iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
SIST

SIST EN 319 421 V1.2.1:2023

(Main)

Electronic Signatures and Infrastructures (ESI) - Policy and Security Requirements for Trust Service Providers issuing Time-Stamps

Electronic Signatures and Infrastructures (ESI) - Policy and Security Requirements for Trust Service Providers issuing Time-Stamps

The present document specifies policy and security requirements relating to the operation and management practices of
TSPs issuing time-stamps.
These policy requirements are applicable to TSPs issuing time-stamps. Such time-stamps can be used in support of
digital signatures or for any application requiring to prove that a datum existed before a particular time.
The present document can be used by independent bodies as the basis for confirming that a TSP can be trusted for
issuing time-stamps.
The present document does not specify protocols used to access the TSUs.
NOTE 1: A time-stamping protocol is defined in IETF RFC 3161 [i.2] including optional update in IETF
RFC 5816 [i.3] and profiled in ETSI EN 319 422 [5].
The present document does not specify how the requirements identified can be assessed by an independent party,
including requirements for information to be made available to such independent assessors, or requirements on such
assessors.
NOTE 2: See ETSI EN 319 403-1 [i.9] for guidance on assessment of TSP's processes and services.
NOTE 3: The present document references ETSI EN 319 401 [4] for general policy requirements common to all
classes of TSP's services.

Elektronski podpisi in infrastruktura (ESI) - Zahteve politike in varnosti za ponudnike storitev zaupanja, ki izdajajo časovne žige

Ta dokument določa zahteve politike in varnosti za delovanje in upravljanje ponudnikov storitev zaupanja, ki izdajajo časovne žige.
Te zahteve politike se uporabljajo za ponudnike storitev zaupanja, ki izdajajo časovne žige. Tovrstni časovni žigi se lahko uporabljajo kot podpora za digitalne podpise ali za kateri koli način uporabe, pri katerem se zahteva dokazilo, da je datum že obstajal pred določenim časom.
Neodvisni organi lahko ta dokument uporabijo kot podlago za potrjevanje, da lahko ponudnik storitev zaupanja zanesljivo izdaja časovne žige.
Ta dokument ne določa protokolov za dostop do uporabnikov storitev zaupanja (TSU).
OPOMBA 1: Protokol za časovno žigosanje je določen v standardu IETF RFC 3161 [i.2], vključno z izbirno posodobitvijo v standardu IETF
RFC 5816 [i.3] in profilom v standardu ETSI EN 319 422 [5].
Ta dokument ne določa, kako lahko opredeljene zahteve oceni neodvisna stran, vključno z zahtevami glede informacij, ki jih je treba razkriti takim neodvisnim ocenjevalcem, ali zahtevami glede takih ocenjevalcev.
OPOMBA 2: Glej standard ETSI EN 319 403-1 [i.9] za navodila v zvezi z ocenjevanjem procesov in storitev ponudnikov storitev zaupanja.
OPOMBA 3: Ta dokument se sklicuje na standard ETSI EN 319 401 [4] za splošne zahteve politike, ki so skupne vsem razredom storitev ponudnikov storitev zaupanja.

General Information

Status
Published
Public Enquiry End Date
30-Apr-2023
Publication Date
07-May-2023
ICS
35.030 - IT Security
35.040.01 - Information coding in general
Technical Committee
SPN - Services and Protocols for Networks
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
08-May-2023
Due Date
13-Jul-2023
Completion Date
08-May-2023
Mandate
M/460
Ref Project
ETSI EN 319 421 V1.2.1 (2023-05) - Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing Time-Stamps
ETSI EN 319 421 V1.2.0 (2023-01) - Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing Time-StampsETSI EN 319 421 V1.2.0 (2023-01) - Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing Time-Stamps
PreviousNext
Standard
ETSI EN 319 421 V1.2.0 (2023-01) - Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing Time-Stamps
English language
33 pages
sale 15% off
Preview
sale 15% off
Preview
ETSI EN 319 421 V1.2.1 (2023-05) - Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing Time-StampsETSI EN 319 421 V1.2.1 (2023-05) - Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing Time-Stamps
PreviousNext
Standard
ETSI EN 319 421 V1.2.1 (2023-05) - Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing Time-Stamps
English language
33 pages
sale 15% off
Preview
sale 15% off
Preview
EN 319 421 V1.2.1:2023EN 319 421 V1.2.1:2023
PreviousNext
Standard
EN 319 421 V1.2.1:2023
English language
33 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


