Elliptic Curve Cryptography (ECC) allows the creation of very high security electronic certificates with smaller key sizes.
Several EADTrust certification hierarchies based on elliptic curve cryptography have been included in the TSL (Trusted Service List) published by the Subdirectorate General for Digital Society within the State Secretariat for Digitalisation and Artificial Intelligence of the Ministry of Economic Affairs and Digital Transformation, published on 5 October 2020. In addition, certification hierarchies based on conventional RSA cryptography of up to 8192 bits, the largest key size available, are incorporated. This is compatible with the use of encrypted communications with TLS/SSL protocols in browsers and with the qualified electronic signature tools available on the market.
In this way, EADTrust has become the Qualified Trust Service Provider that offers the highest security levels in Europe.
EADTrust's qualified trust services are valid in all European countries
EADTrust services are provided according to the European Regulation (EU) No. 910/2014, also known as eIDAS Regulation, so these high security features will be available to customers all over Europe.
The document of the National Cryptologic Centre called “Good Practices – CCN-CERT BP-01/17 – Recommendations for the Implementation of HTTPS”,
recommends the adoption of elliptic curve cryptography when available, so these certificates may be of interest to public sector entities that must comply with the National Security Scheme (ENS) with a high level of security.
The European eIDAS Regulation establishes the common legal framework for electronic identification and trust services in electronic transactions. It eliminates the transnational barriers to the provision of trust services that existed before its approval, unifying the criteria of the Member States of the European Union and establishes the requirements necessary for the provision of qualified trust services to be valid in any European country regardless of the country of origin of the Qualified Provider.
The current list of EADTrust qualified services is as follows:
- Issuance of electronic certificates: they technically and legally guarantee the identity of a natural or legal person in their transactions on the Internet and link the electronic signature or electronic seal verification data to its holder.
- The certification hierarchies offered by EADTrust have the following key sizes:
- RSA 2048, RSA 4096, RSA 8192
- ECC P-256, ECC P-384
- Certificate holders can be:
- Natural person for signature
- Legal Entite Representative
- Public Employee
- Civil servant with pseudonym
- Company Seal
- Legal Person for PSD2 Corporate Seal (QSealC)
- PSD2 Extended Validation Web Servers (QWAC)
- Web servers with TLS/SSL encryption, i.e. Web Site Authentication (QWAC)
- Domain Validation
- Organization Validated
- Extended Validation
- Issuance of timestamps: they record a moment before which an electronic transaction took place. The use of the time stamp provides evidence of the existence and non-alteration of electronic documents.
You can access the TSL list of the Spanish Supervisory Body here
You can see the EADTrust services and all the European trusted services here
To know more about EADTrust’s qualified services call 91 716 05 55 or send an email to firstname.lastname@example.org. We will be happy to answer any questions!