NOTICE
To create the qualified electronic signature the user must own:
- an application for the qualified electronic signature creation (SCVA or SCA) which may be obtained from the producer of applications (Table B),
- a secure SSCD device certified by the National Security Authority (Table A) in which the private key is stored and which may be obtained from some ACA or its Registration Authority (ACA List).
The National Security Authority before establishing the QES recommends:
- to take into consideration what formats of electronic documents in administrative relations the user wants to sign by the qualified electronic signature or what formats of electronic documents are used by the information system of public administration (e-Government application) the services of which the user wants to utilise and thereafter choose a specific SCVA or SCA application,
- to verify with the producer of the certified application for the qualified electronic signature creation and verification which SSCD device from the list of certified SSCD products is supported by a particular application.
Shorts:
SSCD - Secure Signature Creation Device
SCVA - Signature Creation & Verification Application
SCA - Signature Creation Application
SVA - Signature Verification Application
Table A: SSCD certificated products
| Number | Certificated product | Producer | Period of certificate validity | Certificate (jpg) |
Characteristic |
|---|---|---|---|---|---|
| A1 | Cryptoflex 32K e-Gate Smart Card by SchlumbergerSema | SchlumbergerSema |
to 31st December 2010 |
Multi-purpose SSCD with SSCD application QSign personalization for QES use | |
| A2 | Chip Card STARCOS SPK 2.3 |
Chip P8WE5032V0G: Philips Semiconductors Hamburg Unternehmensbereich der Philips GmbH, OS STARCOS SPK2.3: Giesecke & Devrient GmbH, Prinzregentenstraße 159, D-81607 München, Germany |
to 31st December 2011 |
Single -purpose SSCD | |
| A3 | Safenet iKey 2032 FIPS Hardware versions (A and 909-23002) and 909-25001 Firmware version 0.6 |
SafeNet, Inc. |
to 31st december 2010 |
||
| A4 | Smart Card STARCOS SPK 3.0 |
Chip Philips Smart MX P5CT072 Semiconductors Hamburg GmbH. OS STARCOS 3.0 Giesecke & Devrient GmbH, Prinzregentenstraße 159, D-81607 München, Germany |
to 31st December 2011 |
||
| A5 | Siemens CardOS Smartcard 32KB/64KB, verzia CardOS V4.3B - PKCS#15 SecAuth |
Chip SLE66CX322P/SLE66CX642P Infineon Technologies AG, München, Germany OS CardOS 4.3B Siemens AG, München, Germany |
to 17th August 2011 | Certificate Annexe 1/1 |
|
| A6 | Siemens HiPath SIcurity Smart Card 32KB, version SLE66CX322P, CardOS 4.3B |
Chip SLE66CX322P Infineon Technologies AG, München, Germany OS CardOS 4.3B Siemens AG, München, Germany |
to 1st October 2011 | Certificate Annexe 1/1 |
|
| A7 | Siemens HiPath SIcurity Smart Card 64KB, version SLE66CX642P, CardOS 4.3B |
Chip SLE66CX642P Infineon Technologies AG, München, Germany OS CardOS 4.3B Siemens AG, München, Germany |
to 1st October 2011 | Certificate Annexe 1/1 |
|
| A8 | Chip Card CryptoPlus XG ZEP/EP Profiles verzia CryptoPlus XG v1.14 |
TOP IM GX (72k) Gemalto S.A., 6 rue de la Verrerie, 92197 Meudon Cedex France |
to 10th August 2014 | Certificate Annexe 1/1 |
Multi -purpose SSCD |
| A9 | Siemens CardOS Smartcard 32KB/64KB, version CardOS V4.3B - DSDA |
Chip SLE66CX322P/SLE66CX642P Infineon Technologies AG, Mníchov, Nemecko OS CardOS 4.3B Siemens AG, München, Germany |
to 23th August 2015 | Certificate Annexe 1/1 |
Table B: SCVA, SCA and SVA certificated products
| Number | Certificated product |
Producer | Period of certificate validity |
Certificate (jpg) |
Characteristic/ signature type |
Supported formats of e-documents |
|---|---|---|---|---|---|---|
| B1 | ZEP- XML version 3.0 |
TEMPEST, a.s., Plynárenská 7/B, 821 09 Bratislava Slovakia |
