Guidelines for the LSS for NemID interaction design and user selection

Similar documents
Terms and concepts in LSS for NemID

Implementation guide for LSS

Guidelines on the use of LSS for NemID test tools

Note: Password must be 7-16 characters and contain at least one uppercase letter and at least one number.

Voluntary Product Accessibility Template Blackboard Learn Release 9.1 April 2014 (Published April 30, 2014)

SmartGrant Web Browser Set-Up

PC Troubleshooting Steps

MSOW. MSO for the Web MSONet Workstation Configuration Guide

1. Right click using your mouse on the desktop and select New Shortcut.

Grandstream Networks, Inc.

Junos Pulse VPN Client Installation

Portal Recipient Guide

This guide is to help you get started with Live Chat Support on your Wix website. If you have any additional questions after reading this guide,

USM Web Content Management System

OCS Client Installation - Quick Start Guide. Web Conferencing & Secure Instant Messaging via Microsoft Office Communications Server 2007

Frequently Asked Questions for logging in to Online Banking

Reference Guide for WebCDM Application 2013 CEICData. All rights reserved.

To begin, visit this URL:

Remote Access Services Apple Macintosh - Installation Guide

XEN Web Portal Instructions

Introduction to NemID and the NemID Service Provider Package

TxEIS Browser Settings

Pearson Onscreen Platform (POP) Using POP Offline testing system guide

Safewhere*Identify 3.4. Release Notes

A) What do I do when I get a screen with an error message that reads: Logon with URL parameter not possible; logon cookie is missing?

Introduction Requesting a VPN Account Accessing the Citrix Access Gateway (CAG) Tips and Tricks... 9

Windows and MAC User Handbook Remote and Secure Connection Version /19/2013. User Handbook

Cloud Services. Archiving. End User Guide

3. Viewing and Restoring Items and Files from the Mimosa Archive

Microsoft OneDrive. How to login to OneDrive:

ListHub Broker User Manual

Connecting to Remote Desktop Windows Users

How to Set Up SSL VPN for Off Campus Access to UC eresources

Version NOVO NORDISK INC. Online Supplier Registration System. Supplier User Guide

GETTING STARTED WITH FLEXI-CLOUD

Grandstream Networks, Inc.

Labour Market Programs Support System. LaMPSS Computer Compatibility Guide

Candidate FAQs & User Guide for the ALSG Learning Site

How To Login To A Website On A Pc Or Mac Or Mac (For Pc Or Ipad)

Student Home

SchoolBooking SSO Integration Guide

User Manual 03/12/2014. A collaborative effort by

Serena Software Voluntary Product Accessibility Report. Summary Table

Version PACIFIC GAS AND ELECTRIC COMPANY. Online Supplier Registration System. Supplier User Guide

Sophos Mobile Control as a Service Startup guide. Product version: 3.5

Optimal Browser Settings for Internet Explorer Running on Microsoft Windows

Edexcel Online FS ICT On Demand Download of Papers

Instructions for Configuring Your Browser Settings and Online Security FAQ s. ios8 Settings for iphone and ipad app

1. Application Overview System Requirements Installation Splash Screen Registration Screen...

Net 2. NetApp Electronic Library. User Guide for Net 2 Client Version 6.0a

Using the My HUgo Portal

Client Manager User Guide. Version 1.2 Last update: 30 April 2015

DocuSign for Microsoft Dynamics CRM

UNIT ASSESSMENT SYSTEM DOCUMENTATION FACULTY

FUNDS ADMINISTRATIVE SERVICE INC.

A Guide to using egas Lead Applicant

Using Rackspace Webmail

A Step-by-Step Patient Guide to Upload Medical Images to the Cleveland Clinic Neurological Institute

Setup Corporate (Microsoft Exchange) . This tutorial will walk you through the steps of setting up your corporate account.

