SID-KEY-01 — WSCA WebSocket Key Signing Delegation

Property	Value
Owner	platform
Category	technical
CSF Function	protect
Group	Key Management Controls

Description

Wallet Secure Cryptographic Application: signing operations delegated to frontend via authenticated WebSocket. Backend requests signing; frontend executes with local keys in the encrypted keystore. Keys never transmitted to backend.

Components

Wallet Frontend
Wallet Backend (Go)
WSCA / HSM

Source References

go-wallet-backend/websocket/manager.go

Framework Requirements

EUDI Security Requirements: WPS-8.1.2-Fun-01, WUG-8.2.1-Sec-02, WUM-8.2.2-Sec-07, WUP-8.2.3-Fun-09, WUH-8.3.1-Sec-01, WSA-8.5-01, WSA-8.5-02, WSA-8.5-07, WSA-8.5-08, CS-I.3-WSCA

FitCEM Wallet Instance: FIT-NF-08

ISO 27001 Annex A: A.8.24, A.8.27

OWASP ASVS 4.0.3 Level 3: V2.9

STRIDE Threat Model: WF-I-2, WF-I-3

Description​

Components​

Source References​

Framework Requirements​

Description

Components

Source References

Framework Requirements