Skip to content
EADTrust.eu
  • EADTrust
  • Services
    • Qualified Services
      • Electronic certificates
        • Natural Person
        • Legal Entity Representative
        • Public Employee
        • Company Seal
        • EPREL
        • Corporate Seal (PSD2)
        • Extended Validation (PSD2)
        • Domain Validation
        • Organization Validated
        • Extended Validation (QWAC)
      • Qualified Timestamp
    • Trust Services
      • Corporate Services
        • Electronic Voting
        • Attested Publication
        • Electronic Forum of Shareholders
      • Timestamp EN
      • Chartulary
      • Noticeman
      • Virtual Data Room
      • Key Generation and Custody
  • Audit
    • Electronic Signature
    • Certified Scanning
  • Consulting
    • Digital Trust Services
    • GDPR Compliiance
    • Electronic Signature
    • Intellectual and Industrial Property
    • ENI-ENS-EJIS Compliance
    • eIDAS Conformity
  • Contact
  • Blog
  • Español
EADTrust.eu
  • EADTrust
  • Services
    • Qualified Services
      • Electronic certificates
        • Natural Person
        • Legal Entity Representative
        • Public Employee
        • Company Seal
        • EPREL
        • Corporate Seal (PSD2)
        • Extended Validation (PSD2)
        • Domain Validation
        • Organization Validated
        • Extended Validation (QWAC)
      • Qualified Timestamp
    • Trust Services
      • Corporate Services
        • Electronic Voting
        • Attested Publication
        • Electronic Forum of Shareholders
      • Timestamp EN
      • Chartulary
      • Noticeman
      • Virtual Data Room
      • Key Generation and Custody
  • Audit
    • Electronic Signature
    • Certified Scanning
  • Consulting
    • Digital Trust Services
    • GDPR Compliiance
    • Electronic Signature
    • Intellectual and Industrial Property
    • ENI-ENS-EJIS Compliance
    • eIDAS Conformity
  • Contact
  • Blog
  • Español
EADTrust.eu

PSD2 EIDAS test Certificates (QWAC and QSeal)

EADTrust is offering PSD2 EIDAS (electronic IDentification, Authentication and trust Services) test Certificates to ASPSPs and TPPs whishing to test their infrastructure. Call +34 917160555 and talk to our specialists to get the right certificate for your entity.

QWAC and QSeal certificates are used in different context in PSD2 communications, to authenticate web servers and to electronically sign transactions in the Web API.

The EIDAS Regulation (EU) 910/2014 on electronic identification and trust services for electronic transactions in the internal market was published before PSD2. EIDAS certificates taylored to PSD2 services are defined in ETSI Standard TS 119 495

ASPSPs are mandated, according Article 30(1)(a) of the RTS to deploy at least one interface which meets, inter alia, the requirement that AISPs, PISPs and CBPIIs are able to identify themselves towards the ASPSP.

TTPs (Third Party Providers) are either/both Payment Initiation Service Providers (PISPs) and/or Account Information Service Providers (AISPs).

ASPSPs (Account Servicing Payment Service Providers) provide and maintain a payment account for a payer as defined by the PSRs and, are entities that publish Read/Write APIs to permit, with customer consent, payments initiated by third party providers and/or make their customers’ account transaction data available to third party providers via their API end points.

For the purpose of identification, ASPSPs and TPPs shall rely on using EIDAS Certificates for electronic seals and for website authenti­cation. Identifying themselves is mandatory for all TPPs that wish to get access to ASPSP’s sandbox, live API, or other channels.

EIDAS certificates are provided by Qualified Trust Service Providers (QTSPs) who are responsible for assuring the electronic identification of signatories and services by using strong mechanisms for authentication, digital certificates, and electronic signatures.

There are two  types of EIDAS certificates specifically designed for PSD2 incumbents:

  • Qualified Website Authentication Certificates (QWAC) – identification at the transport layer. QWAC is similar to SSL/TLS with Extended Validation used in the Internet web servers for the same purpose. It is used for website authentication, so that ASPSPs and TPPs can be certain of each other’s identity, securing the transport layer. TPP should present its QWAC client certificate towards an ASPSP. The ASPSP can choose between using the ASPSP QWAC server certificate or just an existing SSL/TLS certificate to receive the TPP’s identification request.
  • Qualified Certificate for Electronic Seals (QSEAL) – identification at the application layer. It is used for identity verification, so that transaction information is protected from potential attacks after communication. This means that the person receiving digitally signed data can be sure who signed the data and that it hasn’t been changed.

eIDAS QSEAL can be understood as the digital version of a traditional company stamp, and is currently applied to electronic documents sealing to guarantee the origin and integrity of the document.

 
 
electronic certificates0PSD2 EN

Post navigation

Certified Scanning
EADTrust at the COP25 Climate Summit

Categories

  • Audit
  • Certified Scanning
  • Chartulary
  • Corporate Services
  • Cryptography
  • EADTrust EN
  • Electronic certificates
  • Electronic invoice
  • Electronic Signature
  • Key generation and custody
  • Noticeman
  • PSD2 EN
  • Qualified services
  • Timestamp EN
  • Trust services
  • Virtual Data Room EN
April 2023
M T W T F S S
 12
3456789
10111213141516
17181920212223
24252627282930
« Mar    
EADTrust European Agency of Digital Trust white
Logos eIDAS INCIBE

Contact

Calle Méntrida 6, Madrid
+34 91 716 0555
info@eadtrust.eu

FOLLOW US

Logo Facebook azul redondo Logo Twitter Azul redondo Logo LinkedIn azul redondo

EADTrust

We are a Qualified Trust Service Provider registered with the Ministry of Economic Affairs and Digital Transformation.

Qualified Trusted Service Providers

Choose EADTrust

  • Policies of the CA
  • Privacy Policy and Data Protection
  • Cookies Policy
  • Legal Notice
Logos ISO Applus
© 2023 Una página de EADTrust, European Agency of Digital Trust S.L.