Skip Ribbon Commands
Skip to main content
Polski|
Sign In
Navigate Up

SWI Certification Authority


KDPW has its own infrastructure based on PKI (Public Key Infrastructure) solution, ensuring secure communication with kdpw_stream.
In order to secure the transmission of documents, KDPW uses:
  • electronic signatures ensuring the authenticity of messages,
  • personal certificates which authenticate users and ensure access control,
  • encryption of communication channels to ensure data confidentiality and integrity.

Document transmission is supported by the Information Exchange System (SWI). The system is comprised of the following components:
  • electronic communication systems:
    • ESDI/WEB - electronic system for the distribution of information (system messages and communications) available manually via the web browser (U2A) and in automated mode (A2A),
    • ESDK - electronic system for the distribution of system messages in automated mode (A2A),
    • SWIFT Message Processing System,
  • certificates and cryptographic keys, generated separately for the purpose of transmission of documents via ESDI/WEB and ESDK by the Chief Guarantor – an employee of KDPW who has the function of the Certification Authority, i.e., a trusted third party which guarantees that the document sender and recipient in the systems are who they claim to be, i.e.:
    • a private cryptographic key together with a public cryptographic key of the party provided in a certificate,
    • a certificate of the Certification Authority containing the public key of the Certification Authority,
    • security passwords,
  • software provided by KDPW to system users:
    • Cisco Systems VPN Client software used to set up connections with KDPW via the Internet together with a one-station licence to use the software granted by KDPW under a licence granted by Cisco Systems as the holder of the copyright in the software, together with documentation including without limitation the terms of the Client Software License Agreement of Cisco Systems,
    • software necessary to sign electronic signatures in ESDI/WEB.

 


Acting as the Certification Authority, the Chief Guarantor:

  • generates certificates and cryptographic keys, confirming with a digital signature that the user and the user’s key match,
  • renews certificates and cryptographic keys - all keys and certificates must be regularly renewed,
    website offering remote renewal of certificates
  • revokes certificates and publishes certificate revocation lists (CRL)
  • publishes public keys and certificates of the Certification Authority – issued by the Certification Authority for the Certification Authority to confirm the authenticity of certificates issued by the Certification Authority.


KDPW Certificatation Authority - ESDI/WEB and ESDK production environment

Certificate of the Certification Authority 



KDPW Certificatation Authority - ESDI/WEB and ESDK test environment

Certificate of the Certification Authority 



KDPW Certificatation Authority - VPN connections 

Certificate of the Certification Authority issued in 2006 

Certificate of the Certification Authority issued in 2006 (Base64) 

 

CRL - ESDI/WEB and ESDK production environment 

CRL - ESDI/WEB and ESDK test environment 

CRL - VPN connections 

Last Modified: 14-06-2018 Go Up