eIDAS – Стандарти за управление на удостоверителни услуги

През 2016 година влезе в сила Регламент (EU) No 910/2014 (Регламент/ eIDAS) на Европейския парламент и на Съвета относно електронната идентификация и удостоверителните услуги при електронни транзакции на вътрешния пазар и за отмяна на Директива 1999/93/ЕО. Негова основна цел е изграждането на единен цифров пазар чрез улесняване на сигурна електронна идентификация и електронно удостоверяване на автентичността на съответния потребител.

A.1.1 Area 0 – Framework documents

TR 119 000 – Framework presentation
TR 119 001 – Definitions and abreviations

A.1.2 Area 1 – Signature Creation & validation

TR 119 100 – Business Guidance
TS 119 101 – Policy requirements for creation&validation of digital signatures
EN 419 111 – Protection Profile for signature creation&validation applications
EN 319 122 – CAdES digital signatures
EN 319 132 – XAdES digital signatures
EN 319 142 – PAdES digital signatures
EN 319 162 – Associated Signature Containers (ASiC)
TS 103 171 – XAdES profile
TS 103 172- PAdES profile
TS 103 173 – CAdES profile
TS 103 174 – ASiC baseline profile
EN 319 102-1 – Procedures for creation & validation of AdES digital signatures
TS 119 172-1 – Signature policies. Part 1 : building blocks and table of contents for human
EN 419 103 – Conformity assessment for signature creation and validation

A.1.3 Area 2 – Signatures & other related services

TR 419 200 – Business guidance
EN 419 211 – Protection profile for secure signature creation device
EN 419 221 – Protection profile for TSP cryptographic modules
EN 419 231 – Protection profile for trustworthy systems supporting time stamping
EN 419 241 – Security requirements for trustworthy systems supporting server signing
EN 419 251 – Security requirements for device for authentication
EN 419 261 – Security requirements for trustworthy systems managing certificates for electronic signatures

A.1.4 Area 3 – Cryptographic suites

TR 119 300 – Business guidance on cryptographic suites
TS 119 312 – Cryptographic suites

A.1.5 Area 4- TSPs supporting signatures

TR 119 400 – Business guidance
EN 319 403 – Requirements for CABs assessing TSPs
EN 319 401 – TSP policy requirements. General requirements
EN 319 411-1 – TSPs issuing certificates
EN 319 411-2 – TSPs issuing qualified certificates
EN 319 421 – Policy requirements for time-stamping authorities
EN 319 412 part 1 to part 5 – Certificate profiles
EN 319 422 – Time-stamp profiles

A.1.6 Area 5 – Trust Application Service Providers

TR 119 500 – Business guidance
SR 019 050 – Study on e-delivery

A.1.7 Area 6 – TSLs & trusted lists

TR 119 600 – Business guidance
TS 119 612 – Trusted lists

A.2.1 ISO

ISO 8601:2000 – Date and time format
ISO/IEC 9798:2010 – Entity authentication
ISO/IEC 11770:2010 – Key management
ISO/IEC TR 14516:2002 – Guidelines for the use and management of Trusted Third Party services
ISO/IEC 14888:2008 – Digital signatures with appendix
ISO/IEC 15408:2009 – Evaluation criteria for IT security
ISO/IEC TR 15443:2012 – Security assurance framework
ISO/IEC 15945:2002 – Specification of TTP services to support the application of digital signatures
ISO/IEC 16363:2012 – Space data and information transfer systems – audit and certification of trustworthy digital repositories
ISO/IEC 17065:2012 – Conformity assessment – requirements for bodies certifying products, processes and services
ISO/IEC 18014:2009 – Information technology – security techniques – timestamping services
ISO/IEC 19790:2012 – Security requirements for cryptographic modules
ISO/IEC 20000:2011 – Information technology – service management
ISO/IEC 24760:2011 – A framework for identity management
ISO/IEC 27001:2013 – Information security management systems
ISO/IEC 29115:2013 – Entity authentication assurance framework
ISO 19005-1 – PDF/A Specification
ISO 14641-1:2012 – Electronic archiving – Part 1: Specifications concerning the design and the operation of an information system for electronic information preservation. ISO/IEC, 2012.
ISO 14721:2012 – Space data and information transfer systems – Open archival information system (OAIS) – Reference model. ISO/IEC, 2012.
ISO 15489-1:2001 – Information and documentation – Records management. ISO/IEC, 2001.
ISO/IEC 15408-1:2009 – Information technology – Security techniques – Evaluation criteria for IT security – Part 1. ISO, 2009.
ISO/IEC 15408-2:2008 – Information technology – Security techniques – Evaluation criteria for IT security – Part 2. ISO, 2008.
ISO/IEC 15408-3:2008 Information technology – Security techniques – Evaluation criteria for IT security – Part 3. ISO, 2008.