OASIS Digital Signature Services Technical Committee (DSS)
Statement of Purpose
The Digital Signature Services Technical Committee has as its mandate the development of techniques to support the processing of digital signatures. This mandate includes defining an interface for requesting that a web service produce and/or verify a digital signature on a given piece of data and techniques for proving that a signature was created within its key validity period.
The TC will develop a protocol for a digital signature creation web service. Providing digital signatures via such a web service facilitates policy-based control of the provision of the signatures.
The TC will develop a protocol for a digital signature verification web service that can verify signatures in relation to a given policy set.
The TC will develop an XML-based protocol to produce cryptographic time-stamps that can be used for determining whether or not a signature was created within the associated key's validity period or before revocation. The TC will also develop an XML format for cryptographic time-stamps.
Finally, the TC will develop a set of profiles of the aforementioned protocols. These profiles will define specific uses of the general protocols to address specific applications.
Relationship to Existing Activities:
Many efforts related to digital signatures and related technologies are underway throughout the industry. The following work may be relevant to this Digital Signature Services TC:
OASIS Access Control TC (XACML)
OASIS Rights Language TC (XrML)
OASIS Security Services TC (SAML)
OASIS Web Services Security TC (WSSTC)
OASIS Election and Voter Services TC
OASIS LegalXML eNotary TC
OASIS LegalXML Electronic Court filing
OASIS ebXML Registry TC
OASIS XML Common Biometric Format TC (XCBF)
W3C XML Signature
W3C XML Key Management
W3C XML Encryption
ETSI Electronic Signatures and Infrastructures Technical Committee
ANSI X9F4 X9.95 (Trusted Time Stamps)
ISO/IEC JTC1/SC27 and standard ISO/IEC 18014
Universal Postal Union S43-2 Electronic PostMark (EPM) interface standard
List of Deliverables
The new TC will have the following deliverables:
an XML-based protocol for signature and time-stamp creation and verification.
bindings for the protocol elements in 1 including SOAP and HTTP and TLS security.
a set of profiles for the application of the above protocols to specific application areas.