iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
CEN

CEN/TS 419261:2015

(Main)

Security requirements for trustworthy systems managing certificates and time-stamps

Security requirements for trustworthy systems managing certificates and time-stamps

1.1   General
This Technical Specification establishes security requirements for TWSs that can be used by a TSP in order to issue QCs and Non-Qualified Certificates (NQCs) as well as electronic time-stamps in accordance with Dir.1999/93/EC and with [Reg.910/2014/EU].
Security requirements for the Subject Device Provision Service, which includes SCDev/QSCD provision to subjects, are defined in this TS. However, requirements specific to SCDev/QSCD devices, as used by subjects of the TSP, are outside the scope of this TS. These requirements are defined as Common Criteria [CC] Protection Profiles (PP) in the EN 419211 series.
Recommendations for the cryptographic algorithms to be supported by TWSs are provided in ETSI/TS 119 312.
Although this TS is based on the use of public key cryptography, it does not require or define any particular communication protocol or format for electronic signatures, certificates, certificate revocation lists, certificate status information and time-stamp tokens. It only assumes certain types of information to be present in the certificates in accordance with Annex I of Dir.1999/93/EC and of [Reg.910/2014/EU]. Interoperability between TSP systems and subject systems is outside the scope of this document.
The use of TWSs that are already compliant to relevant security requirements of this TS should support TSPs in reducing their burden to establish conformance of their policy to ETSI TS 119 411-1, 119 411-2, and 119 421 (or equivalent ENs to be subsequently published) and in meeting the Annex I and Annex II requirements of Dir.1999/93/EC as well as the requirements from Annex I and Article 24.2 (e) of [Reg.910/2014/EU].
1.2   European Regulation-specific
The main focus of this document is on the requirements in Article 24.2 (e) of [Reg.910/2014/EU] whilst still facilitating the meeting of requirements in Dir.1999/93/EC, Annex II (f). In considering [Reg.910/2014/EU] it is important to take into account the following requirements of particular relevance to TSP trustworthy systems:
a)   Article 24.2 (f) – “use trustworthy systems to store data provided to it, in a verifiable form so that:
(i)   they are publicly available for retrieval only where the consent of the person to whom the data relates has been obtained,
(ii)   only authorised persons can make entries and changes to the stored data,
(iii)   the data can be checked for authenticity”;
b)   Article 24.2 (g) – “take appropriate measures against forgery and theft of data”;
c)   Article 24.2 (h) – “record and keep accessible for an appropriate period of time, including after the activities of the qualified trust service provider have ceased, all relevant information concerning data issued and received by the qualified trust service provider, in particular, for the purpose of providing evidence in legal proceedings and for the purpose of ensuring continuity of the service. Such recording may be done electronically”;
d)   Article 24.2 (j) – “ensure lawful processing of personal data in accordance with Directive 95/46/EC”;
e)   Article 24.2 (k) – “in case of qualified trust service providers issuing qualified certificates, establish and keep updated a certificate database”;
f)   Article 24.3 – “If a qualified trust service provider issuing qualified certificates decides to revoke a certificate, it shall register such revocation in its certificate database and publish the revocation status of the certificate in a timely manner, and in any event within 24 hours after the receipt of the request. The revocation shall become effective immediately upon its publication”;
g)   Article 24.4 – "With regard to paragraph 3, qualified trust service providers issuing qualified certificates shall provide to any relying party information on the validity or revocation status of qualified certificates issued by them.

Sicherheitsanforderungen für vertrauenswürdige Systeme zur Verwaltung von Zertifikaten für elektronische Signaturen und Zeitstempel

