APIs and Plugins


 

Java applets have been the benchmark technology in electronic signature solutions across all Web platforms. Java uses NPAPI, an API developed in 1995 by Nestcape, and regarded as the major culprit in Internet security weaknesses.

This decision means that virtually all current signature and authentication components will no longer work (e.g. Chrome), have ceased to function during the 2016 financial year, or during the 2017 one. Other browsers have announced the same measures such as Explorer and Mozilla. On behalf of Oracle, the company responsible for Java, announced in early 2016 that as of the JDK 9 version, the NPAPI plugin will not be included.

Therefore, ANF AC has discontinued its authentication and electronic signature applets. To meet these requirements, plugins have been developed (Chrome-Firefox-Safari)  

 

We maintain our traditional service Black Box Sign ®.

 

Available components

 

Plugin CHROME, “ANF AC Web Signature and Identification

 

Plugin MOZILLA, ANF AC Web Signature and Identification

 

Plugin  SAFARI,  ANF AC Web Signature and Identification

 

However, the manufacturers of the main browsers have already warned about the components that access the cryptographic token, and a limitation of them is foreseeable in the near future. 

 

In anticipation of this situation, our R & D department has already developed an innovative WebAPI technology, completely compatible with browsers, of a level of security and reliability comparable to the previous ones. This technology is integrated and preinstalled in all eSign ANF AC devices. 

 

 

 

Web API

Plugin & Ext.

Black Box Sign®

Interoperability in all browsers

OK

OK

OK

Natural substitute of JAVA

OK

OK

NO

Automatic activation in WEB services

OK

OK

OK

Verifiable security by external auditors

OK

OK

OK

Includes all signature formats (CAdES, XAdES, PAdES) XL

OK

OK

OK

Authentication process with presence control

OK

OK

NO

Communication between user and Web service

OK

OK

OK

Rapid deployment without system intervention

OK

OK

NO

Intuitive and transparent system for the user

OK

OK

OK

Versatile, customizable for each environment

OK

OK

OK

Scalable

OK

OK

NO

The browser does not require extension or a plugin

OK

NO

OK

The information does not leave the Client - Server environment

OK

OK

NO

Detects token extraction

OK

OK

NO

Secure Communication Transport Layer Security (TLS)

OK

OK

OK

Easy web service integration

OK

OK

OK

Compatible with SmartCard, USB Token.

OK

OK

OK