Compliance Profile

These specifications and standards ensure secure and reliable cloud-based digital signatures, particularly on mobile devices, by defining rules and protocols for Trusted Service Providers (TSPs) and offering technical guidance for secure system implementation. They cover system integrity, data protection, access control, software security, auditability, incident response, legal compliance, and interoperability. Adherence to these guidelines by TSPs ensures that their digital signature services meet stringent security requirements, instilling confidence in the authenticity and integrity of electronic transactions across cloud platforms and mobile devices.

Specification
Description

EN 419241-1:2018

Trustworthy Systems Supporting Server Signing - Part 1: General System Security Requirements

EN 419241-2:2019

Trustworthy Systems Supporting Server Signing - Part 2: Protection profile for QSCD for Server Signing

EN 419221-5:2018

Protection Profiles for TSP Cryptographic Modules - Part 5: Cryptographic Module for Trust Services