1.1   Allgemeines
Diese Technische Spezifikation legt Sicherheitsanforderungen an TWS fest, die durch einen TSP genutzt werden können, um QC und nicht qualifizierte Zertifikate (NQC, en: non-qualified certificates) wie auch elektronische Zeitstempel nach der Richtlinie 1999/93/EG  und [Verordnung 910/2014/EU] auszugeben.
Die Sicherheitsanforderungen an den Bereitstellungsdienst für Signaturerstellungseinheiten für Zertifikat-inhaber, der die Bereitstellung von SCDev/QSCD an Zertifikatinhaber umfasst, sind in dieser TS definiert. Die für SCDev/QSCD spezifischen Anforderungen, wie sie von den Zertifikatinhabern der TSP angewendet werden, liegen jedoch außerhalb des Anwendungsbereichs dieser TS. Die entsprechenden Anforderungen sind in der Reihe EN 419211 als Schutzprofile (PP, en: Protection Profiles) nach den Common Criteria (CC) definiert.
Empfehlungen hinsichtlich der durch TWS zu unterstützenden kryptographischen Algorithmen sind in ETSI/TS 119 312 angegeben.
Obwohl diese TS auf der Public-Key-Kryptografie  beruht, verlangt oder definiert sie kein bestimmtes Kommunikationsprotokoll oder -format für elektronische Signaturen, Zertifikate, Zertifikatsperrslisten, Zertifikatstatusinformationen und Zeitstempel-Token. Ihr liegt ausschließlich die Annahme zugrunde, dass die Zertifikate bestimmte Arten von Informationen nach Richtlinie 1999/93/EG, Anhang I und nach [Verordnung 910/2014/EU], enthalten. Die Interoperabilität zwischen TSP-Systemen und Zertifikatinhaber-Systemen liegt außerhalb des Anwendungsbereichs dieses Dokuments.
Die Nutzung von TWS, die bereits die relevanten Sicherheitsanforderungen dieser TS erfüllen, sollte den TSPs das Erreichen der Übereinstimmung ihrer Grundsätze mit ETSI/TS 119 411-1, 119 411-2 und 119 421 (oder entsprechender Europäischer Normen die zu einem späteren Zeitpunkt veröffentlicht werden) (sowie die Erfüllung der Anforderungen nach Richtlinie 1999/93/EG, Anhang I und Anhang II, als auch der Anforderungen nach  [Verordnung 910/2014/EU], Anhang I und Artikel 24.2 (e), erleichtern.
1.2   Spezifisch für die Europäische Verordnung
Der Hauptfokus dieses Dokuments liegt auf den Anforderungen nach [Verordnung 910/2014/EU], Artikel 24.2 (e) während weiterhin die Erfüllung der Anforderungen nach Richtlinie 1999/93/EG, Anhang II (f) unterstützt wird. Unter Beachtung der [Verordnung 910/2014/EU] ist jedoch die Berücksichtigung der folgenden  Anforderungen, die teilweise für vertrauenswürdige Systeme von TSP Relevanz haben, erforderlich:
a)   Artikel 24.2 (f) — „vertrauenswürdige Systeme für die Speicherung der ihnen übermittelten Daten in einer überprüfbaren Form, so dass
i)   diese nur mit Zustimmung der Person, auf die sich die Daten beziehen, öffentlich abrufbar sind;
ii)   nur befugte Personen Daten eingeben und gespeicherte Daten ändern können;
iii)   die Daten auf Ihre Echtheit hin überprüft werden können;
b)   Artikel 24.2 (g) — „geeignete Maßnahmen gegen Fälschung und Diebstahl von Daten ergreifen“;
c)   Artikel 24.2 (h) — „alle einschlägigen Informationen über die von dem qualifizierten Vertrauens-dienstanbieter ausgegebenen und empfangenen Daten aufzeichnen und sie so aufbewahren, dass sie über einen angemessenen Zeitraum, auch über den Zeitpunkt der Einstellung der Tätigkeit des qualifizierten Vertrauensdienstanbieters hinaus, verfügbar sind, um insbesondere bei Gerichtsverfahren entsprechende Beweise liefern zu können und die Kontinuität des Dienstes sicherzustellen. Die Aufzeichnung kann in elektronischer Form erfolgen;
d)   Artikel 24.2 (j) — „eine rechtmäßige Verarbeitung personenbezogener Daten gemäß Richtlinie 95/46/EG sicherstellen;
e)   Artikel 24.2 (k) — „im Falle qualifizierter Vertrauensdiensteanbieter, die qualifizierte Zertifikate ausstellen, eine Zertifikatsdatenbank erstellen und auf dem neuesten Stand halten“.

