6.3 Digital Signature Profile

An implementation may claim conformance to one or more Digital Signature Profiles.

A Digital Signature profile consists of the following information:

  1. The role that the Digital Signature plays, including:

  2. Who or what entity the Digital Signature represents.

  3. A description of the purpose of the Digital Signature.

  4. The conditions under which the Digital Signature is included in the Data Set.

  5. A list of Attributes that shall be included in the Digital Signature.

  6. The mechanisms that shall be used to generate or verify the Digital Signature, including:

  7. The algorithm and relevant parameters that shall be used to create the MAC or hash code, including the Value to be used for the MAC Algorithm (0400,0015) Attribute.

  8. The encryption algorithm and relevant parameters that shall be used to encrypt the MAC or hash code in forming the Digital Signature.

  9. The certificate type or key distribution mechanism that shall be used, including the Value to be used for the Certificate Type (0400,0110) Attribute.

  10. Any requirements for the Certified Timestamp Type (0400,0305) and Certified Timestamp (0400,0310) Attributes.

  11. Any special requirements for identifying the signatory.

  12. The relationship with other Digital Signatures, if any.

  13. Any other factors needed to create, verify, or interpret the Digital Signature

Digital Signature Profiles are specified in Annex C.