Draft ETSI EN 319 421 V1.2.0 (2023-01)

EUROPEAN STANDARD
Electronic Signatures and Infrastructures (ESI);
Policy and Security Requirements for
Trust Service Providers issuing Time-Stamps

2 Draft ETSI EN 319 421 V1.2.0 (2023-01)

Reference
REN/ESI-0019421v1.2.1
Keywords
e-commerce, electronic signature, security,
time-stamping, trust services
ETSI
650 Route des Lucioles
F-06921 Sophia Antipolis Cedex - FRANCE

Tel.: +33 4 92 94 42 00  Fax: +33 4 93 65 47 16

Siret N° 348 623 562 00017 - APE 7112B
Association à but non lucratif enregistrée à la
Sous-Préfecture de Grasse (06) N° w061004871

Important notice
The present document can be downloaded from:
http://www.etsi.org/standards-search
The present document may be made available in electronic versions and/or in print. The content of any electronic and/or
print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any
existing or perceived difference in contents between such versions and/or in print, the prevailing version of an ETSI
deliverable is the one made publicly available in PDF format at www.etsi.org/deliver.
Users of the present document should be aware that the document may be subject to revision or change of status.
Information on the current status of this and other ETSI documents is available at
https://portal.etsi.org/TB/ETSIDeliverableStatus.aspx
If you find errors in the present document, please send your comment to one of the following services:
https://portal.etsi.org/People/CommiteeSupportStaff.aspx
If you find a security vulnerability in the present document, please report it through our
Coordinated Vulnerability Disclosure Program:
https://www.etsi.org/standards/coordinated-vulnerability-disclosure
Notice of disclaimer & limitation of liability
The information provided in the present deliverable is directed solely to professionals who have the appropriate degree of
experience to understand and interpret its content in accordance with generally accepted engineering or
other professional standard and applicable regulations.
No recommendation as to products and services or vendors is made or should be implied.
In no event shall ETSI be held liable for loss of profits or any other incidental or consequential damages.

Any software contained in this deliverable is provided "AS IS" with no warranties, express or implied, including but not
limited to, the warranties of merchantability, fitness for a particular purpose and non-infringement of intellectual property
rights and ETSI shall not be held liable in any event for any damages whatsoever (including, without limitation, damages
for loss of profits, business interruption, loss of information, or any other pecuniary loss) arising out of or related to the use
of or inability to use the software.
Copyright Notification
No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and
microfilm except as authorized by written permission of ETSI.
The content of the PDF version shall not be modified without the written authorization of ETSI.
The copyright and the foregoing restriction extend to reproduction in all media.

© ETSI 2023.
All rights reserved.
ETSI
3 Draft ETSI EN 319 421 V1.2.0 (2023-01)
Contents
Intellectual Property Rights . 5
Foreword . 5
Modal verbs terminology . 5
Introduction . 6
1 Scope . 7
2 References . 7
2.1 Normative references . 7
2.2 Informative references . 8
3 Definitions of terms, symbols, abbreviations and notation . 9
3.1 Terms . 9
3.2 Symbols . 9
3.3 Abbreviations . 10
3.4 Notation . 10
4 General concepts . 10
4.1 General policy requirements concepts . 10
4.2 Time-stamping services . 11
4.3 Time-Stamping Authority (TSA) . 11
4.4 Subscriber . 11
4.5 Time-stamp policy and TSA practice statement . 11
5 Introduction to time-stamp policies and general requirements . 12
5.1 General requirements . 12
5.2 Policy name and identification . 12
5.3 User community and applicability . 12
5.3.1 Best practices time-stamp policy . 12
6 Policies and practices . 12
6.1 Risk assessment . 12
6.2 Trust Service Practice Statement . 13
6.3 Terms and conditions . 13
6.4 Information security policy . 13
6.5 TSA obligations . 13
6.5.1 General . 13
6.5.2 TSA obligations towards subscribers . 13
6.6 Information for relying parties . 14
7 TSA management and operation . 14
7.1 Introduction . 14
7.2 Internal organization. 14
7.3 Personnel security. 14
7.4 Asset management . 15
7.5 Access control . 15
7.6 Cryptographic controls . 15
7.6.1 General . 15
7.6.2 TSU key generation . 15
7.6.3 TSU private key protection . 16
7.6.4 TSU public key certificate . 16
7.6.5 Rekeying TSU's key . 16
7.6.6 Life cycle management of signing cryptographic hardware . 17
7.6.7 End of TSU key life cycle . 17
7.7 Time-stamping . 17
7.7.1 Time-stamp issuance. 17
7.7.2 Clock synchronization with UTC . 18
7.8 Physical and environmental security . 19
7.9 Operation security . 19
ETSI
4 Draft ETSI EN 319 421 V1.2.0 (2023-01)
7.10 Network security . 19
7.11 Incident management . 20
7.12 Collection of evidence . 20
7.13 Business continuity management . 20
7.14 TSA termination and termination plans . 20
7.15 Compliance. 21
8 Additional requirements for qualified electronic time-stamps as per Regulation (EU) No 910/2014 . 21
8.1 TSU public key certificate . 21
8.2 TSA issuing non-qualified and qualified electronic time-stamps as per Regulation (EU) No 910/2014 . 21
Annex A (informative): Potential liability in the provision of time-stamping services . 22
Annex B (informative): Model TSA disclosure statement . 23
B.1 Introduction . 23
B.2 TSA disclosure statement structure . 23
Annex C (informative): Coordinated Universal Time (UTC). 25
Annex D (informative): Long term verification of time-stamps . 26
Annex E (informative): Regulation (EU) No 910/2014 and qualified electronic time-stamp
policy cross-reference . 27
Annex F (informative): Possible implementation architectures - time-stamping service . 28
F.1 Managed time-stamping service . 28
F.2 Selective alternative quality . 28
Annex G (informative): Major changes from ETSI TS 102 023 . 30
Annex H (informative): Conformity Assessment Check list .
...


