Digital Signing guidelines - NatWest
Digital Signing guidelines - NatWest
Digital Signing guidelines - NatWest
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Bankline Direct will use whatever data is between the MIME Part 1 start and end boundaries to verify the<br />
signature. Therefore, the data that needs to be signed must include all data from MIME Part 1.<br />
All this must be sent to the signing application:<br />
MIME Part 1<br />
Content-Type: {content type/content sub-type}{CRLF}<br />
{CRLF}<br />
{raw data}{CRLF}<br />
For example<br />
Content-Type: text/plain<br />
Field1A,Field2A,Field3A<br />
Field1B,Field2B,Field3B<br />
Embedded Signatures<br />
An embedded signature is where the signature and data are combined within a single (Cryptographic Message<br />
Syntax) CMS structure. These are also known as Opaque signatures.<br />
MIME Header<br />
MIME Part<br />
Signed Data and Signature – CMS format<br />
This can be represented as follows:<br />
MIME Header<br />
MIME-Version: 1.0{CRLF}<br />
Content-Disposition: attachment;<br />
{optional CRLF}{SPACE}filename=”smime.p7m”{CRLF}<br />
Content-Type: application/x-pkcs7-mime;<br />
{optional CRLF}{SPACE}smime-type=signed-data;<br />
{optional CRLF}{SPACE}name=”smime.p7m”{CRLF}<br />
Content-Transfer-Encoding: base64{CRLF}<br />
{CRLF}<br />
MIME Part<br />
{CMS object with Data and Signature}<br />
11