Digital Signing guidelines - NatWest
Digital Signing guidelines - NatWest
Digital Signing guidelines - NatWest
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
2. Overview of <strong>Digital</strong> <strong>Signing</strong> Solutions<br />
All communications between the customer and the Bankline Direct service in either direction must be secure.<br />
All transmissions generated by the service will be digitally signed; likewise any payment messages or files sent<br />
to the Bankline Direct service must be signed with a digital certificate.<br />
Section 5 details the security configuration applied to reports and acknowledgements generated by the Bankline<br />
Direct service.<br />
Customer utilising the payment submission service must send messages and files complying with the prescribed<br />
<strong>NatWest</strong> security and industry standards. There are two options for applying a digital signature to payment<br />
transmissions, Smartcards and Hardware Security Module (HSM), please refer to sections 6 and 7 respectively.<br />
An HSM solution offers an unattended solution for straight through processing and may be attractive to customers<br />
who process large volumes of payments. An HSM solution reduces the administrative overhead and associated<br />
staffing needs but is a more expensive option. It is the customer’s responsibility to procure and install an<br />
HSM module.<br />
A Smartcard solution is a secure, but manual process requiring intervention from staff members, by entering a<br />
PIN number using a card reader and individual card credentials. This Smartcard option is considerably cheaper.<br />
Bankline Direct transmissions are digitally signed using an HSM.<br />
<strong>Digital</strong>ly signed communications that travel in both directions adhere to the S/MIME standard.<br />
Section 3 provides a high level description of S/MIME.<br />
7