iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
SIST

SIST-TS CEN/TS 419221-6:2019

(Main)

Conditions for use of EN 419221-5 as a qualified electronic signature or seal creation device

Conditions for use of EN 419221-5 as a qualified electronic signature or seal creation device

This document specifies conditions for use of an EN 419221-5 certified device in the case the signatory or seal creator has direct local control of the cryptographic module with the aim of being recognised as a qualified seal and/or signature creation device as defined in Regulation EU 910/2014 [1].
This document is aimed at use by entities other than trust service providers. Trust service providers can use EN 419221-5 directly without the need to take into account specific conditions as specified in the present document.

Bedingungen zu lokalen Verwendung von EN 419221-5 als qualifizierte elektronische Signatur- oder Siegelerstellungseinheit

Conditions d'utilisation de l'EN 419221-5 en tant dispositif de création de signature ou cachet électronique qualifié

Le présent document spécifie les conditions d'utilisation d'un dispositif certifié selon l'EN 419221-5 dans le cas où le créateur du cachet ou de la signature exerce un contrôle local direct du module cryptographique en vue d'être reconnu en tant que dispositif de création de cachet et/ou de signature qualifié comme défini dans le Règlement UE N°910/2014 [1].
Le présent document est destiné à être utilisé par d'autres entités que les prestataires de services de confiance. Les prestataires de services de confiance peuvent utiliser l'EN 419221-5 directement sans être dans l'obligation de tenir compte des conditions spécifiques spécifiées dans le présent document.

Pogoji za uporabo EN 419221-5 kot sredstva za ustvarjanje kvalificiranega elektronskega podpisa ali pečata

Ta dokument določa pogoje za uporabo naprave, potrjene v skladu s standardom EN 419221-5, v primeru da ima podpisnik ali ustvarjalec pečata neposreden lokalni nadzor nad kriptografskim modulom, s ciljem, da bi bila prepoznana kot potrjena naprava za ustvarjanje pečata in/ali podpisa, kot je opredeljeno v Uredbi EU 910/2014 [1].
Ta dokument je namenjen za uporabo v subjektih, ki niso ponudniki storitev zaupanja. Ponudniki storitev zaupanja lahko neposredno uporabljajo standard EN 419221-5, ne da bi morali upoštevati posebne pogoje, kot so opredeljeni v tem dokumentu.

General Information

Status
Published
Publication Date
14-May-2019
ICS
35.040.01 - Information coding in general
Technical Committee
ITC - Information technology
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
29-Apr-2019
Due Date
04-Jul-2019
Completion Date
15-May-2019
Mandate
M/460 - Standardisation Mandate to the European Standardisation Organizations CEN, CENELEC and ETSI in the field of Information and Communication Technologies applied to Electronic Signatures
Ref Project
CEN/TS 419221-6:2019 - Conditions for use of EN 419221-5 as a qualified electronic signature or seal creation device

Buy Standard

TS CEN/TS 419221-6:2019TS CEN/TS 419221-6:2019
PreviousNext
Technical specification
TS CEN/TS 419221-6:2019
English language
9 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)

SLOVENSKI STANDARD
SIST-TS CEN/TS 419221-6:2019
01-junij-2019
Pogoji za uporabo EN 419221-5 kot sredstva za ustvarjanje kvalificiranega
elektronskega podpisa ali pečata
Conditions for use of EN 419221-5 as a qualified electronic signature or seal creation
device
Bedingungen zu lokalen Verwendung von EN 419221-5 als qualifizierte elektronische
Signatur- oder Siegelerstellungseinheit
Conditions d'utilisation de l'EN 419221-5 en tant dispositif de création de signature ou
cachet électronique qualifié
Ta slovenski standard je istoveten z: CEN/TS 419221-6:2019
ICS:
35.040.01 Kodiranje informacij na Information coding in general
splošno
SIST-TS CEN/TS 419221-6:2019 en,fr,de
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------

SIST-TS CEN/TS 419221-6:2019

---------------------- Page: 2 ----------------------

SIST-TS CEN/TS 419221-6:2019


CEN/TS 419221-6
TECHNICAL SPECIFICATION

SPÉCIFICATION TECHNIQUE

March 2019
TECHNISCHE SPEZIFIKATION
ICS 35.040.01; 35.240.30
English Version

Conditions for use of EN 419221-5 as a qualified electronic
signature or seal creation device
Conditions d'utilisation de l'EN 419221-5 en tant Bedingungen zu lokalen Verwendung von EN 419221-
dispositif de création de signature ou cachet 5 als qualifizierte elektronische Signatur- oder
électronique qualifié Siegelerstellungseinheit
This Technical Specification (CEN/TS) was approved by CEN on 11 February 2019 for provisional application.

