*** Welcome to piglix ***

Secure signature creation device


A secure signature creation device is a specific type of computer hardware or software that is used in creating an electronic signature. To be put into service as a secure signature creation device (SSCD), the device must meet the rigorous requirements laid out under Annex II of Regulation (EU) No 910/2014 (eIDAS), where it is referred to as a qualified electronic signature creation device. Using secure signature creation devices helps in facilitating online business processes that save time and money with transactions made within the public and private sectors.

The minimum requirements that must be met to elevate an electronic signature creation device to the level of a secure signature creation device are provided in Annex II of eIDAS. Through appropriate procedural and technical means, the device must reasonably assure the confidentiality of the data used to create an electronic signature. It further must ensure that the data used to create an electronic signature is unique and only used once. Lastly it shall only allow a qualified trust service provider or certificate authority to create or manage a signatory’s electronic signature data.

To ensure security, signature creation data used by the SSCD to create an electronic signature must provide reasonable protection through current technology to prevent forgery or duplication of the signature. The creation data must remain under the sole control of its signatory to prevent unauthorized use. The SSCD itself is prohibited from altering the signature’s accompanying data.

When a trust service provider or certificate authority places an SSCD into service, they must securely prepare the device according to Annex II of eIDAS in fully compliance to the following three conditions: While in use or in storage, the SSCD must remain secure (1). Further, a reactivation and deactivation of the SSCD must occur under secure conditions (2). Any user activation data, include PIN codes be delivered separately from the SSCD after being prepared securely (3).


...
Wikipedia

...