Postal Services - Hybrid Mail - Part 2: Secured electronic postal services (SePS) interface specification - ECPM Service

This document specifies a secured electronic postal service, referred to as the Electronic Postal Certification Mark (EPCM) service, which provides a chain of evidence, stored by an administration as a trusted third party, to prove the existence of an electronic event, for a certain content, at a certain date and time, and involving one or more identified parties.
The service is defined by reference to the concepts, schemas and operations defined in
CEN/TS 15121-1, Postal Services - Hybrid Mail - Part 1: Secured electronic postal services (SePS) interface specification - Concepts, schemas and operations. It requires support for five core SePS operations and permits optional support seven others.
This version of the specification does not cover:
-   a description of the issues surrounding inter-operability between multiple postal SePS implementations when a business transaction Lifecycle requires the participation of more than one SePS implementation in a cross-border scenario involving two or more postal services;
-   issues surrounding SePS usage in a ‘multiple Certificate Authority’ scenario where inter-operating posts are participating in a cross-border transaction as described above;
-   examination of "Certificate Authority deployment model" alternatives necessitated by the cross-border scenarios described above.

Postalische Dienstleistungen - Hybride Sendungen - Part 2: Schnittstellen-Spezifikation für Gesicherte elektronische postalische Dienste (SePS) - ECPM Service

/

Poštne storitve - Hibridna pošta - 2. del: Specifikacija vmesnika varovane elektronske poštne storitve (SePS) - Storitev ECPM

Ta dokument določa varovano elektronsko poštno storitev, imenovano storitev elektronske poštne certifikacijske znamke (EPCM), ki zagotavlja verigo dokazov, shranjenih s strani administracije kot zaupanja vredne tretje osebe, za dokazovanje obstoja elektronskega dogodka v zvezi z neko vsebino na nek datum ter ob nekem času z eno identificirano stranko ali več.
To storitev določa povezava s koncepti shemami in delovanjem iz standarda
FprCEN/TS 15121-1:2010 Poštne storitve – Hibridna pošta – 1. del: Specifikacija vmesnika varovane elektronske poštne storitve (SePS) – Koncepti, sheme in delovanje. Zahteva podporo za pet osnovnih postopkov varovane elektronske poštne storitve in dopušča izbirno podporo za sedem drugih.
Ta različica specifikacije ne zajema:
– opisa težav v zvezi z medobratovalnostjo več poštnih izvedb varovane elektronske poštne storitve, ko življenjski cikel poslovne izmenjave zahteva sodelovanje več kot ene izvedbe varovane poštne storitve v čezmejnem scenariju z dvema poštnima storitvama ali več;
– težav v zvezi z uporabo varovane elektronske poštne storitve v scenariju z več certifikacijskimi organi, kjer medobratovalne pošte sodelujejo v čezmejni izmenjavi, kot je opisano zgoraj;
– raziskave drugih možnosti modela uvedbe certifikacijskega organa zaradi zgoraj opisanih čezmejnih scenarijev.

General Information

Status
Published
Publication Date
19-Jan-2012
ICS
03.240 - Postal services
Technical Committee
I13 - Imaginarni 13
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
11-Jan-2012
Due Date
17-Mar-2012
Completion Date
20-Jan-2012
Ref Project
CEN/TS 15121-2:2011 - Postal Services - Hybrid Mail - Part 2: Secured electronic postal services (SePS) interface specification - EPCM Service

Overview

SIST-TS CEN/TS 15121-2:2012 defines the Electronic Postal Certification Mark (EPCM) service, a secured electronic postal service designed for hybrid mail systems. This technical specification provides guidelines for a trusted third-party service that creates a digital chain of evidence to prove the existence and integrity of electronic events, including the identification of involved parties, the content, as well as the exact time and date of those events.

Developed by CEN’s Technical Committee for Postal Services (CEN/TC 331), this standard builds upon the interface concepts, schemas, and operations outlined in CEN/TS 15121-1. It establishes a framework for ensuring non-repudiation, digital signature verification, time stamping, confidentiality, and event logging in electronic postal communications.

Key Topics

  • EPCM Service Description
    The EPCM service enables parties in an electronic transaction to register, verify, and timestamp electronic documents as part of the transaction lifecycle. It provides mechanisms to prevent repudiation of the registered documents and detect any post-registration alterations.

  • Core Components

    • Digital Signature Verification: Ensures the identity of the submitting party and validates document integrity using PKI-based verification technologies.
    • Time Stamping: Associates a unique electronic postal certification mark and a timestamp to verify when the transaction took place.
    • Confidentiality Protection: Employs encryption and decryption methods to guarantee privacy for sensitive information throughout the transaction.
    • Non-Repudiation Services: Supports non-repudiation of origin, submission, delivery, and receipt to guarantee trustworthy and legally binding digital transactions.
    • Event Logging: Establishes secure storage of transaction evidence (escrow), retaining data according to postal and legal retention requirements.

