You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

The Web-client of the NSD Repository is a web-application (browser application). For its full operations several external components are required. Such components are related to data encryption and a digital signature.

System Requirements

Proper functioning of the Web-client requires components, which are external in relation to web-browser software. This is due to the encryption of the transferred data and it's signing with digital signature. Table 1 lists the minimum computer requirements to run the Web-client successfully.

Table 1 – Technical requirements

Type of requirementsParameter value
Operating systems

Windows 7
Windows 8
Performance on Windows XP cannot be guaranteed due to the restrictions on the use of the TLS-tunnel

Compatible browsers

Internet Explorer version 9.0 and above. Version 8.0 is not currently supported officially, the system is being tested
Firefox version 20.0 and higher
Google Chrome version 20.0 and higher

https tunnel, authorization and encryption

The picture below shows a general scheme of interconnection between a client and the web-server.

When a client connects to the server a https tunnel is set up on the basis of the server and client certificates, i.e. with bilateral authorisation. This is a first level of client authorization in the system.

Then a user enters a login and a password in the authorisation form to get an access directly to the web-application.

Channel forming

Depending on the type of the certificate  (GOST or RSA), https tunnel is set up using the cryptographic service provider Microsoft CSP or Validata CSP, respectively. Also, depending on the certificate type the client space puts a digital signature and encrypts documents with a CSP.

Client software

For the application to operate the client workstation should have the following software:

  • Compatible browser 

  • Java

  • Certificate directory

  • CSP

Moew details are given below.

Software is interconnected (in general and not only with the Web-client) with CSP indirectly through API provided by the Certificate Directory that is also used to manage user certificates inlcluding their placing in the systemic certificate storage. 

Software installation

To ensure interconnection as described above a user should take the following actions depending on the CSP before launching the Web-client.

If qualified certificates (GOST) used:

If non-qualified certificates (RSA) used:

  • No labels