PrimeKey is proud to make it easier to adhere to the best practices for security. Because eIDAS (electronic Identification, Authentication and trust Services) sets the standards in Europe for electronic signatures, advanced electronic signature, qualified digital certificates, electronic seals, time-stamps and other proof for authentication mechanisms, it’s important to ensure you are using eIDAS compliant components. eIDAS gives electronic transactions the same legal standing as transactions performed on paper. Therefore, observance of the standards is vital to organizations that provide third-party trust services in the form of certificate issuance, signatures and authentication.
Qualified Trust Service Provider (TSP) customer stories
eIDAS introduces the concept of qualification for TSPs, where all TSPs across the EU must adhere to basic requirements which are audited periodically at least every 24 months. We are proud to make it easier to adhere to the best practice security to become a qualified TSP.
Here are a few examples of how we have helped customers become eIDAS compliant.
Bank Verlags’ eIDAS-compliant trust center for the German banking industry
Banks need to be at the forefront of enterprise cybersecurity as they represent a top target for attackers. The threat of financial losses, regulatory consequences, and reputation damage has spurred the banking industry to innovate and accelerate the field of cybersecurity. In Germany, a lot of that innovation is happening at Bank-Verlag, a wholly owned subsidiary of the Association of German Banks, servicing private banks in Germany in the areas of IT security, electronic banking, cashless payments and regulatory compliance.
In addition to actively participating in the development of security standards and safety procedures, Bank-Verlag develops and operates several secure services for German banks, including white-labelled online banking services, secure management of PSD2-requests, fraud detection systems and more. The latest addition to Bank-Verlag’s state-of-the-art security service portfolio is an eIDAS-compliant trust service for electronic transactions, such as remote signatures and seals as well as PSD2 certificates (QWAC and QSEAL). When designing the service, Bank-Verlag did not only need to consider eIDAS-compliance and adherence to the highest security standards; the service also needed to be flexible enough to support the varying needs of different banks. Although the requirements were tough, not only from a security perspective, but also regarding flexibility and configurability, Bank-Verlag managed them successfully. Based on PrimeKey EJBCA Appliance, Bank-Verlag’s PKI infrastructure is flexible and scalable enough to support future needs and use-cases.
Zetes uses PrimeKey EJBCA Enterprise as part of their foundation
Trust and security are built into the core of ZetesConfidens’ DNA and business. Being a Qualified Trust Service Provider (QTSP) as defined by the European eIDAS regulation, ZetesConfidens guide customers through PKI-based electronic administration processes, providing them with the assurance of who they are dealing with and enabling them to establish legally binding digital documentation. For ZetesConfidens, PrimeKey EJBCA Enterprise is part of the foundation, enabling ZetesConfidens to deliver their services in alignment with the company’s DNA; trust and security.
As a division of Zetes, a European company with more than 20 offices in 16 European Union (EU) countries, ZetesConfidens takes care of the processes, technological developments, integrations and implementations behind e-signatures across the EU. Although the eIDAS regulation seeks cross border interoperability to enable interaction at EU level, each country has its own specifics, like language or national ID schemes. For ZetesConfidens this translates to a need for a PKI solution flexible and interoperable enough to accommodate different needs and use-cases across the EU – while always operating in line with the requirements of the eIDAS regulation. In addition, ZetesConfidens takes on responsibility for lifecycle management for the certificates and solutions for many years to come, contributing to the need for a trusted, flexible and reliable long-term partner. For ZetesConfidens, that partner is PrimeKey.
Swisscom becomes an eIDAS compliant TSP
Swisscom, the largest IT/telecom company in Switzerland, provides internet access, mobile communication, TV, cloud, IoT and more. Swisscom’s Public Key Infrastructure (PKI) was the first one in Switzerland in 2005, and today their digital certificate services is an integral part of their business in which their PKI solution and its attributes are essential.
With Swisscom’s RSA Digital Certificate Solutions reaching end of life and support ending, Swisscom needed a PKI migration and consolidation. Since stakes and complexities are high whenever you migrate and/or consolidate an enterprise PKI infrastructure, a proven and capable partner that could fulfill all their needs was critical. Another central need for Swisscom was to be able to make their All-in Signing Service eIDAS compliant.
Since the implementation of PrimeKey EJBCA Enterprise, Swisscom can now offer eIDAS- and legally compliant electronic signature and time-stamping services for service providers, public authorities and companies, all across the EU.
Alongside successfully becoming a Trust Service Provider (TSP), there were also benefits in regard to Swisscom’s PKI migration and consolidation. Swisscom has pinpointed that the set-up of the Certificate Authority (CA) is more structured than before and therefore easier to maintain – making their internal processes more effective.
Find out how PrimeKey can help you
Becoming an eIDAS compliant Trust Service Provider with EJBCA eIDAS can help you realize business opportunities in both B2B and B2C contexts.
More information about EJBCA Hardware Appliance eIDAS edition is available here: