User login

  
Home » Docs » Front end » General settings » Certification

Certification

About digital signature

A digital signature (not to be confused with a digital certificate) is an electronic signature that can be used to authenticate the identity of the sender of a message or the signer of a document, and possibly to ensure that the original
content of the message or document that has been sent is unchanged. Digital signatures are easily transportable, cannot be imitated by someone else, and can be automatically time-stamped. The ability to ensure that the original signed message arrived means that the sender cannot easily repudiate it later.  A digital signature can be used with any kind of message, whether it is encrypted or not, simply so that the receiver can be sure of the sender's identity and that the message arrived intact. A digital certificate contains the digital signature of the certificate-issuing authority so that anyone can verify that the certificate is real.

How it works

Assume you were going to send some trading order to the server in another part of world. You want to give the assurance that it was unchanged from what you sent and that it is really from you. 

  1. Using special algorithm, .Net Client  Station  obtain a message hash (mathematical summary) of the trading operation.
  2. Then .Net Client use a private key that you have previously obtained from a public-private key authority to encrypt the hash.
  3. The encrypted hash becomes your digital signature of the trading order. (Note that it will be different each time you send a trading order.)

At the other end,  your  server  receives the  trading order  with  digital signature. To make sure it's intact and from you:

  1. Your server makes a hash of the received trading order.
  2. Then  server  uses your public key to decrypt the message hash or summary.
  3. If the hashes match, the received trading order is valid.

How to set a digital signature

1.  Run your .Net Client Station.

2.  In menu chose Environment->Settings.

3.  Choose Certification tab and click on setup certificate.

4.  Choose your public key (*.cer) for loading to server.

5.  Click   to choose you privet key file (*.pfx).

6.

7.  Type password for your privet key. (Note that blinking icon  means that you don’t input valid password for the private key).

8.  If you want to set another  public key,  click on Change signature. If you don’t want to use digital signature, click on Remove signature. 
 
Note: Keep you private key in secure place. Best solution – on remote USB drive. Don’t give your private key to anyone

12345