0 Items
My account
Phone: (011) 7541-421, 3409-301, 3409-335, 6547-293, 3409-310
E-mail: Standards sales: prodaja@iss.rs Education: iss-edukacija@iss.rs Information about standards: infocentar@iss.rs
Stevana Brakusa 2, 11030 Beograd
Main menu

SRPS CWA 14170:2012

Security requirements for signature creation applications

Feb 29, 2012
95.99   Withdrawal of Standard   May 29, 2020

General information

95.99     May 29, 2020

ISS

I224

CWA

35.030  

English  

Buying

Withdrawn

Language in which you want to receive the document.

Scope

This document specifies security requirements and recommendations for Signature Creation Applications that generate advanced electronic signatures by means of a hardware signature-creation device. It is not required that they are based on a qualified certificate.
The signature-creation device (SCDev) addressed by this document must be implemented in a separate piece of physical hardware, with its own processing capabilities for PIN code verification and for performing cryptographic functions. Unless otherwise specified, this SCDev needs not be a secure-signature-creation device (SSCD), i.e. an SCDev that has been assessed as compliant with the requirements set in the Annex III of the EU Directive [Dir. 1999/93/EC].
Therefore advanced electronic signatures which are created by a signature creation application compliant with the requirements of this document fall under the provisions of Art 5.2 of the EU Directive [Dir. 1999/93/EC].
If, instead, an advanced electronic signature, that is produced with a Signature Creation Application conformant with the security requirements and recommendations specified in this document, is also based on a qualified certificate and is created by a secure-signature-creation device, that electronic signature is a Qualified Electronic Signature that complies with the provision of Art. 5.1 of the EU Directive [Dir. 1999/93/EC].

This document:
· provides a model of the Signature Creation Environment and a functional model of Signature Creation Applications;
· specifies overall requirements that apply across all of the functions identified in the functional model;
· specifies Security Requirements for each of the functions identified in the Signature Creation Application excluding the Signature Creation Device.
A Signature Creation Application is intended to deliver to the user or to some other application process in a form specified by the user, an Advanced, or where applicable a Qualified, Electronic Signature associated with

Life cycle

NOW

WITHDRAWN
SRPS CWA 14170:2012
95.99 Withdrawal of Standard
May 29, 2020

Related project

Adopted from CWA 14170:2004