EUROPEAN STANDARD
Electronic Signatures and Infrastructures (ESI);
Policy and Security Requirements for
Trust Service Providers issuing Time-Stamps

2 ETSI EN 319 421 V1.2.1 (2023-05)

Reference
REN/ESI-0019421v1.2.1
Keywords
e-commerce, electronic signature, security,
time-stamping, trust services
ETSI
650 Route des Lucioles
F-06921 Sophia Antipolis Cedex - FRANCE

Tel.: +33 4 92 94 42 00  Fax: +33 4 93 65 47 16

Siret N° 348 623 562 00017 - APE 7112B
Association à but non lucratif enregistrée à la
Sous-Préfecture de Grasse (06) N° w061004871

Important notice
The present document can be downloaded from:
https://www.etsi.org/standards-search
The present document may be made available in electronic versions and/or in print. The content of any electronic and/or
print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any
existing or perceived difference in contents between such versions and/or in print, the prevailing version of an ETSI
deliverable is the one made publicly available in PDF format at www.etsi.org/deliver.
Users of the present document should be aware that the document may be subject to revision or change of status.
Information on the current status of this and other ETSI documents is available at
https://portal.etsi.org/TB/ETSIDeliverableStatus.aspx
If you find errors in the present document, please send your comment to one of the following services:
https://portal.etsi.org/People/CommiteeSupportStaff.aspx
If you find a security vulnerability in the present document, please report it through our
Coordinated Vulnerability Disclosure Program:
https://www.etsi.org/standards/coordinated-vulnerability-disclosure
Notice of disclaimer & limitation of liability
The information provided in the present deliverable is directed solely to professionals who have the appropriate degree of
experience to understand and interpret its content in accordance with generally accepted engineering or
other professional standard and applicable regulations.
No recommendation as to products and services or vendors is made or should be implied.
In no event shall ETSI be held liable for loss of profits or any other incidental or consequential damages.

Any software contained in this deliverable is provided "AS IS" with no warranties, express or implied, including but not
limited to, the warranties of merchantability, fitness for a particular purpose and non-infringement of intellectual property
rights and ETSI shall not be held liable in any event for any damages whatsoever (including, without limitation, damages
for loss of profits, business interruption, loss of information, or any other pecuniary loss) arising out of or related to the use
of or inability to use the software.
Copyright Notification
No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and
microfilm except as authorized by written permission of ETSI.
The content of the PDF version shall not be modified without the written authorization of ETSI.
The copyright and the foregoing restriction extend to reproduction in all media.

