. Qualified E-seal on hardware security modules for high performance in data center operation - secrypt GmbH
secrypt GmbH
  • Menu
    • Lösungen
      • Dokumente elektronisch signieren
      • Elektronisches Siegel
      • Scannen und Signieren
      • Unterschrift auf Tablet
      • Handy-Signatur
      • Beweiswerterhaltung
      • Digitaler Zeitstempel
      • Elektronische Rechnungen schützen
    • Produkte
      • digiSeal server
      • digiSeal office
      • digiSeal archive
      • digiSeal reader
      • digiSeal check+sign
      • digiSeal PDF library
      • digiSeal 2d barcode
    • Branchen
    • Unternehmen
      • Über uns
      • News & Events
      • Jobs
      • Kundenprojekte
      • Partner
    • Kontakt
    • Support
    • Branchen
      • Gesundheitswesen
      • Handel und Logistik
      • Industrie und Ingenieurwesen
secrypt GmbH
  • DE
  • EN
CONTACT
+49 30 756 59 78-0
  • Industries
      • Healthcare
        • Healthcare – E-signature solutions for medical facilities, manufacturers of HIS, PVS and E-Archives as well as scan service providers
        • Close
      • Public administration
        • Public administration – Solutions for the use of the electronic signature and the digital seal of approval for the implementation of the secure e-file
        • Close
      • Universities and education
        • Universities and education – Secure and traceable processes and documents for testing and closing with e-seals and time stamps
        • Close
      • Industry and Engineering
        • Industry and Engineering – Protect individual documents and mass documents – such as contracts and e-business invoices – from manipulation with internationally standardized, secure signature tools
        • Close
      • Insurance companies and Banks
        • Insurance companies and Banks – Accelerate internal document workflows and customer processes with electronic signatures with legal effect
        • Close
      • Personnel service provider
        • Personnel service provider – Digital signature for the fast digital conclusion of temporary employment contracts
        • Close
      • Pharmaceuticals and Chemicals
        • Pharmaceuticals and Chemicals – E-signature and time stamp solutions for secure and traceable digital documentation – e.g. during production – in accordance with QM and compliance requirements
        • Close
      • Trading and Logistics
        • Trading and Logistics – Solutions for verifying the integrity and authenticity of electronic invoices with e-signatures and for signing documents such as shipping documents and delivery confirmations with a pen on a tablet
        • Close
      • Utilities and Waste management
        • Utilities and Waste management – E-signature and E-seal solutions for protection against manipulation and proof of copyright of digital documents both internally and externally, e.g. for internal release processes, contracts and invoices
        • Close
    • Close
  • Solutions
      • Sign documents electronically
        • Sign documents electronically – Solutions for the electronic signature of individual documents, e.g. PDF, and document stacks as well as mass documents in an automated process
        • Close
      • Electronic seals
        • Electronic seals – Official seal and company stamp for the Internet age – legally compliant in accordance with EU regulation eIDAS and internationally standardised
        • Close
      • Scan and sign
        • Scan and sign – Secure replacement scanning including integrity protection (e.g. TR-RESISCAN) for the abolition of paper archives, e.g. for health insurance companies, social insurance companies and medical institutions
        • Close
      • Signature on Tablet
        • Signature on Tablet – Biometric signature on tablet or signature pad for efficient digital document workflows, e.g. in patient admission or at the POS
        • Close
      • Mobile signature
        • Mobile signature – Solution for qualified electronic signature with smartphone according to EU regulation eIDAS („remote signature“) without signature card and card reader
        • Close
      • Conservation of evidence
        • Conservation of evidence – Audit-proof long-term preservation of evidence value of digital documents – e.g. patient files, records and personal status data – in the E-Archive with time stamps from qualified trusted service providers
        • Close
      • Digital timestamp
        • Digital timestamp – Use qualified time stamps in accordance with the eIDAS Regulation to reliably prove the content status of documents at a certain point in time
        • Close
      • Protecting electronic invoices
        • Protecting electronic invoices – Protect e-bills against cyber counterfeiting and ensure integrity and authenticity in accordance with VAT legislation
        • Close
    • Close
  • Products
      • digiSeal server
        • digiSeal®server – High-performance and flexible server software for centralized automated processes for e-signatures, e-seals, time stamps, PDF/A and more in complex application scenarios
        • Close
      • digiSeal office
        • digiSeal®office – Versatile signature software for the workstation to sign, seal and timestamp individual documents or document batches in one pass
        • Close
      • digiSeal archive
        • digiSeal®archive – Powerful software solution for the revision-safe long-term preservation of evidence value of digital documents in the e-archive with qualified time stamps and in accordance with LTANS/ERS and TR-ESOR cryptomodule
        • Close
      • digiSeal reader
        • digiSeal®reader – Free software for checking signed and sealed documents as well as digital time stamps according to EU-eIDAS-VO including encryption and decryption against snoopers
        • Close
      • Order
        • Order – Signature equipment – digiSeal signature software, signature and seal cards as well as card readers – order quickly and conveniently in the online shop
        • Close
      • Support
        • Support – Technical support for secrypt customers via telephone hotline, e-mail and remote service
        • Close
    • Close
  • Company
      • About us
        • About us – Profile, services, products and commitments of the e-signature experts at secrypt GmbH
        • Close
      • Jobs
        • Jobs – Current job offers for developers and consultants and office impressions from Berlin
        • Close
      • Partners
        • Partners – Our integration, technology and sales partners network our products with users and their industry-specific systems
        • Close
      • References
        • References – A selection of our small, medium and large projects across many industries, from healthcare to public administration to the private sector
        • Close
      • Useful information and legal issues
        • Useful information and legal issues – Presentation of essential principles and the functional principle of the electronic signature as well as the legal framework of trust services in Germany and Europe
        • Close
      • Contact
        • Contact – We would be happy to advise you personally in a telephone call or by e-mail and accept your questions, suggestions and requests for information via online form – please note our data protection declaration!
        • Close
    • Close

