SID-KEY-04 — R2PS Remote WSCD SCAL2 Compliance
| Property | Value |
|---|---|
| Owner | platform |
| Category | technical |
| CSF Function | protect |
| Group | Key Management Controls |
Description
Remote WSCD implementation using the R2PS (Remote PAKE-Protected Signing) protocol satisfying SCAL2 requirements for remote HSM signatures. Key properties:
- OPAQUE (RFC 9807) authentication provides server-side PIN validation with brute-force protection and attempt counters.
- Keys generated and stored in PKCS#11 HSM; never leave HSM boundary.
- JWS/JWE message wrapping ensures end-to-end integrity and confidentiality of signing requests.
- Per-transaction user authentication (knowledge factor via OPAQUE PAKE, possession factor via device-bound session).
- Threshold signing support for additional split-key SCAL2 assurance.
This satisfies the SCAL2 requirements of EN 419 241-2 and the FitCEM certification scheme requirements for WSCA communication (FIT-CR-02, FIT-AU-08, FIT-AU-09).
Components
- R2PS Client
- R2PS Service
- WSCA / HSM
Source References
r2ps-client/src/client.rsr2ps-client/src/pake.rsgo-r2ps-service/internal/pake/go-r2ps-service/internal/hsm/
Framework Requirements
EUDI Security Requirements: CS-I.3-WSCA
FitCEM Wallet Instance: FIT-CR-02, FIT-AU-06, FIT-AU-08, FIT-AU-09, FIT-NF-08