© ETSI 2023.
All rights reserved.
ETSI
3 ETSI EN 319 421 V1.2.1 (2023-05)
Contents
Intellectual Property Rights . 5
Foreword . 5
Modal verbs terminology . 5
Introduction . 6
1 Scope . 7
2 References . 7
2.1 Normative references . 7
2.2 Informative references . 8
3 Definitions of terms, symbols, abbreviations and notation . 9
3.1 Terms . 9
3.2 Symbols . 9
3.3 Abbreviations . 10
3.4 Notation . 10
4 General concepts . 11
4.1 General policy requirements concepts . 11
4.2 Time-stamping services . 11
4.3 Time-Stamping Authority (TSA) . 11
4.4 Subscriber . 11
4.5 Time-stamp policy and TSA practice statement . 12
5 Introduction to time-stamp policies and general requirements . 12
5.1 General requirements . 12
5.2 Policy name and identification . 12
5.3 User community and applicability . 13
5.3.1 Best practices time-stamp policy . 13
6 Policies and practices . 13
6.1 Risk assessment . 13
6.2 Trust Service Practice Statement . 13
6.3 Terms and conditions . 13
6.4 Information security policy . 13
6.5 TSA obligations . 14
6.5.1 General . 14
6.5.2 TSA obligations towards subscribers . 14
6.6 Information for relying parties . 14
7 TSA management and operation . 14
7.1 Introduction . 14
7.2 Internal organization. 14
7.3 Personnel security. 15
7.4 Asset management . 15
7.5 Access control . 15
7.6 Cryptographic controls . 15
7.6.1 General . 15
7.6.2 TSU key generation . 15
7.6.3 TSU private key protection . 16
7.6.4 TSU public key certificate . 16
7.6.5 Rekeying TSU's key . 17
7.6.6 Life cycle management of signing cryptographic hardware . 17
7.6.7 End of TSU key life cycle . 17
7.7 Time-stamping . 18
7.7.1 Time-stamp issuance. 18
7.7.2 Clock synchronization with UTC . 18
7.8 Physical and environmental security . 19
7.9 Operation security . 19
ETSI
4 ETSI EN 319 421 V1.2.1 (2023-05)
7.10 Network security . 20
7.11 Incident management . 20
7.12 Collection of evidence . 20
7.13 Business continuity management . 20
7.14 TSA termination and termination plans . 21
7.15 Compliance. 21
8 Additional requirements for qualified electronic time-stamps as per Regulation (EU) No 910/2014 . 21
8.1 TSU public key certificate . 21
8.2 TSA issuing non-qualified and qualified electronic time-stamps as per Regulation (EU) No 910/2014 . 21
Annex A (informative): Potential liability in the provision of time-stamping services . 22
Annex B (informative): Model TSA disclosure statement . 23
B.1 Introduction . 23
B.2 TSA disclosure statement structure . 23
Annex C (informative): Coordinated Universal Time (UTC). 25
Annex D (informative): Long term verification of time-stamps . 26
Annex E (informative): Regulation (EU) No 910/2014 and qualified electronic time-stamp
policy cross-reference . 27
Annex F (informative): Possible implementation architectures - time-stamping service . 28
F.1 Managed time-stamping service . 28
F.2 Selective alternative quality . 28
Annex G (informative): Major changes from ETSI TS 102 023 . 30
Annex H (informative): Conformity Assessment Check list . 31
Annex I (inf
...


SLOVENSKI STANDARD
01-junij-2023
Elektronski podpisi in infrastruktura (ESI) - Zahteve politike in varnosti za
ponudnike storitev zaupanja, ki izdajajo časovne žige
Electronic Signatures and Infrastructures (ESI) - Policy and Security Requirements for
Trust Service Providers issuing Time-Stamps
Ta slovenski standard je istoveten z: ETSI EN 319 421 V1.2.1 (2023-05)
ICS:
35.030 Informacijska varnost IT Security
35.040.01 Kodiranje informacij na Information coding in general
splošno
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

EUROPEAN STANDARD
Electronic Signatures and Infrastructures (ESI);
Policy and Security Requirements for
Trust Service Providers issuing Time-Stamps

2 ETSI EN 319 421 V1.2.1 (2023-05)

Reference
REN/ESI-0019421v1.2.1
Keywords
e-commerce, electronic signature, security,
time-stamping, trust services
ETSI
650 Route des Lucioles
F-06921 Sophia Antipolis Cedex - FRANCE