The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to
submit their comments, particularly on the question whether the CEN/TS can be converted into a European Standard.

CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS
available promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in
parallel to the CEN/TS) until the final decision about the possible conversion of the CEN/TS into an EN is reached.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,
Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland,
Turkey and United Kingdom.





EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Rue de la Science 23, B-1040 Brussels
© 2019 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 419221-6:2019 E
worldwide for CEN national Members.

---------------------- Page: 3 ----------------------

SIST-TS CEN/TS 419221-6:2019
CEN/TS 419221-6:2019 (E)
Contents Page

European foreword . 3
Introduction . 4
1 Scope . 5
2 Normative references . 5
3 Terms and definitions . 5
3.1 Terminology . 5
3.2 Abbreviations . 5
4 Conditions for use of EN 419221-5 Certified device as QSealCD. 6
5 Conditions for use of EN 419221-5 Certified device as QSigCD . 6
Annex A (informative) Guidance on meeting Objectives of the Operation Environment . 7
A.1 Introduction . 7
A.2 OE.ExternalData — Protection of data outside TOE control . 7
A.3 OE.Env — Protected operating environment . 7
A.4 OE.DataContext — Appropriate use of TOE functions . 8
A.5 OE.Uauth — Authentication of application users . 8
A.6 OE.AuditSupport — Audit data review . 8
A.7 OE.AppSupport — Application security support . 8
Bibliography . 9


2

---------------------- Page: 4 ----------------------

SIST-TS CEN/TS 419221-6:2019
CEN/TS 419221-6:2019 (E)
European foreword
This document (CEN/TS 419221-6:2019) has been prepared by Technical Committee CEN/TC 224
“Personal identification, electronic signature and cards and their related systems and operations”, the
secretariat of which is held by AFNOR.
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CEN shall not be held responsible for identifying any or all such patent rights.
This document has been prepared under a mandate given to CEN by the European Commission and the
European Free Trade Association.
According to the CEN/CENELEC Internal Regulations, the national standards organisations of the
following countries are bound to announce this Technical Specification: Austria, Belgium, Bulgaria,
Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia,
France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta,
Netherlands, Norway, Poland, Portugal, Romania, Serbia, Slovakia, Slovenia, Spain, Sweden, Switzerland,
Turkey and the United Kingdom.
3

---------------------- Page: 5 ----------------------

SIST-TS CEN/TS 419221-6:2019
FprCEN/TS 419221-6:2018 (E)
Introduction
EU Regulation N° 910/2014 (eIDAS) on electronic identification and trust services for electronic
transactions in the internal market [1] builds on the concept and requirements defined in the earlier EU
Directive 1999/93 on Electronic Signatures [i.3]. eIDAS defines an electronic signature which has legal
equivalence to handwritten signature. eIDAS defines a variant of the electronic signature called electronic
seal. An electronic seal authenticates the origin of data but created under control, as opposed to “sole
control” for electronic signatures, of a legal person (e.g. organization), as opposed to natural person (i.e.
individual). eIDAS recognizes a special level of qualified electronic signature and seal which is created
using a qualified signature creation device (QSigCD) or qualified seal creation device (QSealCD) and
supported by a qualified certificate. The requirements for a qualified seal creation device are described
to be “mutatis mutandis” as for a qualified signature creation device.
The EN 419221-5 standard states that a conformant cryptographic module is intended to be used as a
qualified electronic signatures and seal creation device under Regulation 910/2014 (see Clause 1.2.1)
but the scope of the document is aimed at trust service providers. This document aims to give users,
implementers and regulators a clear basis for acceptance of EN 419221-5 certified devices for use as a
qualified signature creation device or a qualified electronic seal creation device under Regulation
910/2014 even if not operated by a qualified TSP.
Annex A of EN 419221-5:2018 describes how the requirements for a Qualified Signature Creation Device
(as defined in Annex II of (EU) No 910/2014) are covered by the standard. The equivalent may also be
applied “Mutatis Mutandis” to Qualified Seal Creation Device where the requirements for control are
considered to be less stringent (“control” instead of “sole control”).

