Securing eHealth and eGovernment with Java
Thodoris Bais works as a Scrum Master for ABN Amro bank and contributes to the prosperity of the (software) community in several ways. He is the Founder & Leader of Utrecht Java User Group, which counts around 2500 members and has hosted exceptional speakers (where among others, James Gosling and Uncle Bob). Besides, he helps new communities in making their first steps. Thodoris Bais serves the Expert Group of JSR-385 and helps developers to grow their career. Previously: 5 years of Software Engineering, 2 years as a Technical Author, Open-source Contributor.
The EU increases its cooperation on cyber defense to strengthen its resilience to cyber-attacks through the EU Cybersecurity Act and certification of products, services or applications. To be as well prepared as possible against hacker attacks or the distribution of “fake news”, fake documents and information. Like a One Trillion Amazon refund or fake tax returns. The IT industry may use this mechanism to certify products like connected vehicles, government services or smart medical devices. Due to its platform independence, Java plays an important role, especially in web, cloud or enterprise environments. This session introduces the DSS Framework and solutions based on it, such as Digidoc4J. DSS (Digital Signature Services) is a Java framework for the creation and validation of electronic signatures. DSS supports the creation and validation of interoperable and secure electronic signatures in accordance with European legislation, in particular the eIDAS Regulation, as well as IT standards like OASIS DSS. The framework may be used anywhere from embedded devices to desktop applications, like practice management software or services in the cloud wherever a JVM runs. It supports a variety of document formats like XML, PDF, Word, Plain Text or compressed archives, as well as various digital signatures, including XAdES, CAdES, PAdES or ASiC. It provides an abstraction layer over low-level signature libraries like Bouncy Castle, OpenPDF, Apache PDFBox or Sanctuario. DSS is used in many European countries for document exchange and security, e-health or e-government, with digital ID cards in more than a dozen countries across the European Economic Area. An overview of the DSS Framework is followed by a live demo, showing how different documents can be signed and their signature subsequently verified.