Are you currently setting up or developing a qualified trust service for the creation of certificates for website authentication and would like to prove that you fulfil the requirements of the eIDAS Regulation? We can support you: from the necessary testing to conformity assessment (certification), we can provide you with all the services you need to qualify with your competent supervisory authority - in Germany the Federal Network Agency (BNetzA). In addition, we offer you workshops or provide you with an insight into the world of eIDAS & ETSI in the form of our eIDAS.PROFESSIONAL training.
Strengthen your customers' trust in your company's digital identity - with verified certificates, SSL technologies and the highest standards of encryption and security.
Stay qualified: Do you need to prove once again that you are implementing the applicable provisions of the eIDAS Regulation?We check your processes and documentation and accompany you on your way to successful re-certification.
Our offer is aimed at a wide range of organisations involved in the secure, legally binding distribution and use of websites:
This is how we support you holistically:
Training & Qualification
Concept & preparation
Testing & conformity assessment
Audit of your implementation based on the eIDAS Regulation, including
Application of the following ETSI standards:
Certification & re-certification
Servers and websites available on the network must be able to be reliably assigned to their operator if users are to trust them.Website authentication certificates (WAC) are issued to guarantee users (especially citizens and companies) that there is a legal entity (or natural person) behind the website that can be identified by trustworthy information. In addition to this secure identification of websites and server systems in the network, the WAC certificates guarantee
A Qualified Website Authentication Certificate (QWAC) is a digital SSL/TLS certificate issued in accordance with the requirements of the eIDAS Regulation. It guarantees the identity of the website operator as well as secure, encrypted communication between the website and the user.
The certification is aimed at trust service providers who want to issue certificates for website authentication - i.e. in particular providers of public key infrastructures (PKI), certification authorities (CAs) and companies with their own web infrastructure who want to fulfil the highest standards of security and trust.
Overall, the duration of the conformity assessment process depends on, for example, the number of trust services targeted, the complexity of your infrastructure and your current implementation status. As a rule, a complete conformity assessment process - including project kick-off, stage 1 audit, stage 2 audit, report preparation and certification - takes 6 months, although possible non-conformities during the audit can extend the duration.
We test according to the following standards, among others:
Qualified certificates (QWACs) offer a higher level of trust and state recognition in accordance with eIDAS. In contrast to regular SSL certificates, the identity of the certificate holder is checked particularly strictly, e.g. by qualified signature creation devices and an accredited trust service provider.