Tel.: +33 4 92 94 42 00  Fax: +33 4 93 65 47 16

Siret N° 348 623 562 00017 - APE 7112B
Association à but non lucratif enregistrée à la
Sous-Préfecture de Grasse (06) N° w061004871

Important notice
The present document can be downloaded from:
https://www.etsi.org/standards-search
The present document may be made available in electronic versions and/or in print. The content of any electronic and/or
print versions of the present document shall not be modified without the prior written authorization of ETSI. In case of any
existing or perceived difference in contents between such versions and/or in print, the prevailing version of an ETSI
deliverable is the one made publicly available in PDF format at www.etsi.org/deliver.
Users of the present document should be aware that the document may be subject to revision or change of status.
Information on the current status of this and other ETSI documents is available at
https://portal.etsi.org/TB/ETSIDeliverableStatus.aspx
If you find errors in the present document, please send your comment to one of the following services:
https://portal.etsi.org/People/CommiteeSupportStaff.aspx
If you find a security vulnerability in the present document, please report it through our
Coordinated Vulnerability Disclosure Program:
https://www.etsi.org/standards/coordinated-vulnerability-disclosure
Notice of disclaimer & limitation of liability
The information provided in the present deliverable is directed solely to professionals who have the appropriate degree of
experience to understand and interpret its content in accordance with generally accepted engineering or
other professional standard and applicable regulations.
No recommendation as to products and services or vendors is made or should be implied.
In no event shall ETSI be held liable for loss of profits or any other incidental or consequential damages.

Any software contained in this deliverable is provided "AS IS" with no warranties, express or implied, including but not
limited to, the warranties of merchantability, fitness for a particular purpose and non-infringement of intellectual property
rights and ETSI shall not be held liable in any event for any damages whatsoever (including, without limitation, damages
for loss of profits, business interruption, loss of information, or any other pecuniary loss) arising out of or related to the use
of or inability to use the software.
Copyright Notification
No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and
microfilm except as authorized by written permission of ETSI.
The content of the PDF version shall not be modified without the written authorization of ETSI.
The copyright and the foregoing restriction extend to reproduction in all media.

© ETSI 2023.
All rights reserved.
ETSI
3 ETSI EN 319 421 V1.2.1 (2023-05)
Contents
Intellectual Property Rights . 5
Foreword . 5
Modal verbs terminology . 5
Introduction . 6
1 Scope . 7
2 References . 7
2.1 Normative references . 7
2.2 Informative references . 8
3 Definitions of terms, symbols, abbreviations and notation . 9
3.1 Terms . 9
3.2 Symbols . 9
3.3 Abbreviations . 10
3.4 Notation . 10
4 General concepts . 11
4.1 General policy requirements concepts . 11
4.2 Time-stamping services . 11
4.3 Time-Stamping Authority (TSA) . 11
4.4 Subscriber . 11
4.5 Time-stamp policy and TSA practice statement . 12
5 Introduction to time-stamp policies and general requirements . 12
5.1 General requirements . 12
5.2 Policy name and identification . 12
5.3 User community and applicability . 13
5.3.1 Best practices time-stamp policy . 13
6 Policies and practices . 13
6.1 Risk assessment . 13
6.2 Trust Service Practice Statement . 13
6.3 Terms and conditions . 13
6.4 Information security policy . 13
6.5 TSA obligations . 14
6.5.1 General . 14
6.5.2 TSA obligations towards subscribers . 14
6.6 Information for relying parties . 14
7 TSA management and operation . 14
7.1 Introduction . 14
7.2 Internal organization. 14
7.3 Personnel security. 15
7.4 Asset management . 15
7.5 Access control . 15
7.6 Cryptographic controls . 15
7.6.1 General . 15
7.6.2 TSU key generation . 15
7.6.3 TSU private key protection . 16
7.6.4 TSU public key certificate . 16
7.6.5 Rekeying TSU's key . 17
7.6.6 Life cycle management of signing cryptographic hardware . 17
7.6.7 End of TSU key life cycle . 17
7.7 Time-stamping . 18
7.7.1 Time-stamp issuance. 18
7.7.2 Clock synchronization with UTC . 18
7.8 Physical and environmental security . 19
7.9 Operation security . 19
ETSI
4 ETSI EN 319 421 V1.2.1 (2023-05)
7.10 Network security . 20
7.11 Incident management . 20
7.12 Collection of evidence . 20
7.13 Business continuity management . 20
7.14 TSA termination and termination plans . 21
7.15 Compliance. 21
8 Additional requirements for qualified electronic time-stamps as per Regulation (EU) No 910/2014 . 21
8.1 TSU public key certificate . 21
8.2 TSA issuing non-qualified and qualified electronic time-stamps as per Regulation (EU) No 910/2014 . 21
Annex A (informative): Potential liability in the provision of time-stamping services . 22
Annex B (informative): Model TSA disclosure statement . 23
B.1 Introduction . 23
B.2 TSA disclosure statement structure . 23
Annex C (informative): Coordinated Universal Time (UTC). 25
Annex D (informative): Long term verification of time-stamps .
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

