Digital Signing guidelines - NatWest
Digital Signing guidelines - NatWest
Digital Signing guidelines - NatWest
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
4. Use of File <strong>Signing</strong><br />
4.1 Typical Use of an HSM<br />
A Hardware Security Module (HSM) can be used to apply a digital signature to a payment file before it is sent onto<br />
the Bankline Direct service. The HSM stores the certificates and signing keys.<br />
A typical use of an HSM solution is for a payment file to be generated and presented to the HSM in order to apply<br />
a digital signature automatically to the file before being sent to the Bankline Direct service.<br />
HSMs also have the capability to store the Bankline Direct certificate details to validate files being sent to the<br />
customer from the service.<br />
Please refer to section 7 for configuration details for HSM.<br />
4.2 Typical Use of Smartcards<br />
Smartcards and card readers provide a manual approach to apply digital signatures to payment files. The card<br />
readers are connected to a local computer using specific signing software. Smartcards are assigned to individuals<br />
and must be combined with a user passcode to sanction the digital signing.<br />
A typical use of a Smartcard solution is for a payment file to be generated and presented to the signing software,<br />
where the operator can sign the file (using the eSigner software provided) using their individual Smartcard and<br />
passcode before they submit the files onto the Bankline Direct service.<br />
13