OSCI Connector

Usage

The Online Service Computer Interface (OSCI) is a message standard and is used as the basis for legally-compliant data transfer in the eGovernment sector based on a digital signature and encryption between two communication partners using a virtual post room (intermediary). Data is transferred in the form of OSCI messages.

The OSCI Connector connects to a virtual post room and enables the following within a workflow:

  • Accepting OSCI messages from a virtual post room, unpacking and decoding them and checking their signature.

  • Creating, signing and encrypting OSCI messages for a virtual post room.

Connector types

The functions of the OSCI Connector depend on the actual configuration:

  • Input Connector

    Retrieves OSCI messages from the virtual post room in the set interval and unpacks them. The Input Connector is only active when the Scheduler is activated.

    Refer to Dialog Scheduler.

  • Medium Connector

    Sends encoded and signed OSCI messages to a virtual post room and forwards the response to the next module in the workflow.

For the current OSCI specification refer to https://www.osci.eu/ws/2013/02/transport/OSCIV2.01_WS-ProfilingAndExtensionSpecification.pdf.

Prerequisites

  • Address (URL) of intermediary is available

  • Public key certificate *cry.cer of intermediary is available

  • Private signature certificate is available

  • Private key certificate is available

  • Passwords for private certificates are available

    Save the certificate files in a corresponding directory. The certificates for the private keys are *.pfx files; those for the public keys are *.cer files.

Functional Principle of the OSCI Connector

You can use an OSCI Connector to receive OSCI messages, which are transported between an OSCI client as the sender, a virtual post room (VPS) as an OSCI intermediary and a recipient, with the INUBIT software via the intermediary or to send them via the intermediary.

Data transmission

OSCI is the eGovernment standard for safe data transmission. Data is sent and received in the form of OSCI messages.

Certificate management

Certificates are used to encode and sign OSCI messages and also to address the messages.

Communication process

The data to be transferred is exchanged between the communication partners in the form of messages. The communication partners can be the senders as well as the recipients of messages. The data belonging to a message is electronically signed by the sender once it has been recorded. Following that, it is sent to an intermediary in OSCI format.

The intermediary acts as a virtual post room (VPS). It

  • checks the signature and the certificates,

  • creates a check log for these and

  • holds the message in the server inbox of the recipient.

The virtual post room uses the OSCI intermediary for processing OSCI messages. The virtual post room is a solution for receiving, converting and processing encoded and signed messages that a government agency receives in a range of formats and protocols.

The OSCI Connector connects to the virtual post room and can receive and send OSCI messages with the corresponding access data.

The corresponding schema template is available in the INUBIT Repository at /Global/System/Mapping Templates/OSCI Connector.

Dialog Descriptions

Dialog Retrieving OSCI Messages in the OSCI Connector

(Input Connector)

In this dialog, you specify the configuration settings of the recipient for retrieving OSCI messages from the intermediary.

Since the Input Connector only retrieves messages when the Scheduler is active, you must activate the Scheduler in the Scheduler dialog in order to specify the polling interval, refer to Dialog Scheduler.

Virtual post room

  • Intermediary

    Enter the URL of the intermediary at which it can be reached online.

  • Intermediary certificate

    Load the file with the public certificate of the intermediary; this is a *.cer file.

Recipient

  • Signature keystore

    Load the *.pfx file with the private key of the recipient.

  • Password of signature key

    Enter the keystore password of the private key for signature verification.

  • Encryption keystore

    Load the *.pfx file with the private key for decryption.

  • Password of encryption key

    Enter the keystore password of the private key for decryption.

Connection test

Test connection

Test whether the connection can be established successfully with the information you entered.

Dialog Creating OSCI Messages

(Medium Connector)

In this dialog, you specify the configuration settings of the author and recipient for creating OSCI messages at the intermediary.

Virtual post room

  • Intermediary

    Enter the URL of the intermediary at which it can be reached online.

  • Intermediary certificate

    Load the file with the public certificate of the intermediary; this is a *.cer file.

Author

  • Signature keystore

    Load the *.pfx file with the certificate of the sender that is used for signing.

  • Password of signature key

    Enter the keystore password of the private key for signing the created message.

  • Encryption keystore

    Load the *.pfx file with the certificate of the private key of the sender for encrypting the created message.

  • Password of encryption key

    Enter the keystore password of the private key for encrypting the created message.

Recipient

  • Encryption certificate

    Load the file with the public certificate of the recipient.

Connection test

  • Test connection

    For testing whether the connection can be successfully established using your configuration.

Press Esc to exit full screen
Modal image placeholder
Press Esc to exit full screen