SIST
SIST EN 319 421 V1.3.1:2025(Main)
Electronic Signatures and Trust Infrastructures (ESI) - Policy and Security Requirements for Trust Service Providers issuing Time-Stamps
ETSI EN 319 421 V1.3.1 (2025-07)

The present document specifies policy and security requirements relating to the operation and management practices of TSPs issuing time-stamps. These policy requirements are applicable to TSPs issuing time-stamps. Such time-stamps can be used in support of digital signatures or for any application requiring to prove that a datum existed before a particular time. The present document can be used by independent bodies as the basis for confirming that a TSP can be trusted for issuing time-stamps. The present document does not specify protocols used to access the TSUs.
NOTE 1: A time-stamping protocol is defined in IETF RFC 3161 [i.2] including optional update in IETF RFC 5816 [i.3] and profiled in ETSI EN 319 422 [5].
The present document does not specify how the requirements identified can be assessed by an independent party, including requirements for information to be made available to such independent assessors, or requirements on such assessors.
NOTE 2: See ETSI EN 319 403-1 [i.9] for guidance on assessment of TSP's processes and services.
NOTE 3: The present document references ETSI EN 319 401 [4] for general policy requirements common to all classes of TSP's services.

  • Standard
    33 pages
    English language
    sale 15% off
  • Standard
    34 pages
    English language
    sale 15% off
  • Standard
    34 pages
    English language
    sale 15% off
  • Standard
    34 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 142-2 V1.2.1:2025(Main)
Electronic Signatures and Trust Infrastructures (ESI) - PAdES digital signatures - Part 2: Additional PAdES signatures profiles
ETSI EN 319 142-2 V1.2.1 (2025-07)

The present document defines multiple profiles for PAdES digital signatures which are digital signatures embedded within a PDF file.
The present document contains a profile for the use of PDF signatures, as described in ISO 32000-2 [1] and based on CMS digital signatures [i.6], that enables greater interoperability for PDF signatures by providing additional restrictions beyond those of ISO 32000-2 [1]. This first profile is not related to ETSI EN 319 142-1 [4].
The present document also contains a second set of profiles that extend the scope of the profile in ETSI EN 319 142-1 [4], while keeping some features that enhance interoperability of PAdES signatures. These profiles define three levels of PAdES extended signatures addressing incremental requirements to maintain the validity of the
signatures over the long term, in a way that a certain level always addresses all the requirements addressed at levels that are below it. These PAdES extended signatures offer a higher degree of optionality than the PAdES baseline signatures specified in ETSI EN 319 142-1 [4]. The present document also defines a third profile for usage of an arbitrary XML document signed with XAdES signatures that is embedded within a PDF file. The profiles defined in the present document provide equivalent requirements to profiles found in ETSI TS 102 778 [i.10]. Procedures for creation, augmentation, and validation of PAdES digital signatures are out of scope and specified in ETSI EN 319 102-1 [i.11]. Guidance on creation, augmentation and validation of PAdES digital signatures including the usage of the different attributes is provided in ETSI TR 119 100 [i.9]. The present document does not repeat the base requirements of the referenced standards, but instead aims to maximize interoperability of digital signatures in various business areas.

  • Standard
    32 pages
    English language
    sale 15% off
  • Standard
    32 pages
    English language
    sale 15% off
  • Standard
    32 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 412-4 V1.4.1:2025(Main)
Electronic Signatures and Trust Infrastructures (ESI) - Certificate Profiles - Part 4: Certificate profile for web site certificates
ETSI EN 319 412-4 V1.4.1 (2025-06)

The present document specifies a certificate profile for web site certificates that are accessed by the TLS protocol [i.1].
The profile defined in the present document builds on the CA/Browser Forum Baseline requirements [2], Extended
validation guidelines [3] and other parts of the present multi-part deliverable.
The present document focuses on requirements on certificate content. Requirements on decoding and processing rules
are limited to aspects required to process certificate content defined in the present document. Further processing
requirements are only specified for cases where it adds information that is necessary for the sake of interoperability.
This profile can be used for legal and natural persons. For certificates issued to legal persons, the profile builds on the
CA/Browser Forum EV Profile [3] or baseline requirements [2]. For certificates issued to natural persons, the profile
builds only on CA/Browser Forum baseline requirements [2].

