Skip to content

Validation services for electronic signatures, seals, and time stamps: verification and certification of your trust service

Hände tippen auf Laptop, umgeben von schwebenden digitalen Zertifikatsymbolen.

Becoming a qualified trust service provider (QTP) for validation services

Everything is becoming increasingly digital. This also applies to electronic documents and signatures in particular: Hand-signed documents are increasingly giving way to their electronic counterparts, digitally signed or time-stamped documents.

As a trust service provider for validation services, you are an important part of this development and support companies on their way to paperless documentation. If you want to become a qualified trust service provider in this context and be officially included in the European eIDAS Trusted List (EUTL), your validation service must fulfil the security requirements set out in the eIDAS Regulation.

We support you in this process - regardless of whether you are currently still setting up or developing your validation service, whether it is already ready for a conformity assessment or whether you need a new certificate for the implementation of the applicable provisions of the eIDAS Regulation. We offer you exactly the service that suits your current situation, from possible preliminary tests to conformity assessment or re-certification.

In addition, we prepare you for an upcoming certification in the form of workshops or give you an insight into the world of eIDAS & ETSI in our eIDAS.PROFESSIONAL training courses.

Request a personalised quote now

Target group of the certification for trust service providers for validation services

Our offer is aimed at a wide range of organisations involved in the secure, legally binding distribution and use of digital signatures, seals and time stamps:

  • Organisations that already operate a qualified electronic validation service or are planning to set up a qualified electronic validation service
  • Providers of digital identity services, certification services or trust services within the meaning of the eIDAS Regulation

The advantages of certification at a glance

  • Authorisation as a qualified trust service provider: You objectively prove that you fulfil the requirements of the eIDAS Regulation.
  • European recognition: You will be included in the EU Trusted List (EUTL).
  • Access to the European Single Market: Your service can be used throughout the EU in a legally binding manner.
  • Transparent GAP analysis: We identify optimisation potential in your current implementation.
  • Training & expertise: With our training, your employees become your company's own eIDAS.PROFESSIONALs.

Your path to becoming a certified trust service provider for electronic seals

This is how we support you holistically:

Training & Qualification

  • eIDAS.PROFESSIONAL training for your employees

Concept & preparation

  • Overview of the legal requirements for trust services, including the relevant eIDAS requirements, relevant ETSI standards and evaluation of these requirements in the respective context
  • Explanation of the meaning of the Trust Service Practice Statement (TSPS) and introduction to the TÜV NORD certification programme, including normative and legal requirements, interpretations and other relevant aspects
  • Workshops and preliminary audits to identify non-conformities and potential for improvement through status analyses of the PKI or trust service and GAP analysis of existing documentation and processes

Testing & conformity assessment

Application of the following ETSI standards:

  • ETSI EN 319 401: General requirements for trust service providers
  • ETSI TS 119 441: Guidelines & security requirements for trust service providers providing validation services
  • eIDAS Regulation:
  • Article 32: Requirements for the validation of qualified electronic signatures
  • Article 33: Qualified validation service for qualified electronic signatures

Certification & re-certification

  • Carrying out conformity assessment and certification
  • Support for inclusion in the EU Trusted Service List

Frequently asked questions about the validation service for digital signatures, seals, and timestamps

Validation services are essential for assessing the correctness and integrity of electronically signed, sealed or time-stamped documents. They also ensure transparency and authenticity in digital processes. Users can immediately determine whether, for example, the certificate used to create the signature or seal was valid at the time of signing or sealing. Validation services check whether the requirements of the eIDAS Regulation for a (qualified) electronic signature, a seal or a time stamp have been met in order to confirm or refute the validity and legal binding force.

Validation services guarantee the integrity, authenticity and legal security of electronic signatures, seals and time stamps - and thus offer key added value for users and signatories.

A validation service is useful for all legally relevant documents that have been electronically signed, sealed or time-stamped - e.g. contracts, invoices, notifications or authorisations. In particular, it helps to reliably verify the signature of a signatory.

TÜV NORD checks:

  • compliance with the requirements of the eIDAS Regulation
  • fulfil the requirements of the ETSI EN 319 401 and ETSI TS 119 441 standards

Integrity refers to the unchanged nature and validity of digital documents since the use of an electronic signature, seal or time stamp. The validation service checks the validity and ensures that the document has not been changed or manipulated since then - an essential factor for the legal validity and trustworthiness of digital signatures.

Overall, the duration of the conformity assessment process depends on, for example, the number of trust services targeted, the complexity of your infrastructure and your current implementation status. As a rule, a complete conformity assessment process - including project kick-off, stage 1 audit, stage 2 audit, report preparation and certification - takes 6 months, although possible non-conformities during the audit can extend the duration.

A key aspect of validation is checking whether, for example, the specified signatory used a valid certificate at the time of signing. This makes it possible to verify beyond doubt who signed the document and whether this fulfils the technical and legal requirements.

Yes, in addition to signatures and seals, validation services also check qualified time stamps to ensure that they have been set correctly and are provided with a valid trust certificate. This is important for the chronological categorisation and verification of digital data processes.

Why we are a strong partner for you

  • Independence
    Our employees are not subject to any conflicts of interest, as they are not beholden to any product providers, system integrators, shareholders, interest groups or government agencies.
  • Expertise
    With us, you have one of the leading experts in the field of cyber security at your side, certified by the BSI as an IT security service provider for IS audits and penetration tests.
  • International network of experts
    Around the globe: We support you both nationally and internationally. Our global network of experts is at your side for all IT security issues.
  • Industry experience
    Thanks to our many years of experience in a wide range of sectors, we can serve companies from a wide range of industries.
  • Tailored to you
    We focus on customised services - and solutions - that are ideally suited to your current business situation and the goals you have set yourself.

Do you have any questions? We are happy to help!

Additional services