Assinaturas de Longo Prazo
| Autor(a) principal: | |
|---|---|
| Data de Publicação: | 2015 |
| Tipo de documento: | Dissertação |
| Idioma: | eng |
| Título da fonte: | Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| Texto Completo: | https://hdl.handle.net/10216/88027 |
Resumo: | Digital signatures are a requirement for the future. Information in general and documents in particular (the standard being PDF) is increasingly becoming more about bits and bytes and less about paper. But the only way to ensure that this happens successfully is to make a digital signature in all things as equivalent to a traditional one. A signature in itself has undergone major modification throughout the time, from wax seals to hand-written signatures. The next step is digitalization. However, simple digital signatures are not sufficient, since they have a very limited lifespan. This thesis approaches the method of long-term digital signatures in a way that, since there is no definite evaluation between the standards that exist today, there is no clear way to define which one is the best. Hence, one of the goals will be to try and demonstrate in which situation should each one be used and try and make it more definite which one is preferable. Since there is no single or "best" standard, there isn't also a software that can be defined as the one to use where long-term digital signatures are concerned. After a series of tests using the three standards, this dissertation proposes not only a case-by-case use of each standard, but also a software that was developed to aid in the growth of digital signatures as the main method of signing documents and files. The main conclusions are that CAdES is the by-default standard to be used. It is both faster and occupies the least amount of space on disk, which, even though a one for one comparison with XAdES doesn't seem a lot, if we consider thousands of files to be signed, it can reach significant savings. One main disadvantage is that CAdES signatures can't be seen in the file. An mp3 file with a signature will appear as a simple mp3 file. Which is not the case of a XAdES signature, since the output is in XML language. This format can break the functionality of the files, though, if attached to them, hence we save it for XML files, since it made sense to maintain the same formatting scheme of the original file. PAdES is used in one and only one circumstance: to sign PDF files in which the signature is to be included inside the PDF. PAdES uses CAdES as its main signature creation method, but it makes it so that PDF readers that show signatures can display the ones created using PAdES. This is specially important for enterprise use and official documents. |
| id |
RCAP_32f69400d1247c45004951f444731d35 |
|---|---|
| oai_identifier_str |
oai:repositorio-aberto.up.pt:10216/88027 |
| network_acronym_str |
RCAP |
| network_name_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| repository_id_str |
7160 |
| spelling |
Assinaturas de Longo PrazoEngenharia electrotécnica, electrónica e informáticaElectrical engineering, Electronic engineering, Information engineeringDigital signatures are a requirement for the future. Information in general and documents in particular (the standard being PDF) is increasingly becoming more about bits and bytes and less about paper. But the only way to ensure that this happens successfully is to make a digital signature in all things as equivalent to a traditional one. A signature in itself has undergone major modification throughout the time, from wax seals to hand-written signatures. The next step is digitalization. However, simple digital signatures are not sufficient, since they have a very limited lifespan. This thesis approaches the method of long-term digital signatures in a way that, since there is no definite evaluation between the standards that exist today, there is no clear way to define which one is the best. Hence, one of the goals will be to try and demonstrate in which situation should each one be used and try and make it more definite which one is preferable. Since there is no single or "best" standard, there isn't also a software that can be defined as the one to use where long-term digital signatures are concerned. After a series of tests using the three standards, this dissertation proposes not only a case-by-case use of each standard, but also a software that was developed to aid in the growth of digital signatures as the main method of signing documents and files. The main conclusions are that CAdES is the by-default standard to be used. It is both faster and occupies the least amount of space on disk, which, even though a one for one comparison with XAdES doesn't seem a lot, if we consider thousands of files to be signed, it can reach significant savings. One main disadvantage is that CAdES signatures can't be seen in the file. An mp3 file with a signature will appear as a simple mp3 file. Which is not the case of a XAdES signature, since the output is in XML language. This format can break the functionality of the files, though, if attached to them, hence we save it for XML files, since it made sense to maintain the same formatting scheme of the original file. PAdES is used in one and only one circumstance: to sign PDF files in which the signature is to be included inside the PDF. PAdES uses CAdES as its main signature creation method, but it makes it so that PDF readers that show signatures can display the ones created using PAdES. This is specially important for enterprise use and official documents.2015-02-272015-02-27T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisapplication/pdfhttps://hdl.handle.net/10216/88027TID:201317494engPedro Rui Figueiredo da Cunhainfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2023-11-29T13:47:41Zoai:repositorio-aberto.up.pt:10216/88027Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-19T23:47:46.980765Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse |
| dc.title.none.fl_str_mv |
Assinaturas de Longo Prazo |
| title |
Assinaturas de Longo Prazo |
| spellingShingle |
Assinaturas de Longo Prazo Pedro Rui Figueiredo da Cunha Engenharia electrotécnica, electrónica e informática Electrical engineering, Electronic engineering, Information engineering |
| title_short |
Assinaturas de Longo Prazo |
| title_full |
Assinaturas de Longo Prazo |
| title_fullStr |
Assinaturas de Longo Prazo |
| title_full_unstemmed |
Assinaturas de Longo Prazo |
| title_sort |
Assinaturas de Longo Prazo |
| author |
Pedro Rui Figueiredo da Cunha |
| author_facet |
Pedro Rui Figueiredo da Cunha |
| author_role |
author |
| dc.contributor.author.fl_str_mv |
Pedro Rui Figueiredo da Cunha |
| dc.subject.por.fl_str_mv |
Engenharia electrotécnica, electrónica e informática Electrical engineering, Electronic engineering, Information engineering |
| topic |
Engenharia electrotécnica, electrónica e informática Electrical engineering, Electronic engineering, Information engineering |
| description |
Digital signatures are a requirement for the future. Information in general and documents in particular (the standard being PDF) is increasingly becoming more about bits and bytes and less about paper. But the only way to ensure that this happens successfully is to make a digital signature in all things as equivalent to a traditional one. A signature in itself has undergone major modification throughout the time, from wax seals to hand-written signatures. The next step is digitalization. However, simple digital signatures are not sufficient, since they have a very limited lifespan. This thesis approaches the method of long-term digital signatures in a way that, since there is no definite evaluation between the standards that exist today, there is no clear way to define which one is the best. Hence, one of the goals will be to try and demonstrate in which situation should each one be used and try and make it more definite which one is preferable. Since there is no single or "best" standard, there isn't also a software that can be defined as the one to use where long-term digital signatures are concerned. After a series of tests using the three standards, this dissertation proposes not only a case-by-case use of each standard, but also a software that was developed to aid in the growth of digital signatures as the main method of signing documents and files. The main conclusions are that CAdES is the by-default standard to be used. It is both faster and occupies the least amount of space on disk, which, even though a one for one comparison with XAdES doesn't seem a lot, if we consider thousands of files to be signed, it can reach significant savings. One main disadvantage is that CAdES signatures can't be seen in the file. An mp3 file with a signature will appear as a simple mp3 file. Which is not the case of a XAdES signature, since the output is in XML language. This format can break the functionality of the files, though, if attached to them, hence we save it for XML files, since it made sense to maintain the same formatting scheme of the original file. PAdES is used in one and only one circumstance: to sign PDF files in which the signature is to be included inside the PDF. PAdES uses CAdES as its main signature creation method, but it makes it so that PDF readers that show signatures can display the ones created using PAdES. This is specially important for enterprise use and official documents. |
| publishDate |
2015 |
| dc.date.none.fl_str_mv |
2015-02-27 2015-02-27T00:00:00Z |
| dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
| dc.type.driver.fl_str_mv |
info:eu-repo/semantics/masterThesis |
| format |
masterThesis |
| status_str |
publishedVersion |
| dc.identifier.uri.fl_str_mv |
https://hdl.handle.net/10216/88027 TID:201317494 |
| url |
https://hdl.handle.net/10216/88027 |
| identifier_str_mv |
TID:201317494 |
| dc.language.iso.fl_str_mv |
eng |
| language |
eng |
| dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
| eu_rights_str_mv |
openAccess |
| dc.format.none.fl_str_mv |
application/pdf |
| dc.source.none.fl_str_mv |
reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação instacron:RCAAP |
| instname_str |
Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
| instacron_str |
RCAAP |
| institution |
RCAAP |
| reponame_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| collection |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| repository.name.fl_str_mv |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
| repository.mail.fl_str_mv |
|
| _version_ |
1799135795980795904 |