  • Standard
    12 pages
    English language
    sale 15% off
  • Standard
    12 pages
    English language
    sale 15% off
  • Standard
    12 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 412-2 V2.4.1:2025(Main)
Electronic Signatures and Trust Infrastructures (ESI) - Certificate Profiles - Part 2: Certificate profile for certificates issued to natural persons
ETSI EN 319 412-2 V2.4.1 (2025-06)

The present document specifies requirements on the content of certificates issued to natural persons. This profile builds
on IETF RFC 5280 [1] for generic profiling of Recommendation ITU-T X.509 | ISO/IEC 9594-8 [i.3].
This profile supports the requirements of EU Qualified Certificates as specified in the Regulation (EU)
No 910/2014 [i.5] as well as other forms of certificate. The scope of the present document is primary limited to
facilitate interoperable processing and display of certificate information. This profile therefore excludes support for
some certificate information content options, which can be perfectly valid in a local context but which are not regarded
as relevant or suitable for use in widely deployed applications.
The present document focuses on requirements on certificate content. Requirements on decoding and processing rules
are limited to aspects required to process certificate content defined in the present document. Further processing
requirements are only specified for cases where it adds information that is necessary for the sake of interoperability.
Certain applications or protocols impose specific requirements on certificate content. The present document is based on
the assumption that these requirements are adequately defined by the respective application or protocol. It is therefore
outside the scope of the present document to specify such application or protocol specific certificate content

  • Standard
    16 pages
    English language
    sale 15% off
  • Standard
    16 pages
    English language
    sale 15% off
  • Standard
    16 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 412-5 V2.5.1:2025(Main)
Electronic Signatures and Trust Infrastructures (ESI) - Certificate Profiles - Part 5: QCStatements
ETSI EN 319 412-5 V2.5.1 (2025-06)

The present document defines specific QCStatement for the qcStatements extension as defined in IETF RFC 3739 [2],
clause 3.2.6, including requirements for their use in EU qualified certificates. Some of these QCStatements can be used
for other forms of certificate.
The QCStatements defined in the present document can be used in combination with any certificate profile, either
defined in ETSI EN 319 412-2 [i.2], ETSI EN 319 412-3 [i.5] and ETSI EN 319 412-4 [i.6], or defined elsewhere.
The QCStatements defined in clause 4.3 can be applied to regulatory environments outside the EU. Other requirements
specified in clause 4 are specific to Regulation (EU) No 910/2014 [i.8] but may be adapted for other regulatory
environments.

  • Standard
    21 pages
    English language
    sale 15% off
  • Standard
    21 pages
    English language
    sale 15% off
  • Standard
    21 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 412-1 V1.6.1:2025(Main)
Electronic Signatures and Trust Infrastructures (ESI) - Certificate Profiles - Part 1: Overview and common data structures
ETSI EN 319 412-1 V1.6.1 (2025-06)

The present document provides an overview of the Recommendation ITU-T X.509 | ISO/IEC 9594-8 [i.3] based
certificate profiles and the statements for EU Qualified Certificates specified in other parts of ETSI EN 319 412 ([i.4] to
[i.7]). It specifies common data structures that are referenced from other parts of ETSI EN 319 412 ([i.4] to [i.7]).
The profiles specified in this multi-part deliverable aim to support both Regulation (EU) No 910/2014 [i.9] and the use
of certificates in a wider international context. Within the European context, it aims to support both EU Qualified
Certificates and other forms of certificate.

