locked
Need help designing web app for process using digital signatures RRS feed

  • Question

  • My organization currently has a process where clients submit financial documents with original signatures and that are notarized.  Right now it's all a hardcopy paper process, but we'd like to change it so that the process occurs over the web.  For example, type basic identifying information in a web form, then click a button to upload/attach Word documents (these would be the financial statements), and then finally click a Send button to send the information and documents to our organization. 

    I'm primarily a Windows application developer; the few ASP and ASP.NET applications I've done simply display information.  I can handle an input form with a database backend, but it's submitting the financial documents and handling the signature and/or notarization issues I'm totally clueless about.  How do we do that in the digital world?  What tools do we need?  Security and encryption are obviously necessary, but I'm not sure where to look or what products to research for a start.

    Any advice would be appreciated!
    Monday, November 2, 2009 4:24 PM

Answers

  • -Greeting ,

    Phase 1 : Contains links for ASP.NET security as per your requirement. The links given below contains information regarding ASP.NET security. Go through the links given below.(AS PER  YOUR REQUIREMENT IN YOUR POST)
    • http://www.asp.net/mvc/

    ASP.NET MVC Framework
    • http://en.wikipedia.org/wiki/ASP.NET_MVC_Framework

    ASP.NET Security Architecture
    • http://msdn.microsoft.com/en-us/library/yedba920.aspx

    Building Secure ASP.NET Applications: Authentication, Authorization, and Secure Communication
    • http://msdn.microsoft.com/en-us/library/aa302415.aspx

    An Introductory Guide to Building and Deploying More Secure Sites with ASP.NET and IIS
    • http://msdn.microsoft.com/en-us/magazine/cc301387.aspx

    ASP.NET Security Overview
    • http://support.microsoft.com/kb/306590


    Securing ASP.NET Web Sites
    • http://msdn.microsoft.com/en-us/library/91f66yxt.aspx

    Key Security Concepts
    • http://msdn.microsoft.com/en-us/library/z164t8hs.aspx

    Forms Authentication Provider
    http://msdn.microsoft.com/en-us/library/9wff0kyh.aspx

    Managing Users by Using Membership
    • http://msdn.microsoft.com/en-us/library/tw292whz.aspx

    ASP.NET Configuration Overview
    • http://msdn.microsoft.com/en-us/library/ms178683.aspx

    ASP.NET Security Data Flow
    • http://msdn.microsoft.com/en-us/library/xa68twcb.aspx

    ASP.NET Authentication
    • http://msdn.microsoft.com/en-us/library/eeyk640h.aspx

    ASP.NET Authorization
    • http://msdn.microsoft.com/en-us/library/wce3kxhd.aspx

    Encrypting web.config file sections
    • http://www.codeproject.com/KB/aspnet/ASPNET_20_Webconfig.aspx


    Phase 2 : Information regarding Digtal Signature , the links given below shows the digital signature on a document or an xml can be programmatic ally using the .net framework.(AS  PER YOUR REQUIREMENT IN YOUR POST)

    Digital signature
    • http://en.wikipedia.org/wiki/Digital_signature

    What is a Digital Signature?
    An introduction to Digital Signatures, by David Youd
    • http://www.youdzone.com/signature.html

    How to: Sign XML Documents with Digital Signatures
    • http://msdn.microsoft.com/en-us/library/ms229745.aspx

    Digital Signature Implementation with C# and .NET Framework
    • http://tutorial.visualstudioteamsystem.com/details.aspx?item=134
         
    Cryptography in Microsoft.NET Part II: Digital Envelop and Digital Signatures
    • http://www.c-sharpcorner.com/UploadFile/Gowri%20S%20Paramasivam/Cryptography211242005003308AM/Cryptography2.aspx


    Phase 3 : Information regarding the tools which are used of digital signing of the documents. Some tools that are available in the market.Links given below contains the software's that are available in digital signature. (AS  PER YOUR  REQUIREMENT IN YOUR POST)