HAIKU LMS PARENT MANUAL

Step 4: Click Upload >> Browse for zip file, then click Install Now. Step 6: List Eruption should show up as a new button in your Wordpress Navigation

Google Trusted Stores Setup in Magento

How to Setup, Install & Run a Website on your Local Computer. For WordPress - on an Offline Server - WAMP

Web Conferencing Version 8.3 Troubleshooting Guide

ListHub Broker User Manual

BaseManager & BACnet Manager VM Server Configuration Guide

Bijlage1. Software Requirements Specification CIS. For. Version 1.0 final. Prepared by Saidou Diallo. HvA/Inaxion. November 2009

Advantage for Windows Copyright 2012 by The Advantage Software Company, Inc. All rights reserved. Client Portal blue Installation Guide v1.

How To Use Moodle Online Class On A Pc Or Mac Or Ipad (For Acedo) On A Computer Or Mac) On Your Computer Or Ipod Or Ipo (For An Ipo) For Acedor Or Mac (

EPSS Helpdesk - workdays from 08:00 to 20:00 - Phone: support@epss-fp7.org

EMPLOYEE EXPENSE ENTRY GUIDE (EMPLOYEE ONLY)

TriCore Secure Web Gateway User Guide 1

Note: A WebFOCUS Developer Studio license is required for each developer.

Quick Start Guide. DocuSign for Dynamics CRM Online Overview. Published August 2015

f. Expand the term to see the courses in which you are enrolled by clicking on the + sign to the left of the semester.

Advanced Digital Imaging

Table of Contents User Guide... 1 Welcome... 4 Front End Life Blue... 5 General Navigation... 5 Menu Bar... 5 Continuous Scroll... 5 Hyperlinks...

Lync Online Deployment Guide. Version 1.0

AXIS Camera Companion Internet access

How To Use Listhub On A Pc Or Macbook

Portal Instructions for Mac

SpringCM Troubleshooting Guide for Salesforce

Change Advanced Proxy Server Configuration Settings

1 Mhelpdesk LLC.

Welcome to the TransPerfect Translations Secure File Transfer Website What is Secure FTP?

CONFIGURATION AND SETUP USER GUIDE AND REFERENCE MANUAL

the barricademx end user interface documentation for barricademx users

Are you having trouble logging in with a Username that contains special characters or spaces?

efiletexas.gov Court Administrator User Guide

Connecting to securevirtual Workspace

NemID JS Developer Support site. Guidelines

USER S MANUAL JOOMLA! GOVERNMENT WEB TEMPLATE

Saving work in the CMS Edit an existing page Create a new page Create a side bar section... 4

Transcription:

Guidelines for the LSS for NemID interaction design and user selection Table of contents 1 The purpose and audience of the document... 3 2 Introduction... 4 3 Recommendations... 5 3.1 Visual appearance... 5 3.2 Sizing... 5 3.3 Internal error handling... 5 3.4 Help messages... 6 3.5 Certificate selection... 7 3.6 Remembering user name... 7 3.7 Presenting text to sign... 8 3.8 Presenting text to sign in PDF format... 8 3.9 Printing mechanism for signing document... 9 3.10 Download of pdf documents to be signed... 9 4 Accessibility... 10 Signaturgruppen 4/4 2013 Page 1 of 10

Version history 4th April 2014 Version 1.1 MSP 28 th March 2014 Version 1.0 MSP 13 th March 2014 Version 0.91 BS 2014 Version 0.9 JGB Signaturgruppen 4/4 2013 Page 2 of 10

1 The purpose and audience of the document The purpose of this document is to provide guidelines for the interaction design, in order to make the design recognisable to the user. The document addresses the personnel of the service provider, responsible for designing the user experience and graphical user interface for online services. Summary of all documents in the LSS for NemID service provider package: General documentation Introduction to the LSS for NemID service provider package Guidelines for the LSS for NemID interaction design and user selection Terms and concepts in LSS for NemID Implementation documentation General technical specification Implementation FAQ for LSS for NemID Test documentation Guidelines on the use of LSS for NemID test tools Recommended test procedures for LSS for NemID Reference documentation Specification document for the PID-CPR service Specification document for the RID-CPR service Specification document for LDAP API Specification document for OCSP Specification document for OCES II Signaturgruppen 4/4 2013 Page 3 of 10

