Customer Support: 131 242

i2i Intertek.com
  • There are no items in your cart
We noticed you’re not on the correct regional site. Switch to our AMERICAS site for the best experience.
Go to AMERICAS site
Dismiss alert
Please enter a keyword to search
Advanced search
Home
BSI
BS EN 419241-1:2018

BS EN 419241-1:2018

Current

Current

The latest, up-to-date edition.

Trustworthy Systems Supporting Server Signing General System Security Requirements

Available format(s)

Hardcopy , PDF

Language(s)

English

Published date

16-07-2018

Publisher

British Standards Institution

1.1 General

This document specifies security requirements and recommendations for Trustworthy Systems Supporting Server Signing (TW4S) that generate digital signatures.

The TW4S is composed at least of one Server Signing Application (SSA) and one Signature Creation Device (SCDev) or one remote Signature Creation Device.

A remote SCDev is a SCDev extended with remote control provided by a Signature Activation Module (SAM) executed in a tamper protected environment. This module uses the Signature Activation Data (SAD), collected through a Signature Activation Protocol (SAP), in order to guarantee with a high level of confidence that the signing keys are used under sole control of the signer.

The SSA uses a SCDev or a remote SCDev in order to generate, maintain and use the signing keys under the sole control of their authorized signer. Signing key import from CAs is out of scope.

So when the SSA uses a remote SCDev, the authorized signer remotely controls the signing key with a high level of confidence.

A TW4S is intended to deliver to the signer or to some other application, a digital signature created based on the data to be signed.

This standard:

  • provides commonly recognized functional models of TW4S;

  • specifies overall requirements that apply across all of the services identified in the functional model;

  • specifies security requirements for each of the services identified in the TW4S;

  • specifies security requirements for sensitive system components which may be used by the TW4S.

This standard is technology and protocol neutral and focuses on security requirements.

1.2 Outside of the scope

The following aspects are considered outside of the scope of this document:

  • other trusted services that may be used alongside this service such as certificate issuance, signature validation service, time-stamping service and information preservation service;

  • any application or system outside of the TW4S (in particular the signature creation application including the creation of advanced signature formats);

  • signing key and signing certificate import from CAs;

  • the legal interpretation of the form of signature (e.g. electronic signature, electronic seal, qualified or otherwise).

1.3 Audience

This standard specifies security requirements that are intended to be followed by:

  • providers of TW4S systems;

  • Trust Service Providers (TSP) offering a signature creation service.

Committee
IST/17
DocumentType
Standard
ISBN
9780580957338
Pages
46
PublisherName
British Standards Institution
Status
Current
Supersedes

Standards Relationship
EN 419241-1:2018 Identical

View more information
$541.18
Including GST where applicable
AUD
CAD
CHF
CNY
DKK
EUR
GBP
HKD
IDR
INR
JPY
KRW
MXN
NOK
NZD
SEK
SGD
USD
ZAR
Hardcopy - English
PDF - English
01
02
03
04
05
06
07
08
09
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50

Access your standards online with a subscription

Features

  • Simple online access to standards, technical information and regulations.

  • Critical updates of standards and customisable alerts and notifications.

  • Multi-user online standards collection: secure, flexible and cost effective.

Learn more on subscription solutions

or

Get in touch with us

Need help?
Call us on 131 242, then click here to start a Screen Sharing session
so we can help right away! Learn more