    Digital Signature Software, New secure XML and latest legal electronic solutions,  a cryptographic process of encrypting document digest using signer's private which provides for document integrity and non-repudiation.
    • http://www.infomosaic.net/digital-signature-software.htm
        
       
    Featured Digital Signature  Software
    • http://digital-signature.software.informer.com/

    Enterprise Enablers – DigiStamp Products and Services
    • http://www.digistamp.com/apiOver.htm

    Digital Signature(Standard Electronic Signature)- CoSign
    • http://www.arx.com/products/cosign-digital-signatures.php

    Electronic Signature Software
    • http://www.isignature.com/index.php

    Phase 4 :  Cryptography  In C# . The namespace used here is : System.Security.Cryptographic .(AS  PER  YOUR REQUIREMENT IN YOUR POST)

    All about Cryptography in .NET
    • http://www.codeproject.com/KB/security/Cryptography_NET.aspx

    Cryptographic Services
    • http://msdn.microsoft.com/en-us/library/93bskf9z.aspx


    Triple DES Encryption and Decryption using User provided key
    • http://www.c-sharpcorner.com/UploadFile/dhananjaycoder/desencryption10292009151743PM/desencryption.aspx


    Public Key RSA Encryption in C# .NET
    • http://www.codeproject.com/KB/security/RSACryptoPad.aspx

    Cryptography in C#
    • http://www.codeproject.com/KB/security/dotnetcryptog.aspx

    How to encrypt and decrypt a file by using Visual C#
    • http://support.microsoft.com/kb/307010

    .NET Samples - How To: Cryptography
    • http://msdn.microsoft.com/en-us/library/aa308954(VS.71).aspx

    Encryption/Decryption with .NET
    http://www.codeproject.com/KB/security/encryption_decryption.aspx

    ASP.NET data encryption / decryption made easy
    • http://www.codeproject.com/KB/aspnet/DataEncryption.aspx

    Cryptography 101 for the .NET Framework
    • http://www.codeproject.com/KB/security/Crypto.aspx

    Encryption/Decryption with .NET
    • http://www.codeproject.com/KB/cs/encryption.aspx

    Using CryptoStream in C#
    • http://www.codeproject.com/KB/security/using_cryptostream.aspx

    Data Encryption/Decryption using RijndaelManaged and PasswordDeriveBytes Classes
    • http://www.codeproject.com/KB/cs/Data_Encryption.aspx

    The Amazingly Forgotten 2-Way .NET Rijndael CryptoStream
    • http://www.codeproject.com/KB/IP/2WRCS.aspx

    Simple encrypting and decrypting data in C#
    • http://www.codeproject.com/KB/security/DotNetCrypto.aspx

    Data Encryption/Decryption using RSACryptoServiceProvider and X509Certificate2
    • http://www.codeproject.com/KB/cs/Data_Encryption_Decryptio.aspx


    Phase 5
    : Guidelines for Database Design (AS PER YOUR REQUIREMENT IN THE POST)

    Database design
    • http://en.wikipedia.org/wiki/Database_design

    Database Design Guide
    • http://www.smart-it-consulting.com/database/progress-database-design-guide/

    Ten Common Database Design Mistake
    • http://www.simple-talk.com/sql/database-administration/ten-common-database-design-mistakes/

    The Database Design Resource Center
    • http://www.databasedesign-resource.com/
    Phase 6:   Software Testing  - VERY IMPORTANT PHASE . KINDLY GO TRHOUGH VERY LINK. IT IS VERY IMPORTANT.

