PKI technology has the advantages to enable end-to-end digital transactions through secured authentication of the signatory to fulfil requirements of confidentiality, identity authentication and integrity of information involving public sector online services.
The T-RSS services consist of several key components as in the above diagram to authenticate the signer users and associate them with signing keys residing in CM via SAM.
● SAM to ensure the keys are protected and under users’ sole control over his signature keys.
● T-SSA to provide authorization request and response, signature request.
● Certificate issuance service to provide integration interface between EJBCA and T-RSS solution.
● T-SIC to ensure the user can use a mobile app device to communicate with the server signing application (T-SSA) via a secure communication channel.