Exigences de sécurité pour systèmes de confiance gérant des certificats et des horodatages

Varnostne zahteve za zaupanja vredne sisteme, ki upravljajo potrdila za elektronsko podpisovanje

General Information

Status
Published
Publication Date
24-Mar-2015
ICS
03.120.20 - Product and company certification. Conformity assessment
35.030 - IT Security
35.040 - Information coding
35.240.30 - IT applications in information, documentation and publishing
Technical Committee
CEN/TC 224 - Machine-readable cards, related device interfaces and operations
Drafting Committee
CEN/TC 224/WG 17 - Protection Profiles in the context of SSCD
Current Stage
9060 - Closure of 2 Year Review Enquiry - Review Enquiry
Start Date
02-Sep-2023
Completion Date
02-Sep-2023
Mandate
M/460 - Standardisation Mandate to the European Standardisation Organizations CEN, CENELEC and ETSI in the field of Information and Communication Technologies applied to Electronic Signatures
Ref Project
SIST-TS CEN/TS 419261:2015 - Security requirements for trustworthy systems managing certificates for electronic signatures

Buy Standard

TS CEN/TS 419261:2015 - BARVETS CEN/TS 419261:2015 - BARVE
PreviousNext
Technical specification
TS CEN/TS 419261:2015 - BARVE
English language
56 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)

SLOVENSKI STANDARD
SIST-TS CEN/TS 419261:2015
01-julij-2015
Varnostne zahteve za zaupanja vredne sisteme, ki upravljajo potrdila za
elektronsko podpisovanje
Security requirements for trustworthy systems managing certificates for electronic
signatures
Sicherheitsanforderungen für vertrauenswürdige Systeme zur Verwaltung von
Zertifikaten für elektronische Signaturen
Exigences de sécurité pour systèmes de confiance gérant des certificats pour signature
électronique
Ta slovenski standard je istoveten z: CEN/TS 419261:2015
ICS:
35.040 Nabori znakov in kodiranje Character sets and
informacij information coding
35.240.30 Uporabniške rešitve IT v IT applications in information,
informatiki, dokumentiranju in documentation and
založništvu publishing
SIST-TS CEN/TS 419261:2015 en,fr,de
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------

SIST-TS CEN/TS 419261:2015

---------------------- Page: 2 ----------------------

SIST-TS CEN/TS 419261:2015

TECHNICAL SPECIFICATION
CEN/TS 419261

SPÉCIFICATION TECHNIQUE

TECHNISCHE SPEZIFIKATION
March 2015
ICS 03.120.20; 35.040; 35.240.30
English Version
Security requirements for trustworthy systems managing
certificates and time-stamps
Exigences de sécurité pour systèmes de confiance gérant Sicherheitsanforderungen für vertrauenswürdige Systeme
des certificats et des horodatages zur Verwaltung von Zertifikaten für elektronische Signaturen
und Zeitstempel
This Technical Specification (CEN/TS) was approved by CEN on 18 November 2014 for provisional application.

The period of validity of this CEN/TS is limited initially to three years. After two years the members of CEN will be requested to submit their
comments, particularly on the question whether the CEN/TS can be converted into a European Standard.

CEN members are required to announce the existence of this CEN/TS in the same way as for an EN and to make the CEN/TS available
promptly at national level in an appropriate form. It is permissible to keep conflicting national standards in force (in parallel to the CEN/TS)
until the final decision about the possible conversion of the CEN/TS into an EN is reached.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,
Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and United
Kingdom.





EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels
© 2015 CEN All rights of exploitation in any form and by any means reserved Ref. No. CEN/TS 419261:2015 E
worldwide for CEN national Members.

---------------------- Page: 3 ----------------------

SIST-TS CEN/TS 419261:2015
CEN/TS 419261:2015 (E)
Contents Page
Foreword .4
Introduction .7
1 Scope .8
1.1 General .8
1.2 European Regulation-specific .8
2 Normative references .9
3 Terms, definitions, symbols and abbreviations .9
3.1 Terms and definitions .9
3.2 Symbols and abbreviations . 14
4 Description of a Trust Service Provider System . 15
4.1 General . 15
4.2 TSP Core Services for certificate management . 15
4.3 TSP Supplementary Services for certi
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

CEN
EN ISO 22435:2024(Main)
Gas cylinders - Cylinder valves with integrated pressure regulators - Specification and type testing (ISO 22435:2024)
kSIST FprEN ISO 22435:2024