to 1st October 2010 |
Certificate Annexe 1/4 Annexe 2/4 Annexe 3/4 Annexe 4/4 |
SCVA XAdES (EPES, T) |
Textual XML files (requirements for XML documents annexe 3/4) |
| B2 | D. Signer/XAdES version 1.0.0.0 |
Ditec, a.s. Plynárenská 7/C 821 09 Bratislava Slovakia |
to 30th November |
Certificate Form of characteristics of the application (Slovak version) |
SCA XAdES_ZEP (EPES) |
A set of different document formats or data types |
| B3 | QSign version 3.3 |
Ardaco, a.s., Polianky 5 841 01 Bratislava Slovakia |
to 31st January 2012 |
Certificate Annexe 1/4 Annexe 2/4 Annexe 3/4 Annexe 4/4 |
SCVA CAdES (EPES, T,C-X, A, Integrity Signature) |
In full functionality TXT RTF XML*1 TIFF PNG OTHER*2 OTHER*3 |
| B4 | QSign version 3.4 | Ardaco, a.s., Polianky 5 841 01 Bratislava Slovakia |
to 30th November 2014 |
Certificate Form of characteristics of the application (Slovak version) |
SCVA CAdES (EPES, T,C-X, A, Integrity Signature) |
In full functionality TXT RTF XML*1 TIFF PNG OTHER*2 OTHER*3 |
| B5 | QSign version 4.0 | Ardaco, a.s., Polianky 5 841 01 Bratislava Slovakia |
to 31st May 2015 |
Certificate Form of characteristics of the application (Slovak version) |
SCVA |
In full functionality TXT RTF PDF, PDF/A-1 XML XML*1 TIFF PNG OTHER*2 OTHER*3 |
| B6 | D. Signer/XAdES version 1.1.0.0
D. Signer/XAdES-XML Plugin version 1.1.0.0 D. Signer/XAdES-PDF Plugin version 1.0.0.0 D. Signer/XAdES-FO Plugin version 1.0.0.0 |
Ditec, a.s. Plynárenská 7/C 821 09 Bratislava Slovakia |
to 30th June 2015 |
Certificate Certificate Certificate Certificate Form of characteristics of the application (Slovak version) |
A set of different document formats or data types*4 |
*1 The 602XML Form
*2 The application also enables to work with the document in DOC fomat. It converts this format and stores it in RTF format which it signs.
*3 The application also enables to work with graphic formats like GIF, JPG or BMP. It converts these formats and stores them in PNG format which it signs.
*4 XML documents, PDF documents, etc., or a random combination of supported data formats which form together the so called multipart document.
Certificated products charakteristic
A1 - Cryptoflex 32K e-Gate Smart Card by SchlumbergerSema
The NSA finished a certification process of the product „Cryptoflex 32K e-Gate Smart Card by SchlumbergerSema" in 4 December 2008 in accordance with Article 10 part 2 letter j) of the Act No. 215/2002 Coll. on Electronic Signature. The product can be used for secure generating and storing of key pairs, storing of certificates, the Qualified Electronic Signature creation and verification in QSign Application which creates a secure communication channel with Secure Signature Creation Device (SSCD).
The product can be used only with signature schemes which are admissible by legal rules of the Slovak republic especially by Regulation no. 537/2002 Coll. on Qualified Electronic Signature creation and verification and Time Stamp creation and verification and are valid in the time of Qualified Electronic Signature creation with the use of SCVA product (Signature Creation & Verification Application) or SCA product (Signature Creation Application) with the valid certificate issued by the National Security Authority.
A2 - Smart Card STARCOS SPK 2.3
The NSA finished a certification process of a product on 9th December 2008. The process was finished on the basis of submitting the application of the company První certifikační autorita, a.s., with the address Podvinný mlýn 2178/6, 190 00 Praha 9, Czech Republic for the product certification for the Electronic signature Smart Card STARCOS SPK 2.3 from 26 November 2008 in accordance with the Article 10 section 2 letter j) of the Act no. 215/2002 Coll. on Electronic Signature.