  • Compliance and Operations
    The standard mandates support for five essential SePS operations - CheckIntegrity, PostMark, RetrieveResults, Sign, and Verify - ensuring interoperability and service robustness. Additional optional operations include Encrypt, Decrypt, LogEvent, and others, which can enhance service functionality.

  • Limitations
    This edition of the specification excludes detailed coverage of inter-operability issues between multiple SePS implementations in cross-border scenarios, handling multiple Certificate Authorities, and alternative certificate authority deployment models.

Applications

The EPCM service standard is critical for postal services implementing hybrid mail systems that combine electronic and physical formats. Its applications include:

  • Legal and Business Transaction Notarization
    Establishes a legally binding, auditable trail of electronic transactions, particularly valuable in jurisdictions requiring digital evidence notarization.

  • Cross-Border Postal Services
    Although cross-border interoperability is not fully addressed here, the EPCM provides a foundational service for secure proof-of-event in international postal hybrid mail systems.

  • Security and Compliance
    Postal operators can leverage the EPCM service to enhance security, privacy, and compliance with local laws governing electronic communications and data retention.

  • Dispute Resolution
    Enables postal customers and authorized organizations to obtain verifiable evidence during disputes concerning the authenticity, timing, or content of postal electronic events.

  • Trusted Third-Party Role
    The administration acts as a trusted third party, supporting transparency and accountability in electronic postal transactions.

Related Standards

  • CEN/TS 15121-1:2011
    The foundational part of the hybrid mail SePS interface specification covering concepts, schemas, and core operations which the EPCM service references.

  • UPU S43 and S43a
    Earlier Universal Postal Union standards addressing secured electronic postal services, forming the basis for the CEN adoption and further extension.

  • UPU Letter Post Regulations Article RL 257bis
    Defines the EPCM service in the regulatory context under which this specification operates.

Keywords

Secured electronic postal service, Electronic Postal Certification Mark, EPCM, hybrid mail, non-repudiation, digital signature verification, time stamping, event logging, postal standards, CEN/TS 15121-2, SePS interface specification, trusted third party, postal service security, electronic transaction evidencing, postal compliance, PKI encryption, hybrid mail security.

SIST-TS CEN/TS 15121-2:2012 - Page 1 previewSIST-TS CEN/TS 15121-2:2012 - Page 2 previewSIST-TS CEN/TS 15121-2:2012 - Page 3 previewSIST-TS CEN/TS 15121-2:2012 - Page 4 preview
PreviousNext
Technical specification

SIST-TS CEN/TS 15121-2:2012

English language
12 pages
Preview
Preview
e-Library read for
1 day

Frequently Asked Questions

SIST-TS CEN/TS 15121-2:2012 is a technical specification published by the Slovenian Institute for Standardization (SIST). Its full title is "Postal Services - Hybrid Mail - Part 2: Secured electronic postal services (SePS) interface specification - ECPM Service". This standard covers: This document specifies a secured electronic postal service, referred to as the Electronic Postal Certification Mark (EPCM) service, which provides a chain of evidence, stored by an administration as a trusted third party, to prove the existence of an electronic event, for a certain content, at a certain date and time, and involving one or more identified parties. The service is defined by reference to the concepts, schemas and operations defined in CEN/TS 15121-1, Postal Services - Hybrid Mail - Part 1: Secured electronic postal services (SePS) interface specification - Concepts, schemas and operations. It requires support for five core SePS operations and permits optional support seven others. This version of the specification does not cover: - a description of the issues surrounding inter-operability between multiple postal SePS implementations when a business transaction Lifecycle requires the participation of more than one SePS implementation in a cross-border scenario involving two or more postal services; - issues surrounding SePS usage in a ‘multiple Certificate Authority’ scenario where inter-operating posts are participating in a cross-border transaction as described above; - examination of "Certificate Authority deployment model" alternatives necessitated by the cross-border scenarios described above.

This document specifies a secured electronic postal service, referred to as the Electronic Postal Certification Mark (EPCM) service, which provides a chain of evidence, stored by an administration as a trusted third party, to prove the existence of an electronic event, for a certain content, at a certain date and time, and involving one or more identified parties. The service is defined by reference to the concepts, schemas and operations defined in CEN/TS 15121-1, Postal Services - Hybrid Mail - Part 1: Secured electronic postal services (SePS) interface specification - Concepts, schemas and operations. It requires support for five core SePS operations and permits optional support seven others. This version of the specification does not cover: - a description of the issues surrounding inter-operability between multiple postal SePS implementations when a business transaction Lifecycle requires the participation of more than one SePS implementation in a cross-border scenario involving two or more postal services; - issues surrounding SePS usage in a ‘multiple Certificate Authority’ scenario where inter-operating posts are participating in a cross-border transaction as described above; - examination of "Certificate Authority deployment model" alternatives necessitated by the cross-border scenarios described above.

