The integrity, confidentiality and non-repudiation of information traveling through the network is guaranteed through the use of electronic signature and encrypted exchange of information.
How does the AOC Consortium do it? With the following actions:
1) In the control of the use of the system. Via Oberta offers ways to detect irregular behaviors of users, controlling their use of information, storing traces of their activity (date and time of the transaction, body and user who makes the consultation, service and mode consulted, purpose of the query, file number in process…) and using strong authentication mechanisms in the system based exclusively on digital certificates.
2) In the case of querying data through the screens ofEACAT, the public employee must prove his identity by means of the digital certification card (T-CAT or T-CATp), tools that provide electronic signature to the staff of the Catalan public administrations.
3) In the case of querying data through the applicant's own systems (integration with web services) the identity must be accredited by means of an electronic stamp or certificate of application device (CDA). The requesting entities must provide the Security Document of the entity in order to certify that the access to the hardware where this certificate is stored is restricted and protected to avoid possible fraudulent uses of the same.