BS EN 419212-2:2017

European foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Symbols and abbreviations
5 Signature application
6 User verification
7 Digital Signature Service
8 Password-based authentication protocols
9 Secure Messaging
10 Key Generation
11 Key identifiers and parameters
12 AlgIDs, Hash- and DSI Formats
13 Files
14 Cryptographic Information Application
Annex A (normative) - Security environments
Annex B (informative) - Seals and Signatures
Annex C (informative) - Remote Signatures
Bibliography

Defines mechanisms for SEs to be used as qualified signature creation devices covering: - Signature creation and mobile signature creation; - User verification; - Password based authentication.

This part specifies mechanisms for SEs to be used as qualified signature creation devices covering: • Signature creation and mobile signature creation • User verification • Password based authentication The specified mechanisms are suitable for other purposes like services in the context of EU Regulation 910/2014 of the European Parliament and the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC. The particular case of seal is also covered by the specification. The differences between seal and signature are exposed in Annex B. Annex B also explains how the mechanisms for SEs as qualified signature creation devices can be used for SEs as qualified seal creation devices. Mobile signature is an alternative to the classical signature case which is performed by a secure element. Mobile signature is encouraged by the large widespread of mobile devices and the qualification authorized by the eIDAS Regulation. The particular case of remote signature (or server signing) is covered by this specification in Annex C. In the rest of this document, except Annex B, there will be no particular notion of a seal since it technically compares to the signature.