This document specifies design, type test methods, marking and instruction requirements for cylinder valves with integrated pressure regulators (VIPRs) intended to be fitted to gas cylinders, pressure drums or tubes or used as a main valve for bundles of cylinders that convey compressed, liquefied or dissolved gases.
These are requirements for VIPRs that are in addition to those given in the relevant closure standard, for example, in ISO 10297 for cylinder valves, in ISO 17871 for quick-release cylinder valves, in ISO 17879 for self-closing cylinder valves or in ISO 23826 for ball valves. For ISO 17871, these requirements are only applicable to quick-release cylinder valves types B, C, D and E.
NOTE 1        If the pressure regulating system of a VIPR is acting as the primary valve operating mechanism, it is covered by the relevant closure standard, e.g. ISO 10297, ISO 17871, ISO 17879 and ISO 23826. This also includes designs where closure of the primary valve operating mechanism of a VIPR is obtained by closing the seat of the pressure regulating system.
NOTE 2        If the primary valve operating mechanism of a VIPR is located at the low-pressure side of the pressure regulating system, it is covered by the relevant closure standard, e.g. ISO 10297, ISO 17871, ISO 17879 and ISO 23826.
NOTE 3        The term “pressure receptacle” is used within this document to cover instances where no differentiation is necessary between gas cylinders, bundles of cylinders, pressure drums and tubes.
This document does not apply to VIPRs for
a)       medical applications (see ISO 10524-3);
b)       liquefied petroleum gas (LPG);
c)        cryogenic applications.
NOTE 4        Additional requirements for a VIPR with a residual pressure device (RPD) are specified in ISO 15996.
NOTE 5        Additional requirements for pressure relief valves can exist in international/regional regulations/ standards.

  • Draft
    39 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 17015-1:2024(Main)
Electronic Public Procurement - Catalogue - Part 1: Choreographies
kSIST FprEN 17015-1:2024

The purpose of this deliverable is to specify and describe choreographies for exchanging an electronic product catalogue (“catalogues”) as part of the business processes in the pre-award and post-award area, so that catalogues can serve as a basis for placing orders as well as evaluating tenders. The key aspects covered by this choreography specification are:
-   processes for submitting catalogues from the selling to the buying side;
-   processes for submitting catalogue-related data as part of a tendering process;
-   processes integrating sell-side procurement systems.
This document does not apply to the transactions used in the specified choreographies. These transactions are specified in EN 17015 2. The relationship between the choreographies and the transaction is described in Clause 8.
The identifier of this choreographies document is EN 17015 1:2024.
How to claim compliance to this choreography is specified in 6.2.3.

  • Draft
    38 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO/ASTM 52927:2024(Main)
Additive manufacturing - General principles - Main characteristics and corresponding test methods (ISO/ASTM 52927:2024)
kSIST FprEN ISO/ASTM 52927:2024

This document specifies the principal requirements applied to the testing of parts produced by additive manufacturing processes.
This document
—     identifies quality characteristics for feedstock and parts and the corresponding test procedures,
—     provides the specific procedures to build specimens using additive manufacturing process, and
—     recommends the scope and content of test and supply agreements.
This document is aimed at machine manufacturers, feedstock suppliers, AM system users, part providers, and customers to facilitate the communication on main quality characteristics. It applies wherever additive manufacturing processes are used.
NOTE            It is the intent to include, in future versions of this document, other characteristics such as thermal properties, electrical requirements and physical and physico-chemical properties based upon material types.

  • Draft
    28 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 8362-2:2024(Main)
Injection containers and accessories - Part 2: Closures for injection vials (ISO 8362-2:2024)
SIST EN ISO 8362-2:2024

This document specifies the shape, dimensions, material, performance requirements and labelling of closures for injection vials covered by ISO 8362-1 and ISO 8362-4.
The dimensional requirements are not applicable to barrier-coated closures.
Closures specified in this document are intended for single use only.
NOTE            The potency, purity, stability and safety of a medicinal product during its manufacture and storage can strongly be affected by the nature and performance of the primary packaging.

  • Draft
    10 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 16739-1:2024(Main)
Industry Foundation Classes (IFC) for data sharing in the construction and facility management industries - Part 1: Data schema (ISO 16739-1:2024)
kSIST FprEN ISO 16739-1:2024

