SAM Integration
Overview
SAM, or the Signature Activation Module, serves as a fundamental component of remote signing mechanisms, ensuring a secure communication framework, validating signature activation data, and effectively managing the exclusive control of private keys on behalf of users through a cryptographic module known as a Qualified Signature Creation Device (QSCD).
In adherence to the eIDAS standards for remote signing, SAM operates within the parameters of two significant norms:
EN 419 241-1: Trustworthy Systems Supporting Server Signing Part 1, General System Security Requirements: This standard outlines the overarching system security requirements for trustworthy systems that facilitate server signing. SAM, as a component, ensures compliance with these general security requirements, contributing to a robust and secure remote signing environment.
EN 419 241-2: Trustworthy Systems Supporting Server Signing Part 2, Protection Profile for QSCD for Server Signing (generally known as Signature Activation Module (SAM)): This standard, often recognized as the Signature Activation Module (SAM), specifically addresses the Protection Profile for QSCD designed for server signing. SAM, in this context, aligns with the defined protection profile, encompassing the necessary features and safeguards for a QSCD tailored to server signing functionalities.
In summary, SAM emerges as a multifaceted component crucial for ensuring the security and controlled management of private keys in remote signing scenarios, all while adhering to the rigorous standards set forth by eIDAS, particularly EN 419 241-1 and EN 419 241-2.