Abstract: A signing interface is disclosed for facilitating digital signing of electronic messages by a buyer or other subscribing party in an e-commerce or other context. The signing interface provides a mechanism by which a seller's Web applications may invoke a buyer's smartcard subsystem or other signing module to execute a digital signature. The signing interface preferably comprises a signing interface library and a signing plug-in resident on the buyer's computer. The signing interface library is preferably implemented as a Java package and associated libraries that are installed locally on the buyer's computer and made accessible to signed Java applets provided by the seller's Web server. The signing plug-in is preferably implemented as a plug-in, ActiveX control, or similar code that is installed locally on the buyer's computer and made accessible through the buyer's Web browser using an embedded browser object on a seller's Web page.

Abstract: A signing interface is disclosed for facilitating digital signing of electronic messages by a buyer or other subscribing party in an e-commerce or other context. The signing interface provides a mechanism by which a seller's Web applications may invoke a buyer's smartcard subsystem or other signing module to execute a digital signature. The signing interface preferably comprises a signing interface library and a signing plug-in resident on the buyer's computer. The signing interface library is preferably implemented as a Java package and associated libraries that are installed locally on the buyer's computer and made accessible to signed Java applets provided by the seller's Web server. The signing plug-in is preferably implemented as a plug-in, ActiveX control, or similar code that is installed locally on the buyer's computer and made accessible through the buyer's Web browser using an embedded browser object on a seller's Web page.

Abstract: A system and method are disclosed for ensuring the security and integrity of a party's private key stored on a smartcard or other hardware token. A set of security requirements are defined for the smartcard that ensure that the card is manufactured and initialized in a secure environment and that it can withstand certain types of cryptographic and other attacks. The requirements further ensure that, at the conclusion of the initiation process, there exists only a single instance of the private key, thus decreasing the likelihood of a subsequent key compromise.