Abstract
This paper examines what rules or extensions have to be applied to the JSON Web Signature format so that it can be used universally in identity-driven non-web processes where identities exchange data, documents or attestations in a decentralized manner but do not know each other. For this purpose, the format and the related process must fulfill certain requirements such as identifiability and support for multiple signatures at possibly different points in time. The German T-prescription was selected as the application scenario, since it involves special requirements for signatures, data protection and data transfer. For this scenario, all the necessary applications and libraries are implemented and the process is run through and analyzed.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Albarqi, A., Alzaid, E., Al Ghamdi, F., Asiri, S., Kar, J., et al.: Public key infrastructure: a survey. J. Inf. Secur. 6(01), 31 (2014)
Bartel, M., Boyer, J., Fox, B., LaMacchia, B., Simon, E.: XML signature syntax and processing version 1.1. Signature 6(1), 48–49 (2013)
Bundesinstitut für Arzneimittel und Medizinprodukte: Bekanntmachung zur Arzneimittelverschreibungsverordnung (AMVV). Online (2016). https://www.bfarm.de/SharedDocs/Bekanntmachungen/DE/Bundesopiumstelle/AMVV/bm-bopst-190716-AMVV-pdf.pdf?__blob=publicationFile
Dhalla, H.K.: A performance analysis of native JSON parsers in Java, Python, MS. NET Core, JavaScript, and PHP. In: 2020 16th International Conference on Network and Service Management (CNSM), pp. 1–5. IEEE (2020)
gematik: Systemspezifisches Konzept E-Rezept (2020). https://fachportal.gematik.de/fachportal-import/files/gemSysL_eRp_V1.1.0.pdf
Hofmeier, M.: CJWS Github repository (2023). https://github.com/LIONS-DLT/cjws
Jones, M., Bradley, J., Sakimura, N.: RFC 7515: JSON Web Signature (JWS) (2015)
Jones, M.: RFC 7518: JSON web algorithms (JWA) (2015)
Karmazín, J., Očenášek, P.: The state of near-field communication (NFC) on the android platform. In: Tryfonas, T. (ed.) HAS 2016. LNCS, vol. 9750, pp. 247–254. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-39381-0_22
Kassenärztliche Bundesvereinigung, Bundesärztekammer: Information für ärzte zur verordnung von lenalidomid-und thalidomid-haltigen arzneimitteln. Deutsches Ärzteblatt (2009)
Krishnan, V., Sreeja, C., Binu, S., Misbahuddin, M.: A json web signature based adaptive authentication modality for healthcare applications. In: 2022 IEEE International Conference on Public Key Infrastructure and its Applications (PKIA), pp. 1–8. IEEE (2022)
Kubbilun, W., Gajek, S., Psarros, M., Schwenk, J.: Trustworthy verification and visualisation of multiple XML-Signatures. In: Dittmann, J., Katzenbeisser, S., Uhl, A. (eds.) CMS 2005. LNCS, vol. 3677, pp. 311–320. Springer, Heidelberg (2005). https://doi.org/10.1007/11552055_41
Mainka, C., Jensen, M., Iacono, L.L., Schwenk, J.: XSpRES-robust and effective XML signatures for web services. In: CLOSER, pp. 187–197 (2012)
Sheffer, Y., Hardt, D., Jones, M.: RFC 8725: JSON Web Token Best Current Practices (2020)
Siriwardena, P., Siriwardena, P.: Message-level security with JSON web signature. In: Advanced API Security: OAuth 2.0 and Beyond, pp. 157–184 (2020)
The European Parliament and the Council of the European Union: European Regulation on Electronic Identification and Trust Services for Electronic Transactions in the internal market. Off. J. Eur. Union (2014)
Venable, J., Pries-Heje, J., Baskerville, R.: FEDS: a framework for evaluation in design science research. Eur. J. Inf. Syst. 25, 77–89 (2016)
Acknowledgments
This work originates from the LIONS research project. LIONS is funded by dtec.bw – Digitalization and Technology Research Center of the Bundeswehr, which we gratefully acknowledge. dtec.bw is funded by the European Union – NextGenerationEU.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Hofmeier, M., Hommel, W. (2023). Enabling the JSON Web Signature Format to Support Complex and Identity-Oriented Non-web Processes. In: Krieger, U.R., Eichler, G., Erfurth, C., Fahrnberger, G. (eds) Innovations for Community Services. I4CS 2023. Communications in Computer and Information Science, vol 1876. Springer, Cham. https://doi.org/10.1007/978-3-031-40852-6_2
Download citation
DOI: https://doi.org/10.1007/978-3-031-40852-6_2
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-40851-9
Online ISBN: 978-3-031-40852-6
eBook Packages: Computer ScienceComputer Science (R0)