Compliance Profile
These specifications and standards ensure secure and reliable cloud-based digital signatures, particularly on mobile devices, by defining rules and protocols for Trusted Service Providers (TSPs) and offering technical guidance for secure system implementation. They cover system integrity, data protection, access control, software security, auditability, incident response, legal compliance, and interoperability. Adherence to these guidelines by TSPs ensures that their digital signature services meet stringent security requirements, instilling confidence in the authenticity and integrity of electronic transactions across cloud platforms and mobile devices.
| Specification | Description |
|---|---|
EN 419241-1:2018 | Trustworthy Systems Supporting Server Signing - Part 1: General System Security Requirements |
EN 419241-2:2019 | Trustworthy Systems Supporting Server Signing - Part 2: Protection profile for QSCD for Server Signing |
EN 419221-5:2018 | Protection Profiles for TSP Cryptographic Modules - Part 5: Cryptographic Module for Trust Services |
Cloud Signature Consortium |