    Fundamentals of Web Application Performance Testing
    • http://msdn.microsoft.com/en-us/library/bb924356.aspx

    Risks Addressed Through Performance Testing
    • http://msdn.microsoft.com/en-us/library/bb924358.aspx

    Web Application Performance Testing Core Activities
    • http://msdn.microsoft.com/en-us/library/bb924359.aspx

    Coordinating Performance Testing with an Iteration-Based Process
    • http://msdn.microsoft.com/en-us/library/bb924360.aspx

    Managing the Performance Test Cycle in a Regulated (CMMI) Environment
    • http://msdn.microsoft.com/en-us/library/bb924362.aspx

    Evaluating Systems to Increase Performance Testing Effectiveness
    • http://msdn.microsoft.com/en-us/library/bb924363.aspx

    Determining Performance Testing Objectives
    • http://msdn.microsoft.com/en-us/library/bb924364.aspx

    Quantifying End-User Response Time Goals
    • http://msdn.microsoft.com/en-us/library/bb924365.aspx

    Consolidating Various Types of Performance Acceptance Criteria
    • http://msdn.microsoft.com/en-us/library/bb924366.aspx

    Modeling Application Usage
    • http://msdn.microsoft.com/en-us/library/bb924367.aspx

    Determining Individual User Data and Variances
    • http://msdn.microsoft.com/en-us/library/bb924368.aspx

    Test Execution
    • http://msdn.microsoft.com/en-us/library/bb924369.aspx

    Key Mathematic Principles for Performance Testers
    • http://msdn.microsoft.com/en-us/library/bb924370.aspx

    Performance Test Reporting Fundamentals
    • http://msdn.microsoft.com/en-us/library/bb924371.aspx

    Load-Testing Web Applications
    • http://msdn.microsoft.com/en-us/library/bb924372.aspx

    Stress Testing Web Applications
    • http://msdn.microsoft.com/en-us/library/bb924374.aspx

    Performance Test Reporting Fundamentals
    • http://msdn.microsoft.com/en-us/library/bb924371.aspx

    software testing help
    • http://www.softwaretestinghelp.com/web-application-testing/

    Types of Performance Testing
    • http://msdn.microsoft.com/en-us/library/bb924357.aspx

    actiWATE is a Java-based software platform intended to make the test automation process simple and cost-effective. 

    • http://www.actiwate.com/
    Hope this helps you out.

    Take Care

    PL

    Helping People To Solve Technical Problems
    • Marked as answer by blott Tuesday, November 3, 2009 2:42 PM
    Tuesday, November 3, 2009 5:22 AM

All replies

  • -Greeting ,

    Phase 1 : Contains links for ASP.NET security as per your requirement. The links given below contains information regarding ASP.NET security. Go through the links given below.(AS PER  YOUR REQUIREMENT IN YOUR POST)
    • http://www.asp.net/mvc/

    ASP.NET MVC Framework
    • http://en.wikipedia.org/wiki/ASP.NET_MVC_Framework

    ASP.NET Security Architecture
    • http://msdn.microsoft.com/en-us/library/yedba920.aspx

    Building Secure ASP.NET Applications: Authentication, Authorization, and Secure Communication
    • http://msdn.microsoft.com/en-us/library/aa302415.aspx

    An Introductory Guide to Building and Deploying More Secure Sites with ASP.NET and IIS
    • http://msdn.microsoft.com/en-us/magazine/cc301387.aspx

    ASP.NET Security Overview
    • http://support.microsoft.com/kb/306590


    Securing ASP.NET Web Sites
    • http://msdn.microsoft.com/en-us/library/91f66yxt.aspx

    Key Security Concepts
    • http://msdn.microsoft.com/en-us/library/z164t8hs.aspx

    Forms Authentication Provider
    http://msdn.microsoft.com/en-us/library/9wff0kyh.aspx

    Managing Users by Using Membership
    • http://msdn.microsoft.com/en-us/library/tw292whz.aspx

    ASP.NET Configuration Overview
    • http://msdn.microsoft.com/en-us/library/ms178683.aspx

    ASP.NET Security Data Flow
    • http://msdn.microsoft.com/en-us/library/xa68twcb.aspx