2 Introduction The classical user scenario for using NemID for business (key file) includes a list of all the certificates installed in the certificate store of the local machine using the open sign applet. This gives the opportunity to show only the certificates belonging to the owner of this particular machine/device. When wanting to use certificates stored on a key server on mobile devices, it is not always desirable or possible to transfer information about which certificates belongs to which users. Therefore, each session must start by the user identifying himself by entering his user name in a text input field. Even though it is common to allow the browser to store the password, it is now allowed to do so in this scenario, due to restrictions in the certificate policy. Signaturgruppen 4/4 2013 Page 4 of 10

3 Recommendations 3.1 Visual appearance Since the page, containing the LSS Client, in many cases will be put on a separate tab next to the other NemID options. The visual appearance should not differ too much from the design included in the other options. However, it is recommended that the design should distinguish itself from the other options in order to avoid confusion. This could cause the user to enter his or her credentials in the wrong place. 3.2 Sizing The LSS implementation must be able to fit inside the size of the LSS Client frame. The minimum size a service provider may use for the LSS Client is 200*270 pixels. For the login flow this is sufficient and the recommended size. For signing flows it is recommended that the service provider setup a 500*450 pixel frame if possible. 3.3 Internal error handling Some errors, such as No such user or Wrong passwords are handled internally by the LSS for NemID backend. Error messages should be displayed within the LSS Client without the need for scrolling. Signaturgruppen 4/4 2013 Page 5 of 10

3.4 Help messages Like with internal error messages, help texts should be displayed within the LSS Client without the need for scrolling. Should it be necessary to refer to a helpdesk function within the help messages, it should be possible to refer to the local help desk of the company or organization, owning the LSS implementation. Signaturgruppen 4/4 2013 Page 6 of 10

3.5 Certificate selection In some LSS implementations, it is possible for the users to have multiple certificates. This calls for a mechanism, allowing the user to select one of his multiple certificates for this specific operation. The LSS for NemID backend implementation should remember the certificate used last for operation, in order to avoid that the user has to select a certificate each time, under the assumption that he has a certificate that he uses more than the others. In case the user only has one certificate, the certificate selection mechanism should not be displayed. 3.6 Remembering user name The user should be able to have his or hers username remembered between sessions. As the LSS Client is running through an iframe the cookies set by the LSS back-end are by definition third party cookies. Currently, Firefox and Chrome supports third party cookies. IE has support if a P3P header is included in the response, but Safari is by default blocking all third party cookies. For that reason it is required that LSS suppliers implement their backend service without the use of cookies to accommodate all browsers. Signaturgruppen 4/4 2013 Page 7 of 10

As an alternative for cookies the LSS for NemID backend implementation could utilize the HTML5 Web Storage framework. 3.7 Presenting text to sign During the signing flow, the user must always be able to see the entire document, which he is about to sign. It should be as easy as possible for the user to browse or magnify the signing text, in order to make it as readable as possible. 3.8 Presenting text to sign in PDF format Not all browsers are able to render documents in PDF format natively. This is especially a problem on mobile devices. If the LSS backend implements PDF signature flows it is important that the PDF rendered for the user are the PDF signed and returned to the service provider. Signaturgruppen 4/4 2013 Page 8 of 10

3.9 Printing mechanism for signing document LSS for NemID backend implementations should implement a mechanism for printing the document, which the user is about to sign. 3.10 Download of pdf documents to be signed LSS for NemID backend implementations should implement a mechanism allowing users to download the PDF document presented to them for signature in the LSS Client. Signaturgruppen 4/4 2013 Page 9 of 10

4 Accessibility LSS for NemID backend implementations should comply with the W3C recommendations regarding accessibility known as WCAG. The points to be especially concerned about in the recommendation are the following - Readability: It is important that all elements are readable. In particular, the text to be signed must be readable to conform to the what you see is what you sign requirement. This means that the LSS suppliers must be careful when choosing colors and contrast of the UI. It is also important that all text must be zoom-able up to 200%. - Functionality: Everything should be controllable using keyboard only and the tab and focus order should be natural It is also recommended to test the solution with a reading tool for disabled. Signaturgruppen 4/4 2013 Page 10 of 10

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information