SIST-TS CEN/TS 15121-2:2012 is classified under the following ICS (International Classification for Standards) categories: 03.240 - Postal services. The ICS classification helps identify the subject area and facilitates finding related standards.

SIST-TS CEN/TS 15121-2:2012 is available in PDF format for immediate download after purchase. The document can be added to your cart and obtained through the secure checkout process. Digital delivery ensures instant access to the complete standard document.

Standards Content (Sample)


SLOVENSKI STANDARD
01-marec-2012
Poštne storitve - Hibridna pošta - 2. del: Specifikacija vmesnika varovane
elektronske poštne storitve (SePS) - Storitev ECPM
Postal Services - Hybrid Mail - Part 2: Secured electronic postal services (SePS)
interface specification - ECPM Service
Postalische Dienstleistungen - Hybride Sendungen - Part 2: Schnittstellen-Spezifikation
für Gesicherte elektronische postalische Dienste (SePS) - ECPM Service
/
Ta slovenski standard je istoveten z: CEN/TS 15121-2:2011
ICS:
03.240 Poštne storitve Postal services
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

TECHNICAL SPECIFICATION
CEN/TS 15121-2
SPÉCIFICATION TECHNIQUE
TECHNISCHE SPEZIFIKATION
January 2011
ICS 03.240
English Version
Postal Services - Hybrid Mail - Part 2: Secured electronic postal
services (SePS) interface specification - ECPM Service
Postalische Dienstleistungen - Hybride Sendungen - Part 2:
Schnittstellen-Spezifikation für Gesicherte elektronische
postalische Dienste (SePS) - ECPM Service
This Technical Specification (CEN/TS) was approved by CEN on 9 August 2010 for provisional application.

The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to submit their
comments, particularly on the question whether the CEN/TS can be converted into a European Standard.

CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS available
promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in parallel to the CEN/TS)
until the final decision about the possible conversion of the CEN/TS into an EN is reached.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland,
Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland and United Kingdom.

EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

Management Centre: Avenue Marnix 17, B-1000 Brussels
© 2011 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 15121-2:2011: E
worldwide for CEN national Members.

Contents Page
Foreword .3
Introduction .4
1 Scope .6
2 Normative references .6
3 Terms and definitions .6
4 Symbols and abbreviations .6
5 EPCM service definition .6
5.1 Service description .6
5.1.1 Outline .6
5.1.2 Digital signature verification .7
5.1.3 Time stamping .7
5.1.4 Protection of confidentiality .7
5.1.5 Non-repudiation .7
5.1.6 Event logging .8
5.2 Compliance with the SePS specification .8
5.3 Backwards compatibility .8
5.4 Cross-border provision of the EPCM service .8
Annex A (informative) Relevant intellectual property rights (IPR) . 10
A.1 Introduction . 10
A.2 USPS Trademarks . 10
A.3 Patents . 12