    ASP.NET Authentication
    • http://msdn.microsoft.com/en-us/library/eeyk640h.aspx

    ASP.NET Authorization
    • http://msdn.microsoft.com/en-us/library/wce3kxhd.aspx

    Encrypting web.config file sections
    • http://www.codeproject.com/KB/aspnet/ASPNET_20_Webconfig.aspx


    Phase 2 : Information regarding Digtal Signature , the links given below shows the digital signature on a document or an xml can be programmatic ally using the .net framework.(AS  PER YOUR REQUIREMENT IN YOUR POST)

    Digital signature
    • http://en.wikipedia.org/wiki/Digital_signature

    What is a Digital Signature?
    An introduction to Digital Signatures, by David Youd
    • http://www.youdzone.com/signature.html

    How to: Sign XML Documents with Digital Signatures
    • http://msdn.microsoft.com/en-us/library/ms229745.aspx

    Digital Signature Implementation with C# and .NET Framework
    • http://tutorial.visualstudioteamsystem.com/details.aspx?item=134
         
    Cryptography in Microsoft.NET Part II: Digital Envelop and Digital Signatures
    • http://www.c-sharpcorner.com/UploadFile/Gowri%20S%20Paramasivam/Cryptography211242005003308AM/Cryptography2.aspx


    Phase 3 : Information regarding the tools which are used of digital signing of the documents. Some tools that are available in the market.Links given below contains the software's that are available in digital signature. (AS  PER YOUR  REQUIREMENT IN YOUR POST)

    Digital Signature Software, New secure XML and latest legal electronic solutions,  a cryptographic process of encrypting document digest using signer's private which provides for document integrity and non-repudiation.
    • http://www.infomosaic.net/digital-signature-software.htm
        
       
    Featured Digital Signature  Software
    • http://digital-signature.software.informer.com/

    Enterprise Enablers – DigiStamp Products and Services
    • http://www.digistamp.com/apiOver.htm

    Digital Signature(Standard Electronic Signature)- CoSign
    • http://www.arx.com/products/cosign-digital-signatures.php

    Electronic Signature Software
    • http://www.isignature.com/index.php

    Phase 4 :  Cryptography  In C# . The namespace used here is : System.Security.Cryptographic .(AS  PER  YOUR REQUIREMENT IN YOUR POST)

    All about Cryptography in .NET
    • http://www.codeproject.com/KB/security/Cryptography_NET.aspx

    Cryptographic Services
    • http://msdn.microsoft.com/en-us/library/93bskf9z.aspx


    Triple DES Encryption and Decryption using User provided key
    • http://www.c-sharpcorner.com/UploadFile/dhananjaycoder/desencryption10292009151743PM/desencryption.aspx


    Public Key RSA Encryption in C# .NET
    • http://www.codeproject.com/KB/security/RSACryptoPad.aspx

    Cryptography in C#
    • http://www.codeproject.com/KB/security/dotnetcryptog.aspx

    How to encrypt and decrypt a file by using Visual C#
    • http://support.microsoft.com/kb/307010

    .NET Samples - How To: Cryptography
    • http://msdn.microsoft.com/en-us/library/aa308954(VS.71).aspx

    Encryption/Decryption with .NET
    http://www.codeproject.com/KB/security/encryption_decryption.aspx

    ASP.NET data encryption / decryption made easy
    • http://www.codeproject.com/KB/aspnet/DataEncryption.aspx

    Cryptography 101 for the .NET Framework
    • http://www.codeproject.com/KB/security/Crypto.aspx

    Encryption/Decryption with .NET
    • http://www.codeproject.com/KB/cs/encryption.aspx

    Using CryptoStream in C#
    • http://www.codeproject.com/KB/security/using_cryptostream.aspx

    Data Encryption/Decryption using RijndaelManaged and PasswordDeriveBytes Classes
    • http://www.codeproject.com/KB/cs/Data_Encryption.aspx

