Presentation is loading. Please wait.

Presentation is loading. Please wait.

"certification service provider" Electronic Signatures

Published byProsper Stanley Modified over 8 years ago

Similar presentations

Presentation on theme: ""certification service provider" Electronic Signatures"— Presentation transcript:

1 "certification service provider" Electronic Signatures
Legal Status of Qualified Electronic Signatures 1 Definition according to section 2, paragraph 8 of the Electronic Signatures Act: "certification service provider" means a natural or legal person who issues qualified certificates or qualified time stamps. Electronic Signatures

2 Electronic Signatures
2 Legal Status What is different about qualified signatures? - Validity model (sections 16 and 19 of the Electronic Signatures Act) - Algorithms (specified annually) - Hardware compulsory (non-repudiation) - Long-term verifiability (at least 5/35 years) National root certificate for accredited certification service providers only - Quality mark for accredited certification service providers only Electronic Signatures

3 Recognised evaluation and certification bodies Recognises BSI debis
Section IS 15 Electronic Signatures Recognised evaluation and certification bodies Recognises BSI debis TÜVIT Publishes Operates Federal Gazette/ RegTP Official Gazette/Internet Accredits Accredits Evaluation and certification bodies Proposes Certify compliance with the Electronic Signatures Act and Ordinance National root certification authority Products Algorithms Algorithms Certifies Competent Authority's keys Certification service providers Security concept - Products - Management - Staff, etc Certification service providers Certification service providers Technical components - Signature creation device Directory service Time stamp service - Key generator, etc Signature key holders

4 Electronic Signatures
4 Legal Status Enhanced quality through voluntary accreditation Enhance the level of the certification services to be provided towards the levels of trust, security and quality demanded by the evolving market. Electronic Signatures Directive, Recital 11 = Secure procedures, archivability, availability, etc Voluntary accreditation Article 2, paragraph 13 of the Electronic Signatures Directive Section 15 of the Electronic Signatures Act = Permission, setting out rights and obligations for the provision of certification services and granted at the request of the certification service provider concerned by the competent body. The certification service provider is not entitled to exercise the rights and obligations stemming from the permission until it has received the permission. Competent body Right to operate as accredited provider Permission Application Electronic Signatures

5 Electronic Signatures
5 Legal Status EU Directive for Electronic Signatures Continental European Approach Anglo-Saxon Approach Prevention through comprehensive pre-implementation checks for - products, technical, administrative and organisational aspects of certification activities, and reliability and specialised knowledge of staff. Ensuring adequate minimum level of - competition in the market, and - liability. Liability depends on - ability and willingness to assume liability in cases of damage, and - recognised cases of damage. Development costs (evaluation of products and security concepts) More time-intensive in initial stages "Teething problem" Long-term problem Electronic Signatures

6 Legal Status Implementation in the Electronic Signatures Act
6 Legal Status Implementation in the Electronic Signatures Act Unregulated area – section 1(2) Qualified electronic signatures (section 2 paragraph 3) - Certification service providers: Certification service providers granted accreditation (can be made mandatory in the public sector) Certification service providers subject to supervision Legal status: equivalence with handwritten signatures (section 126a of the Civil Code) Unregulated area – section 1(2) Electronic Signatures

7 electronic signatures Electronic Signatures
7 Legal Status "Equivalence" of electronic signatures Time horizon Electronic Signatures Ordinance 16 November 2001 Amendment of Formal Requirements Act 1 August 2001 Electronic Signatures Act 22 May 2001 2001 Amendment of legislation requiring writing as the legal form 2000 Evaluation of products, procedures and acceptance bodies 1998 Developmental stage (Act and Ordinance) 1996 Electronic Signatures

Download ppt ""certification service provider" Electronic Signatures"

Similar presentations

The Managing Authority –Keystone of the Control System

The Managing Authority –Keystone of the Control System
Bundesamt für Sicherheit in der Informationstechnik EESSI - WS May 11.-12., 2000, Paris, Folie 1/18Klaus J. Keus, BSI Electronic Signatures in Germany,

Bundesamt für Sicherheit in der Informationstechnik EESSI - WS May , 2000, Paris, Folie 1/18Klaus J. Keus, BSI Electronic Signatures in Germany,
Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.

Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.
Chapter 3 Health Care Information Systems: A Practical Approach for Health Care Management 2nd Edition Wager ~ Lee ~ Glaser.

Chapter 3 Health Care Information Systems: A Practical Approach for Health Care Management 2nd Edition Wager ~ Lee ~ Glaser.
1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation 23-25 May 2012, Kish Island, I.R.IRAN.

1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation May 2012, Kish Island, I.R.IRAN.
Naklo, 22.10.2004 A.Komšo 1 eInvoices and Tax Regulation Andja Komšo Tax Administration.

Naklo, A.Komšo 1 eInvoices and Tax Regulation Andja Komšo Tax Administration.
“Reform of the Child Care System: Taking Stock and Accelerating Action” South East Europe 3 – 6 July 2007, Sofia.

“Reform of the Child Care System: Taking Stock and Accelerating Action” South East Europe 3 – 6 July 2007, Sofia.
2002 10 21 Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.

Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.
PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.

PAPERLESS BUSINESS in GEORGIAN FINANCIAL SECTOR NANA ENUKIDZE - Advisor to the Governor.
Regulation (EC) No. 765/2008 on accreditation and market surveillance

Regulation (EC) No. 765/2008 on accreditation and market surveillance
1 Review of the Electronic Transactions Ordinance Information Infrastructure Advisory Committee 9 April 2002.

1 Review of the Electronic Transactions Ordinance Information Infrastructure Advisory Committee 9 April 2002.
Legal Issues on PKI & qualified electronic certificates. THIBAULT VERBIEST Attorney-at-law at the Brussels and Paris Bar Professor at the Universities.

Legal Issues on PKI & qualified electronic certificates. THIBAULT VERBIEST Attorney-at-law at the Brussels and Paris Bar Professor at the Universities.
Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.

Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.
Spring Conference of the European Privacy Commissioners 2002 in Bonn 1 Privacy Protection Audit/Seal of Quality - Practical Experience Dr. Helmut Bäumler.

Spring Conference of the European Privacy Commissioners 2002 in Bonn 1 Privacy Protection Audit/Seal of Quality - Practical Experience Dr. Helmut Bäumler.
DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,

DIGITAL SIGNATURE AND ELECTRONIC DOCUMENTS IN ITALY Prof. Pierluigi Ridolfi AIPA Authority for Information Technology in the Public Administration V. Solferino,
COEN 351: E-Commerce Security Public Key Infrastructure Assessment and Accreditation.

COEN 351: E-Commerce Security Public Key Infrastructure Assessment and Accreditation.
Some initiatives of the Belgian government in order to stimulate E-government Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg.

Some initiatives of the Belgian government in order to stimulate E-government Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg.
1 Reform of the EU regulatory framework for electronic communications What it means for Access to Emergency Services Reform of the EU regulatory framework.

1 Reform of the EU regulatory framework for electronic communications What it means for Access to Emergency Services Reform of the EU regulatory framework.
An ASEAN Mutual Recognition Arrangement for Tourism Services Professor Chris Cooper Bangkok December 2006 Professor Chris Cooper Bangkok December 2006.

An ASEAN Mutual Recognition Arrangement for Tourism Services Professor Chris Cooper Bangkok December 2006 Professor Chris Cooper Bangkok December 2006.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

Similar presentations

Ads by Google