This document represents an open international standard for information used in Building Information Modeling (BIM) that is exchanged and shared among software applications used by the various participants in the construction or facility management industry sector. This document includes definitions that cover information required for buildings and infrastructure works over their life cycle. This edition of the document added coverage of information required for infrastructure facilities including bridges, roads, railways, waterways and port facilities.
This document comprises the publication of a data schema, its documentation, the property and quantity set definitions and the mechanism of an exchange file format structure.
Definitions from this document are used to support different recognized work flows in the construction and facility management industry sector, representing information deliveries. Such information deliveries can be described according to ISO 29481.
Different implementation levels of this document can be defined to better support multiple information deliveries, they are referred to as a Model View Definition (MVD). Each MVD identifies which subset of the definitions of this document imposes requirements for implementation in software applications. Conforming software applications need to identify the model view definition they conform to when applying for software certification.
The following are within the scope of this edition of this document:
BIM exchange format definitions that are required during the life cycle phases of buildings and infrastructure:
demonstrating the need;
conception of need;
outline feasibility;
substantive feasibility study and outline financial authority;
outline conceptual design;
full conceptual design;
coordinated design;
procurement and full financial authority;
production information;
construction;
operation and maintenance.
BIM exchange format definitions that are required by the various disciplines involved within the life cycle phases:
architecture and civil engineering design;
service and utilities engineering;
structural engineering;
procurement;
construction planning;
facility and utility management;
project management;
client requirement management;
industry authorities for permits and approval.
BIM exchange format definitions including:
project structure;
physical components;
spatial components;
analysis items;
processes;
resources;
controls;
actors;
context definition.

  • Draft
    406 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 2620:2024(Main)
Analysis of natural gas - Biomethane - Determination of VOCs by thermal desorption gas chromatography with flame ionization and/or mass spectrometry detectors (ISO 2620:2024)
kSIST FprEN ISO 2620:2024

This document describes a method for sampling and analysis of volatile organic compounds (VOCs), including siloxanes, terpenes, organic sulfur compounds, in natural gas and biomethane matrices, using thermal desorption gas chromatography with flame ionization and/or mass spectrometry detectors (TD-GC-FID/MS).

  • Draft
    13 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 4126-10:2024(Main)
Safety devices for protection against excessive pressure - Part 10: Sizing of safety valves and bursting discs for gas/liquid two-phase flow (ISO 4126-10:2024)
kSIST FprEN ISO 4126-10:2023

This document specifies the sizing of safety valves and bursting discs for gas/liquid two-phase flow in pressurized systems such as reactors, storage tanks, columns, heat exchangers, piping systems or transportation tanks/containers, see Figure 2. The possible fluid states at the safety device inlet that can result in two-phase flow are given in Table 1.
NOTE          The pressures used in this document are absolute pressures, not gauge pressures.

  • Draft
    84 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 17294-1:2024(Main)
Water quality - Application of inductively coupled plasma mass spectrometry (ICP-MS) - Part 1: General requirements (ISO 17294-1:2024)
kSIST FprEN ISO 17294-1:2023

This document specifies the principles of inductively coupled plasma mass spectrometry (ICP-MS) and provides general requirements for the use of this technique to determine elements in water, digests of sludges and sediments (e.g. digests of water as described in ISO 15587-1 or ISO 15587-2). Generally, the measurement is carried out in water, but gases, vapours or fine particulate matter can be introduced too. This document applies to the use of ICP-MS for aqueous solution analysis.
The ultimate determination of the elements is described in a separate International Standard for each series of elements and matrix. The individual clauses of this document refer the user to these guidelines for the basic principles of the method and the configuration of the instrument.

  • Draft
    43 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN 17016-1:2024(Main)
Electronic Public Procurement - Ordering - Part 1: Choreographies
kSIST prEN 17016-1:2024

This choreographies document specify ordering between Buyer and Seller where the Buyer wants to reach an agreement with the Seller about an order. It specifies a series of activities that govern communication between the parties and refers to the specifications where information and rules that apply are specified.
The various possible behaviours of the Seller and Buyer subsequent to the first order communication are conveyed by variants of this choreography that are specified in 5.2.
Previous activities (e.g. cataloguing) and subsequent activities (e.g. invoicing) are outside the scope of this document. If performed electronically, their implementation is covered by other choreographies.
The identifier of this choreographies document is EN 17016-1:2024.
How to claim compliance to this choreography is specified in 5.2.3.

  • Draft
    74 pages
    English language
    sale 10% off
    e-Library read for
    1 day
CEN
EN ISO 7029:2017/A1:2024(Amendment)
Acoustics - Statistical distribution of hearing thresholds related to age and gender - Amendment 1: Correction of parameter values for estimating the hearing threshold distribution (ISO 7029:2017/Amd 1:2024)
SIST EN ISO 7029:2017/oprA1:2023
  • Draft
    6 pages
    English language
    sale 10% off
    e-Library read for
    1 day