4

---------------------- Page: 6 ----------------------

SIST-TS CEN/TS 419221-6:2019
CEN/TS 419221-6:2019 (E)
1 Scope
This document specifies conditions for use of an EN 419221-5 certified device in the case the signatory
or seal creator has direct local control of the cryptographic module with the aim of being recognized as a
qualified seal and/or signature
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

SIST
SIST EN 419231:2019(Main)
Protection profile for trustworthy systems supporting time stamping
EN 419231:2019

This European Standard specifies a protection profile for trustworthy systems supporting time stamping.

  • Standard
    63 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 419241-2:2019(Main)
Trustworthy Systems Supporting Server Signing - Part 2: Protection profile for QSCD for Server Signing
EN 419241-2:2019

The scope of proposed 419 241 part 2 (PP TSCM) covers security requirements to reach compliance with Annex II of Regulation No 910/2014 of the remote (qualified TSP operated) parts of the system, other than those relating to Signature Activation Data (SAD) management and the operation of the Signature Activation Protocol (SAP), assuming use of a cryptographic module conforming to EN 419 221-5. EN 419 241 part 2 will be balloted simultaneously with EN 419241 Part 3 Protection profile for Signature Activation Data management and Signature Activation Protocol(PP-SAD+SAP). These two new parts of EN 419 241, used in conjunction with the protection for PP for Cryptographic Module for Trust Services (EN 419 221-5), will contain security requirements for level 2 (sole control) as specified in TS 419 241 in a formal manner aligned with common criteria. These two new parts of EN 419 241, with EN 419 221-5, will support the certification of a system for remote qualified electronic signature or seal creation devices (remote QSCD) which meet the requirements of EU Regulation No 910/2014: The electronic signature creation data can be reliably protected by the legitimate signatory (sole control) against use by others, where the generation and management of the signature creation data is carried out by a qualified trust service provider on behalf of a signatory.

  • Standard
    75 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TP CEN/TR 419030:2018(Main)
Rationalized structure for electronic signature standardization - Best practices for SMEs
CEN/TR 419030:2018

This Technical Report aims to be the entry point in relation to electronic signatures for any SME that is considering to dematerialize paper-based workflow(s) and seeks a sound legal and technical basis in order to integrate e-Signatures in this process. It is not intended to be a guide for SMEs active in the development of electronic signatures products and services - they should rather rely on the series EN 319 x00 for building their offer - but it is a guide for SMEs CONSUMING e-Signature products and services.
This document builds on FprCEN/TR 419040, "Guidelines for citizens", explaining the concept and use of electronic signatures, to further help SMEs to understand the relevance of using e-Signatures within their business processes. It guides SMEs in discovering the level of electronic Signatures which is appropriate for their needs, extends the work to specific use-case scenarios, paying special attention to technologies and solutions, and addresses other typical concrete questions that SMEs need to answer before any making any decisions (such as the question of recognition of their e-Signature by third parties, within their sector, country or even internationally).
Once the decision is taken to deploy e-Signatures in support of their business, SMEs will then typically collaborate with their chosen providers of e-Signature products or services, which can be done on the basis of ETSI 19 100, "Business driven process for implementing generation and validation of electronic signatures in electronic business", that helps enterprises fulfil their business requirements.  The present document presents the concept and use of the standards relevant for SMEs developed under the Rationalised Framework to SMEs.

  • Technical report
    30 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TP CEN/TR 419040:2018(Main)
Rationalized structure for electronic signature standardization - Guidelines for citizens
CEN/TR 419040:2018

This Technical Report aims to help citizens to understand the relevance of using electronic signature within their day-to-day lives. It explains the legal and the technical backgrounds of electronic signatures.
This document gives guidance on the use of electronic signatures and addresses typical practical questions the citizen may have on how to proceed to electronically sign, where to find the suitable applications and material.
NOTE   It is probably more valuable for citizens to understand the value of electronically signing or sealing than understanding the standardization landscape in background.