Foreword
This document (CEN/TS 15121-2:2011) has been prepared by Technical Committee CEN/TC 331 “Postal
Services”, the secretariat of which is held by NEN.
Attention is drawn to the possibility that some of the elements of this document may be the subject of patent
rights. CEN [and/or CENELEC] shall not be held responsible for identifying any or all such patent rights.
This document forms Part 2 of a multi-part CEN standard, CEN/TS 15121, Postal Services - Hybrid Mail.
CEN/TS 15121 was originally published as a UPU standard S43 and was adopted by CEN under the current
Memorandum of Understanding between UPU and CEN. UPU S43 was a single part standard covering only
secured electronic postal services, but has been split into parts to allow the standard to be extended to cover
other services based on the same concepts and service primitives.
These concepts and service primitives are now documented in Part 1 of the standard, CEN/TS 15121-1, and
UPU S43a.
This part provides the specification of the Electronic Postal Certification Mark (EPCM) service which conforms
with the definition in Article 257bis of the UPU Letter Post Regulations.
CEN/TC 331 WG2 decided to adopt the UPU S43-b, as it was an integrative part of UPU S43 during the time
of the decision to adopt the UPU S43 under the current Memorandum of Understanding between UPU and
CEN in 2005.
nd
According to the Memorandum of Understanding (MoU) between the UPU and CEN, signed Oct. 22 , 2001;
3.3 CEN notifies the following deviation from the source text:
The term "postal administration" meaning a postal service designated by one member country of the UPU
was changed according with the wording of the Postal Directive to "postal service".
According to the CEN/CENELEC Internal Regulations, the national standards organizations of the following
countries are bound to announce this Technical Specification: Austria, Belgium, Bulgaria, Croatia, Cyprus,
Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy,
Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia,
Spain, Sweden, Switzerland and the United Kingdom.
Introduction
This document provides the specification of the Electronic Postal Certification Mark (EPCM) service which
conforms with the definition in Article RL 257bis of the UPU Letter Post Regulations. It is based on a subset of
the verbs or operations defined in CEN/TS 15121-1, Postal Services  Hybrid Mail  Part 1: Secured
electronic postal services (SePS) interface specification  Concepts, schemas and operations, to which the
reader is referred.
An EPCM is essentially a digital signature verification and timestamping authority which verifies, and logs as
evidence, the content integrity of electronic information. The collection of technical services in an EPCM
service can cryptographically verify and store electronic evidence in support of the resolution of potential
disputes which challenge the authenticity of events within a cycle of one or more automated transactions
involving a postal customer.
An EPCM service constructed to this specification can support the capture and reproduction of evidence data
attesting to the fact that a target business transaction was conducted and completed in an environment of
integrity and trustworthiness with respect to one or more of the following attributes:
 the transaction originator;
 the party, if any, who closed or terminated the transaction;
 other parties who participated in the transaction;
 were the terms, conditions, and commitments understood by all parties;
 when was the document agreed to by the stakeholders, and sent to each participating party;
 when was it received by each participating party;
 was the content intact throughout transmission;
 have all parties been notified of all agreed events of significance.
An EPCM service which complies with this specification can support the following capabilities:
 non-repudiation of origin;
 non-repudiation of submission;
 non-repudiation of delivery;
 non-repudiation of receipt.
An EPCM’s non-repudiation service involves the use of selected combinations of SePS operations in order to
ensure end-to-end transaction integrity and evidence collection in a confidential and auditable environment.
This specification has one main heading:
Clause No  Description of content
5 EPCM service definition: this defines the EPCM service by reference to the schemas and
operations defined in CEN/TS 15121-1:2011.
The implementation of part or all of this specification might involve the use of intellectual property that is the
subject of patent and/or trademark rights. It is the responsibility of users of the standard to conduct any
1)
necessary searches and to ensure that any pertinent rights are in the public domain; are licensed or are
avoided. Neither CEN nor the UPU can accept any responsibility in case of infringement, on the part of users
of this document, of any third party intellectual property rights. Nevertheless, document users and owners of
such rights are encouraged to advise the Secretariat of the UPU Standards Board and/or of CEN/TC 331 of
any explicit claim that any technique or solution described herein is protected by such rights in any CEN or
UPU member country. Any such claims will, without prejudice, be documented in the next update of this
standard, or otherwise at the discretion of the Standards Board, respectively CEN/TC 331. Annex A of this
document lists the intellectual property rights brought to the attention of CEN/TC 331 and the UPU Standards
Board prior to approval of the publication of this version of the standard.
NOTE The mention of intellectual property rights, in Annex A, is on a ‘without prejudice’ basis. That is, such mention
indicates only that some party has expressed the view that use of the standard might, in some circumstances, infringe the
mentioned intellectual property rights. It should not be taken as in any way confirming the validity of such view and users
should conduct their own searches to determine whether the mentioned IPR is in fact applicable to their specific case.

1) Mail service contractors are advised to ensure that reliance on intellectual property that is not in the public
domain does not inadvertently lead to the creation of an effective monopoly. This could occur, even if usage of
the intellectual property concerned is licensed by the mail service contractor, unless the terms of the licensing
agreement commit the IPR holder to making licences available, on appropriate terms, to the mail service
contractor's customers and suppliers, including competitors of the IPR holder.
1 Scope
This document specifies a secured electronic postal service, referred to as the Electronic Postal Certification
Mark (EPCM) service, which provides a chain of evidence, stored by an administration as a trusted third party,
to prove the existence of an electronic event, for a certain content, at a certain date and time, and involving
one or more identified parties.
The service is defined by reference to the concepts, schemas and operations defined in
CEN/TS 15121-1, Postal Services  Hybrid Mail  Part 1: Secured electronic postal services (SePS)
interface specification  Concepts, schemas and operations. It requires support for five core SePS operations
and permits optional support seven others.
This version of the specification does not cover:
 a description of the issues surrounding inter-operability between multiple postal SePS implementations
when a business transaction Lifecycle requires the participation of more than one SePS implementation
in a cross-border scenario involving two or more postal services;
 issues surrounding SePS usage in a ‘multiple Certificate Authority’ scenario where inter-operating posts
are participating in
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

Loading comments...