Smart Card STARCOS SPK 2.3 can be used for secure generating and saving of private and public keys (key pairs), for the Qualified Electronic Signature creation and verification, for saving of qualified certificates,and their usage in applications supporting the electronic signing. The product can be used only with signature schemes which are admissible by legal rules of the Slovak republic especially by Regulation no. 537/2002 Coll. on Qualified Electronic Signature creation and verification and Time Stamp creation and verification and are valid in the time of Qualified Electronic Signature creation with the use of SCVA product (Signature Creation & Verification Application) or SCA product (Signature Creation Application) with the valid certificate issued by the National Security Authority.
A3 - Safenet iKey 2032“, Hardware versions (A and 909-23002) and 909-25001 Firmware version 0.6
The NSA finished a certification process of a product on 13 August 2007. The process was finished on the basis of submitting the application of the company TEMPEST, a.s., Plynárenská 7/B, 821 09 Bratislava for the product certification for the Electronic signature USB product Safenet iKey 2032 FIPS Hardware versions (A and 909-23002) and 909-25001 Firmware version 0.6 from 10 July 2007 in accordance with the Article 10 section 2 letter j) of the Act no. 215/2002 Coll. on Electronic Signature.
The NSA prolonged period of certificate validity of a product Safenet iKey 2032 FIPS Hardware versions (A and 909-23002) and 909-25001 Firmware version 0.6 (No. 4780/2007/IBEP-006) on 5 March 2009. The process was finished on the basis of submitting the application of the company TEMPEST, a.s., Plynárenská 7/B, 821 09 Bratislava for the prolonged period of certificate validity of product for the Electronic signature USB product Safenet iKey 2032 FIPS Hardware versions (A and 909-23002) and 909-25001 Firmware version 0.6 from 13 February 2009 in accordance with the Article 24 (14) of the Act no. 215/2002 Coll. on Electronic Signature. New Period of certificate validity is 31 December 2010.
USB product Safenet iKey 2032 FIPS Hardware versions (A and 909-23002) and 909-25001 Firmware version 0.6 operating in FIPS mode can be used for secure generating and saving of private and public keys (key pairs), for the Qualified Electronic Signature creation and verification, for saving of qualified certificates,and their usage in applications supporting the electronic signing. The certificate undertakes to use products with the signature schemes 001 and 005 described in an annexe of the regulation no. 537/2002 Coll. on Electronic Signature creation and Time Stamp creation.
A4 - Smart Card STARCOS SPK 3.0
The NSA finished a certification process of a product on 9th December 2008. The process was finished on the basis of submitting the application of the company První certifikační autorita, a.s., with the address Podvinný mlýn 2178/6, 190 00 Praha 9, Czech Republic for the product certification for the Electronic signature Smart Card STARCOS SPK 3.0 from 26 November 2008 in accordance with the Article 10 section 2 letter j) of the Act no. 215/2002 Coll. on Electronic Signature.
Smart Card STARCOS SPK 2.3 can be used for secure generating and saving of private and public keys (key pairs), for the Qualified Electronic Signature creation and verification, for saving of qualified certificates,and their usage in applications supporting the electronic signing. The product can be used only with signature schemes which are admissible by legal rules of the Slovak republic especially by Regulation no. 537/2002 Coll. on Qualified Electronic Signature creation and verification and Time Stamp creation and verification and are valid in the time of Qualified Electronic Signature creation with the use of SCVA product (Signature Creation & Verification Application) or SCA product (Signature Creation Application) with the valid certificate issued by the National Security Authority.
A5 - Chip Card Siemens CardOS Smartcard 32KB/64KB, CardOS V4.3B - PKCS#15 SecAuth version
The NSA finished a certification process of a product on 16th August 2008. The process was finished on the basis of submitting the application of company Disig, a.s., Záhradnícka 151, 824 08 Bratislava for product certification for the Electronic signature „CardOS Smartcard 32KB/64KB, CardOS V4.3B - PKCS#15 SecAuth version“ on 21st April 2008 in accordance with Article 10 part 2 letter j) of the Act no. 215/2002 Coll. on Electronic Signature.
