- KDPW

SWI Certification Authority

KDPW has its own infrastructure based on PKI (Public Key Infrastructure) solution, ensuring secure communication with kdpw_stream.

In order to secure the transmission of documents, KDPW uses:

  • electronic signatures ensuring the authenticity of messages,
  • personal certificates which authenticate users and ensure access control,
  • encryption of communication channels to ensure data confidentiality and integrity.

Document transmission is supported by the Information Exchange System (SWI). The system is comprised of the following components:

  • electronic communication systems:
    • ESDI/WEB - electronic system for the distribution of information (system messages and communications) available manually via the web browser (U2A),
    • ESDK - electronic system for the distribution of system messages in automated mode (A2A),
    • SWIFT Message Processing System,
  • certificates and cryptographic keys,generated separately for the purpose of transmission of documents via ESDI/WEB and ESDK by the Chief Guarantor – an employee of KDPW who has the function of the Certification Authority, i.e., a trusted third party which guarantees that the document sender and recipient in the systems are who they claim to be, i.e.:
    • a private cryptographic key together with a public cryptographic key of the party provided in a certificate,
    • a certificate of the Certification Authority containing the public key of the Certification Authority,
    • security passwords.
Acting as the Certification Authority, the Chief Guarantor:
  • ​generates certificates and cryptographic keys, confirming with a digital signature that the user and the user’s key match,
  • renews certificates and cryptographic keys - all keys and certificates must be regularly renewed,
    website offering remote renewal of certificates
  • revokes certificates and publishes certificate revocation lists (CRL)
  • publishes public keys and certificates of the Certification Authority – issued by the Certification Authority for the Certification Authority to confirm the authenticity of certificates issued by the Certification Authority.

KDPW Certificatation Authority - ESDI/WEB and ESDK production environment

KDPW Certificatation Authority - ESDI/WEB and ESDK test environment

Back to Technological requirements