    The Amazingly Forgotten 2-Way .NET Rijndael CryptoStream
    • http://www.codeproject.com/KB/IP/2WRCS.aspx

    Simple encrypting and decrypting data in C#
    • http://www.codeproject.com/KB/security/DotNetCrypto.aspx

    Data Encryption/Decryption using RSACryptoServiceProvider and X509Certificate2
    • http://www.codeproject.com/KB/cs/Data_Encryption_Decryptio.aspx


    Phase 5
    : Guidelines for Database Design (AS PER YOUR REQUIREMENT IN THE POST)

    Database design
    • http://en.wikipedia.org/wiki/Database_design

    Database Design Guide
    • http://www.smart-it-consulting.com/database/progress-database-design-guide/

    Ten Common Database Design Mistake
    • http://www.simple-talk.com/sql/database-administration/ten-common-database-design-mistakes/

    The Database Design Resource Center
    • http://www.databasedesign-resource.com/
    Phase 6:   Software Testing  - VERY IMPORTANT PHASE . KINDLY GO TRHOUGH VERY LINK. IT IS VERY IMPORTANT.

    Fundamentals of Web Application Performance Testing
    • http://msdn.microsoft.com/en-us/library/bb924356.aspx

    Risks Addressed Through Performance Testing
    • http://msdn.microsoft.com/en-us/library/bb924358.aspx

    Web Application Performance Testing Core Activities
    • http://msdn.microsoft.com/en-us/library/bb924359.aspx

    Coordinating Performance Testing with an Iteration-Based Process
    • http://msdn.microsoft.com/en-us/library/bb924360.aspx

    Managing the Performance Test Cycle in a Regulated (CMMI) Environment
    • http://msdn.microsoft.com/en-us/library/bb924362.aspx

    Evaluating Systems to Increase Performance Testing Effectiveness
    • http://msdn.microsoft.com/en-us/library/bb924363.aspx

    Determining Performance Testing Objectives
    • http://msdn.microsoft.com/en-us/library/bb924364.aspx

    Quantifying End-User Response Time Goals
    • http://msdn.microsoft.com/en-us/library/bb924365.aspx

    Consolidating Various Types of Performance Acceptance Criteria
    • http://msdn.microsoft.com/en-us/library/bb924366.aspx

    Modeling Application Usage
    • http://msdn.microsoft.com/en-us/library/bb924367.aspx

    Determining Individual User Data and Variances
    • http://msdn.microsoft.com/en-us/library/bb924368.aspx

    Test Execution
    • http://msdn.microsoft.com/en-us/library/bb924369.aspx

    Key Mathematic Principles for Performance Testers
    • http://msdn.microsoft.com/en-us/library/bb924370.aspx

    Performance Test Reporting Fundamentals
    • http://msdn.microsoft.com/en-us/library/bb924371.aspx

    Load-Testing Web Applications
    • http://msdn.microsoft.com/en-us/library/bb924372.aspx

    Stress Testing Web Applications
    • http://msdn.microsoft.com/en-us/library/bb924374.aspx

    Performance Test Reporting Fundamentals
    • http://msdn.microsoft.com/en-us/library/bb924371.aspx

    software testing help
    • http://www.softwaretestinghelp.com/web-application-testing/

    Types of Performance Testing
    • http://msdn.microsoft.com/en-us/library/bb924357.aspx

    actiWATE is a Java-based software platform intended to make the test automation process simple and cost-effective. 

    • http://www.actiwate.com/
    Hope this helps you out.

    Take Care

    PL

    Helping People To Solve Technical Problems
    • Marked as answer by blott Tuesday, November 3, 2009 2:42 PM
    Tuesday, November 3, 2009 5:22 AM
  • Thank you for the thorough list of resources; I've saved them off for future use. :-)
    Tuesday, November 3, 2009 2:42 PM