  • Technical report
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 419221-5:2018(Main)
Protection profiles for Trust Service Provider Cryptographic modules - Part 5: Cryptographic Module for Trust Services
EN 419221-5:2018

This new part of TS 419 221 (419221-5) specifies a protection profile for cryptographic modules used by trust service providers supporting electronic signing and sealing operations and authentication services.  This protection profile includes support for protected backup of keys.
This protection profile is aimed at supporting trust services providers as identified by proposed regulation of the European Parliament and of the Council on electronic identification and trust services for electronic transactions in the internal market (eIDAS).
Note: This regulation is proposed to replace Directive 1999/93.  Has been approved by trialogue between the Council, Commission and parliament, the Committee of Permanent [Council] Representatives (COREPER) and is due to be put forward to the European Parliament on 3rd April.
Trust service providers targeted include those at supporting time-stamping, electronic seals and electronic signatures.

  • Standard
    79 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TP CEN/TR 419010:2017(Main)
Framework for standardization of signatures - Extended structure including electronic identification and authentication
CEN/TR 419010:2017

The regulation on electronic identification and trusted eServices (eIDAS regulation) clearly extends the current Electronic Signature Directive from electronic signature towards electronic identification and electronic authentication. These two topics are closely linked to electronic signature and are considered in this context in this document. There are many documents, standards, industrial initiatives and European projects on identification and authentication, but the scope here is limited to electronic signature context, and wider to electronic transactions in the internal market.
The present Technical Report is twofold.
It firstly does a brief analysis of the implementing acts on electronic identities CIR 2015/1501 [29] and CIR 2015/1502 [30] and how this is addressed by the eID interoperability framework [31]. It secondly establishes what areas of existing standards are impacted by the eID framework and what further areas of standardization could assist nations in providing eID services.

  • Technical report
    15 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TP CEN/TR 419200:2017(Main)
Guidance for signature creation and other related devices
CEN/TR 419200:2017

The present Technical Report provides guidance on the selection of standards and options for the signature/seal creation and other related devices (area 2) as identified in the framework for standardization of signatures: overview ETSI/TR 119 000 [16].
The present Technical Report describes the Business Scoping Parameters relevant to this area (see Clause 5) and how the relevant standards and options for this area can be identified given the Business Scoping Parameters (Clause 6).
The target audience of this document includes:
-   business managers who potentially require support from electronic signatures/seals in their business and will find here an explanation of how electronic signatures/seals standards can be used to meet their business needs;
-   application architects who will find here material that will guide them throughout the process of designing a system that fully and properly satisfies all the business and legal/regulatory requirements specific to electronic signatures/seals, and will gain a better understanding on how to select the appropriate standards to be implemented and/or used;
-   developers of the systems who will find in this document an understanding of the reasons that lead the systems to be designed as they were, as well as a proper knowledge of the standards that exist in the field and that they need to know in detail for a proper development.

  • Technical report
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/TS 419221-2:2017(Main)
Protection Profiles for TSP cryptographic modules - Part 2: Cryptographic module for CSP signing operations with backup
CEN/TS 419221-2:2016

This Technical Specification specifies a protection profile for cryptographic modules used by certification service providers (as specified in Directive 1999/93) for signing operations, with key backup. Target applications include root certification authorities (certification authorities who issue certificates to other CAs and who are at the top of a CA hierarchy) and other certification service providers where there is a high risk of direct physical attacks against the module.

  • Technical specification
    55 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/TS 419221-3:2017(Main)
Protection Profiles for TSP Cryptographic modules - Part 3: Cryptographic module for CSP key generation services
CEN/TS 419221-3:2016

This Technical Standard specifies a protection profile for cryptographic module for CSP key generation services.

  • Technical specification
    41 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN/TS 419221-1:2017(Main)
Protection Profiles for TSP cryptographic modules - Part 1: Overview
CEN/TS 419221-1:2016

This Technical Specification provides an overview of the protection profiles specified in other parts of FprCEN/TS 419221.

  • Technical specification
    12 pages
    English language
    sale 10% off
    e-Library read for
    1 day