  • Standard
    17 pages
    English language
    sale 15% off
  • Standard
    17 pages
    English language
    sale 15% off
  • Standard
    17 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 411-2 V2.6.1:2025(Main)
Electronic Signatures and Trust Infrastructures (ESI) - Policy and security requirements for Trust Service Providers issuing certificates - Part 2: Requirements for trust service providers issuing EU qualified certificates
ETSI EN 319 411-2 V2.6.1 (2025-06)

The present document specifies policy and security requirements for the issuance, maintenance and life-cycle
management of EU qualified certificates as defined in Regulation (EU) No 910/2014 [i.1]. These policy and security
requirements support reference certificate policies for the issuance, maintenance and life-cycle management of EU
qualified certificates issued to natural persons (including natural persons associated with a legal person or a website)
and to legal persons (including legal persons associated with a website), respectively.
The present document does not specify how the requirements identified can be assessed by an independent party,
including requirements for information to be made available to such independent assessors, or requirements on such
assessors.
NOTE: See ETSI EN 319 403 [i.6] for guidance on assessment of TSP's processes and services. The present
document references ETSI EN 319 411-1 [2] for general requirements on TSP issuing certificates.

  • Standard
    32 pages
    English language
    sale 15% off
  • Standard
    33 pages
    English language
    sale 15% off
  • Standard
    33 pages
    English language
    sale 15% off
  • Standard
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 411-1 V1.5.1:2025(Main)
Electronic Signatures and Trust Infrastructures (ESI) - Policy and security requirements for Trust Service Providers issuing certificates - Part 1: General requirements
ETSI EN 319 411-1 V1.5.1 (2025-04)

REN/ESI-0019411-1v151

  • Standard
    60 pages
    English language
    sale 15% off
  • Standard
    60 pages
    English language
    sale 15% off
  • Standard
    60 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 411-2 V2.5.1:2023(Main)
Electronic Signatures and Infrastructures (ESI) - Policy and security requirements for Trust Service Providers issuing certificates - Part 2: Requirements for trust service providers issuing EU qualified certificates
ETSI EN 319 411-2 V2.5.1 (2023-10)

The present document specifies policy and security requirements for the issuance, maintenance and life-cycle
management of EU qualified certificates as defined in Regulation (EU) No 910/2014 [i.1]. These policy and security
requirements support reference certificate policies for the issuance, maintenance and life-cycle management of EU
qualified certificates issued to natural persons (including natural persons associated with a legal person or a website)
and to legal persons (including legal persons associated with a website), respectively.
The present document does not specify how the requirements identified can be assessed by an independent party,
including requirements for information to be made available to such independent assessors, or requirements on such
assessors.
NOTE: See ETSI EN 319 403 [i.6] for guidance on assessment of TSP's processes and services. The present
document references ETSI EN 319 411-1 [2] for general requirements on TSP issuing certificates.

  • Standard
    32 pages
    English language
    sale 15% off
  • Standard
    33 pages
    English language
    sale 15% off
  • Standard
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 319 411-1 V1.4.1:2023(Main)
Electronic Signatures and Infrastructures (ESI) - Policy and security requirements for Trust Service Providers issuing certificates - Part 1: General requirements
ETSI EN 319 411-1 V1.4.1 (2023-10)

The present document specifies generally applicable policy and security requirements for Trust Service Providers
(TSPs) issuing public key certificates, including trusted web site certificates.
The policy and security requirements are defined in terms of requirements for the issuance, maintenance and life-cycle
management of certificates. These policy and security requirements support several reference certificate policies,
defined in clauses 4 and 5.
A framework for the definition of policy requirements for TSPs issuing certificates in a specific context where
particular requirements apply is defined in clause 7.
The present document covers requirements for CA hierarchies, however this is limited to supporting the policies as
specified in the present document. It does not include requirements for root CAs and intermediate CAs for other
purposes.
The present document is applicable to:
• the general requirements of certification in support of cryptographic mechanisms, including digital signatures
for electronic signatures and seals;
• the general requirements of certification authorities issuing TLS/SSL certificates;
• the general requirements of the use of cryptography for authentication and encryption.
The present document does not specify how the requirements identified can be assessed by an independent party,
including requirements for information to be made available to such independent assessors, or requirements on such
assessors.
NOTE: See ETSI EN 319 403 [i.2] for guidance on assessment of TSP's processes and services. The present
document references ETSI EN 319 401 [9] for general policy requirements common to all classes of
TSP's services.
The present document includes provisions consistent with the requirements from the CA/Browser Forum in EVCG [4]
and BRG [6].

  • Standard
    58 pages
    English language
    sale 15% off
  • Standard
    59 pages
    English language
    sale 15% off
  • Standard
    59 pages
    English language
    sale 10% off
    e-Library read for
    1 day