The products can be used for secure generating and saving of private and public keys (key pairs), for the Qualified Electronic Signature creation and verification, its use in applications supporting the electronic signing, for saving of qualified certificates and certificates, also for its use in applications supporting the electronic signing, for secure saving of other text or data files. The product can be used only with signature schemes which are admissible by legal rules of the Slovak republic especially by Regulation no. 537/2002 Coll. on Qualified Electronic Signature creation and verification and Time Stamp creation and verification and are valid in the time of Qualified Electronic Signature creation with the use of SCVA product (Signature Creation & Verification Application) or SCA product (Signature Creation Application) with the valid certificate issued by the National Security Authority.
A6 - Chip Card Siemens HiPath SIcurity Smart Card 32KB, version SLE66CX322P, version CardOS 4.3B
The NSA finished a certification process of a product on 27th August 2008. The process was finished on the basis of submitting the application of company Siemens s.r.o., Stromová 9, 837 96 Bratislava for product certification for the Electronic signature „Siemens HiPath SIcurity Smart Card 32KB, verzia SLE66CX322P, verzia CardOS 4.3B“ on 16th July 2008 in accordance with Article 10 part 2 letter j) of the Act no. 215/2002 Coll. on Electronic Signature.
The products can be used for secure generating and saving of private and public keys (key pairs), for the Qualified Electronic Signature creation and verification, its use in applications supporting the electronic signing, for saving of qualified certificates and certificates, also for its use in applications supporting the electronic signing, for secure saving of other text or data files. The product can be used only with signature schemes which are admissible by legal rules of the Slovak republic especially by Regulation no. 537/2002 Coll. on Qualified Electronic Signature creation and verification and Time Stamp creation and verification and are valid in the time of Qualified Electronic Signature creation with the use of SCVA product (Signature Creation & Verification Application) or SCA product (Signature Creation Application) with the valid certificate issued by the National Security Authority.
A7 - Chip Card Siemens HiPath SIcurity Smart Card 64KB, version SLE66CX642P, version CardOS 4.3B
The NSA finished a certification process of a product on 27th August 2008. The process was finished on the basis of submitting the application of company Siemens s.r.o., Stromová 9, 837 96 Bratislava for product certification for the Electronic signature „Siemens HiPath SIcurity Smart Card 32KB, verzia SLE66CX322P, verzia CardOS 4.3B“ on 16th July 2008 in accordance with Article 10 part 2 letter j) of the Act no. 215/2002 Coll. on Electronic Signature.
The products can be used for secure generating and saving of private and public keys (key pairs), for the Qualified Electronic Signature creation and verification, its use in applications supporting the electronic signing, for saving of qualified certificates and certificates, also for its use in applications supporting the electronic signing, for secure saving of other text or data files. The product can be used only with signature schemes which are admissible by legal rules of the Slovak republic especially by Regulation no. 537/2002 Coll. on Qualified Electronic Signature creation and verification and Time Stamp creation and verification and are valid in the time of Qualified Electronic Signature creation with the use of SCVA product (Signature Creation & Verification Application) or SCA product (Signature Creation Application) with the valid certificate issued by the National Security Authority.
A8 - Chip Card CryptoPlus XG ZEP/EP profiles, version CryptoPlus XG v1.14
The NSA finished a certification process of a product on 10th August 2009. The process was finished on the basis of submitting the application of company Disig, a.s., Záhradnícka 151, 824 08 Bratislava for product certification for the Electronic signature „CryptoPlus XG ZEP/EP profiles, version CryptoPlus XG v1.14“ on 16th Juny 2009 in accordance with Article 24 (7) of the Act no. 215/2002 Coll. on Electronic Signature.
The products can be used for secure generating and saving of private and public keys (key pairs), for the Qualified Electronic Signature creation and verification, its use in applications supporting the electronic signing, for saving of qualified certificates (QES area of chip card) and certificates (ES area of chip card), also for its use in applications supporting the electronic signing. The product can be used only with signature schemes which are admissible by legal rules of the Slovak republic especially by Regulation no. 135/2009 Coll. on Qualified Electronic Signature creation and verification and Time Stamp creation and verification and are valid in the time of Qualified Electronic Signature creation with the use of SCVA product (Signature Creation & Verification Application) or SCA product (Signature Creation Application) with the valid certificate issued by the National Security Authority.
