

Digital Signature Signing Services

There are about two types of digital signing services that Krish IT provides. They are as follows

Client Side Signing Solution

Client Side Signing Solution Web sockets

Client Side Signing Solution Web socket based solution is considered more reliable and easy to implement in all kind of browsers. Krish IT developed a solution based on web socket to provide digital signature functionality to any web socket compatible web browser.

It is a web socket server over TCP protocol. It listens on a designated port number on local IP address which receives web socket connection from browser. Based on the type of the service request from browser, it performs different operation and returns the result. All request and response are in the format of JSON

How does it work?

Step 1 - Integration

Step 2 - Working

Server Side Signing Solution

Server Side Signing Solution server side component is the service module that generates keys based on the data provided by the core application. The Server Side Signing Solution application is tightly integrated with Hardware Security Module for user key access. Server Side Signing Solution module helps the core application to encrypt and decrypt data in any format. The signer module works at the server side enabling the core application to get the documents/data signed at the server level. This is a highly scalable application can be integrated to Billing application through web services. Signer server can also be configured to provide additional level of security such as authentication of signing request originator and password protect keys stored in HSM device.


Hardware Security Module (HSM)

A hardware security module (HSM) is a dedicated crypto processor that is specifically designed for the protection of the crypto key lifecycle. Hardware security modules act as trust anchors that protect the cryptographic infrastructure of some of the most security-conscious organizations in the world by securely managing, processing, and storing cryptographic keys inside a hardened, tamper-resistant device.

HSM is highly secured way of storing digital signature certificate of an end user. These are highly scalable appliance which can sign huge documents per second. These appliances are specifically meant for secure storage of keypair as well as digital signature certificate of the user. The appliance is FIPS 140-2 level 3 certified. The Server Side Signing Solution application is tightly coupled with the HSM and interacts with HSM through PKCS#11 interfacing.

The HSM is a physical appliance and which can be connected over a network.

Security at a Glance: