Manual E-bill 499.41
Manual E-bill 499.41
Manual E-bill 499.41
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
11.2.5 E-finance online view (outgoing delivery)<br />
Unsigned <strong>bill</strong>s can be viewed and processed in the respective e-finance<br />
application. For a detailed description of these functions please refer<br />
to section 13.2.<br />
11.2.6 AS2 (outgoing delivery)<br />
Specific delivery channel for <strong>bill</strong>s in EDIFACT format.<br />
11.2.7 E-mail (outgoing delivery)<br />
Registration and cancellation data and processing logs can be delivered<br />
to the <strong>bill</strong>er by e-mail.<br />
11.2.8 Archive-disk (output)<br />
Digitally signed <strong>bill</strong>s can be sent to <strong>bill</strong>ers and <strong>bill</strong> recipients on an archivedisk<br />
(see sections 4.9 and 6.1), provided they are not received via a different<br />
channel.<br />
The archive-disk contains the following:<br />
• Data as originally delivered (only <strong>bill</strong>er)<br />
• Digitally signed <strong>bill</strong>s in delivery format incl. signature check report<br />
• Bill details in PDF format (unsigned)<br />
The archive-disk will be sent by registered mail. Upon receipt, the <strong>bill</strong>er<br />
must check the legibility of the data stored on the archive-disk. Any errors<br />
must be reported in writing to PostFinance within 30 days. After expiry<br />
of this period, the data will be deemed to be legible. The data can then be<br />
deleted by PostFinance in accordance with section 5.7.4.<br />
11.3 Data security<br />
Unless otherwise agreed, either https or SFTP is used for transport<br />
encryption. For data encryption, a suitable encryption method (e. g. PGP)<br />
may be used, with the agreement of PostFinance. These details can be<br />
defined by both parties when the service is activated.<br />
The security standards for data provision correspond to the requirements<br />
for e-banking and other web applications.<br />
Data from the business interface are always transmitted via an https<br />
connection. The login is protected by the username and password security<br />
elements. The security standards for the web services are based on the<br />
OASIS WS-Security recommendations. Details of this are provided in the<br />
web services implementation instructions (see section 11.2.2).<br />
For PostFinance e-finance, users log on using their e-finance security<br />
elements. Data encryption using 128-bit SSL is guaranteed.<br />
Please note that the use of hyperlinks out of the secure environment of<br />
a web application is subject to general security provisions. Restrictions also<br />
apply when calling up the registration or cancellation form or for the <strong>bill</strong><br />
presentment module (see sections 7.3 and 8).<br />
<strong>Manual</strong> E-<strong>bill</strong> Version October 2010 42/64