SHA 1 hash of file
crzep11.dll 99965D1410748D8546F64719052C361215DE091C
crzep11p.dll 89EE7A4EDF6C55D98A82BD6E35065B6E6DBFE293
dizep.dll 61C932343B418B49CDD2CE51B3966702D187FED1
A9 - Chip Card Siemens CardOS Smartcard 32KB/64KB, CardOS V4.3B - DSDA version
The NSA finished a certification process of a product on 24 August 2010. The process was finished on the basis of submitting the application of company Disig, a.s., Záhradnícka 151, 824 08 Bratislava for product certification for the Electronic signature „CardOS Smartcard 32KB/64KB, CardOS V4.3B - DSDA“ on 26 May 2010 in accordance with Article 24 (7) of the Act No. 215/2002 Coll. on Electronic Signature.
The products can be used for secure generating and saving of private and public keys (key pairs), for the Qualified Electronic Signature creation and verification, its use in applications supporting the electronic signing, for saving of qualified certificates and certificates, also for its use in applications supporting the electronic signing, for secure saving of other text or data files. The product can be used only with signature schemes which are admissible by legal rules of the Slovak republic especially by Regulation no. 135/2009 Coll. on Qualified Electronic Signature creation and verification and Time Stamp creation and verification and are valid in the time of Qualified Electronic Signature creation with the use of SCVA product (Signature Creation & Verification Application) or SCA product (Signature Creation Application) with the valid certificate issued by the National Security Authority.
B1 - ZEP- XML version 3.0
The NSA finished a certification process of a product in 4th April 2008. The process was finished on the basis of submitting the application of company TEMPEST, a.s., Plynárenská 7/B, 821 09 Bratislava for product certification for the Electronic signature „ZEP-XML version 3.0" in 5th February 2008 in accordance with Article 10 part 2 letter j) of the Act no. 215/2002 Coll. on Electronic Signature.
The product is determined for the Qualified Electronic Signature creation and verification in XAdES-EPES (XML signature without Time Stamp) and in XAdES-EPES-T (XML signature with Time Stamp) formats over textual file formats, which are displayed as web forms in the web browser.
According to the declaration of the producer a given application has been tested and it supports the following NSA-certified SSCD devices: Safenet iKey 2032 FIPS Hardware versions (A and 909-23002) and 909-25001 Firmware version 0.6. In order to use other certified SSCD devices it is necessary to communicate with the producer when purchasing this SCVA application.
B2 - D. Signer/ XAdES version 1.0.0.0
The NSA finished a certification process of a product in 14th December 2009. The process was finished on the basis of submitting the application of company Ditec, a. s., Plynárenská 7/C, 821 09 Bratislava for product certification for the electronic signature „D. Signer/XAdES version 1.0.0.0“ in 7th December 2009 in accordance with Article 24 (7) of the Act no. 215/2002 Coll. on Electronic Signature.
The product is determined for the Qualified Electronic Signature creation in XAdES-EPES formats.
According to the declaration of the producer the product uses the services of SSCD device through Crypto Service Provider, therefore the direct dependency on particular SSCD devices does not exist. The existence of Crypto Service Provider for a given device is, naturally, the condition.
B3 - QSign version 3.3
The NSA finished a certification process of a product in 2nd February 2009. The process was finished on the basis of submitting the application of company Ardaco, a.s., Polianky 5, 841 01 Bratislava for product certification for the electronic signature „Qsign version 3.3 “ in 17th December 2008 in accordance with Article 24 (7) of the Act no. 215/2002 Coll. on Electronic Signature.
The product is determined for Qualified Electronic Signature creation and verification in approved formats CAdES-EPES (CMS signature without Time stamp), CAdES-EPES-T (CMS signature with Time stamp), CAdES-EPES-C-X (CMS signature with the complete information for validity verification), CAdES-EPES-A (CMS Archive signature) and Archival signature.
According to the declaration of the producer a given application supports the following NSA-certified SSCD devices: Cryptoflex 32K e-Gate Smart Card by SchlumbergerSema, a smart card STARCOS SPK 2.3 (only in Office version), Safenet iKey 2032 FIPS Hardware versions (A and 909-23002) and 909-25001 Firmware version 0.6, Siemens CardOS Smartcard 32KB/64KB version CardOS V4.3B - PKCS#15 SecAuth, Siemens HiPath SIcurity Smart Card 32KB, version SLE66CX322P CardOS 4.3B (only SHA1 with RSA algorithm) and Siemens HiPath SIcurity Smart Card 64KB, version SLE66CX642P CardOS 4.3B (only SHA1 with RSA algorithm).
B4 - QSign version 3.4
The NSA finished a certification process of a product on 18th December 2009. The process was finished on the basis of submitting the application of the company Ardaco, a.s., Polianky 5, 841 01 Bratislava for the product certification for the electronic signature "Qsign version 3.4 “ on 13th November in accordance with Article 24 (7) of the Act no. 215/2002 Coll. on Electronic Signature.
The product is determined for Qualified Electronic Signature creation and verification in approved formats CAdES-EPES (CMS signature without Time stamp), CAdES-EPES-T (CMS signature with Time stamp), CAdES-EPES-C-X (CMS signature with the complete information for validity verification), CAdES-EPES-A (CMS Archive signature) and Integrity signature.
B5 - QSign version 4.0
The NSA finished a certification process of a product on 8 June 2009. The process was finished on the basis of submitting the application of the company Ardaco, a.s., Polianky 5, 841 01 Bratislava for the product certification for the electronic signature "Qsign version 4.0 “ on 14 April 2010 in accordance with Article 24 (7) of the Act No. 215/2002 Coll. on Electronic Signature.
The product is determined for the Qualified Electronic Signature creation and verification in approved formats such as CAdES-EPES (CMS signature without Time stamp), CAdES-EPES-T (CMS signature with Time stamp), CAdES-EPES-C-X (CMS signature with the complete information for validity verification), CAdES-EPES-A (CMS Archive signature) and the Integrity signature and in formats XAdES-EPES (XML signature without Time stamp), XAdES-EPES-T (XML signature with Time stamp), XAdES-EPES-C-X (XML signature with the complete information for validity verification) a XAdES-EPES-A (XML Archive signature).
B6 - D. Signer/ XAdES version 1.1.0.0 with D. Signer/XAdES-XML Plugin version 1.1.0.0, D. Signer/XAdES-PDF Plugin version 1.0.0.0 and D. Signer/XAdES-FO Plugin version 1.0.0.0
The NSA finished a certification process of a products on 30 June 2010. The process was finished on the basis of submitting the application of company Ditec, a. s., Plynárenská 7/C, 821 09 Bratislava for products certification for the electronic signature „D. Signer/XAdES version 1.1.0.0, D. Signer/XAdES-XML Plugin version 1.1.0.0 and D.Signer/XAdES-PDF Plugin version 1.0.0.0“ on 11 November 2009 in accordance with Article 24 (7) of the Act No. 215/2002 Coll. on Electronic Signature.
The NSA finished a certification process of a products on 16 August 2010. The process was finished on the basis of submitting the application of company Ditec, a. s., Plynárenská 7/C, 821 09 Bratislava for products certification for the electronic signature „D. Signer/XAdES-FO Plugin version 1.0.0.0“ on 29 January 2010 in accordance with Article 24 (7) of the Act No. 215/2002 Coll. on Electronic Signature.
D. Signer/XAdES version 1.1.0.0 can be used only with plugins for particular data types being certified by the National Security Authority in compliance with instructions from the manufacturer. Plugins D. Signer/XAdES-XML Plugin version 1.1.0.0, D. Signer/XAdES-PDF Plugin version 1.0.0.0 and D. Signer/XAdES-FO Plugin version 1.0.0.0 may be used only with the application D.Signer/XAdES being certified by the National Security Authority. All restrictions and usage conditions which are defined in respective certificates issued by the National Security Authority must be met for the secure usage of the application and plugins.
The product is determined for the Qualified Electronic Signature creation in XAdES-EPES formats.
According to the declaration of the producer the product uses the services of SSCD device through Crypto Service Provider, therefore the direct dependency on particular SSCD devices does not exist. The existence of Crypto Service Provider for a given device is, naturally, the condition.