Qualified E-seal on hardware security modules for high performance in data center operation - secrypt GmbH

Qualified E-seal on hardware security modules for high performance in data center operation

Tatami Michalek
26. September 2019
  • Allgemein

secrypt GmbH offers a complete solution consisting of server software digiSeal server and certified HSM for high-performance E-Seal applications in business, administration and healthcare.

Berlin, 25.09.2019. For larger companies and organisations from business, administration and healthcare with their own computer centres, the use of a certified HSM in combination with digiSeal server now permits the implementation of extremely powerful and flexible eIDAS-compliant e-Seal processes, e.g. for digital account statements, official notices, hospital patient files, digital invoices or authentication for account access by FinTechs in accordance with PSD2 (Payment Services Directive 2). Digital documents and data, which are provided with a qualified e-seal in this way, can be checked for integrity and authenticity by independent third parties on the basis of uniform EU-wide standards – an essential prerequisite for creating trust in electronic business processes and workflows.

Server software digiSeal server integrates E-Siegel into IT processes

The digiSeal server enables the integration of e-Seal, e-Signature and timestamp for any data format, e.g. PDF or XML, in process-leading applications, such as DMS, ERP or other specialized processes via various interfaces, such as a web service. The role concept with differentiated access rights for administrator and user allows to assign and withdraw seal authorizations.

Hardware security modules for very high data throughput and flexibility

Especially for sealing processes that require a very high document or data throughput, a high degree of automation and/or the use of several parallel E-Seal certificates, sealing cards represent a technical and organizational bottleneck. While current sealing cards with the use of the RSA algorithm and 2,048 bit key length provide approximately one seal per second, i.e. 3,600 seals per hour, hardware security modules (HSM) currently available on the market, which are usually designed as a 19-inch rack, achieve up to 3,200 seals per second, i.e. approx. 11.5 million seals per hour. In addition, many different e-seal keys can be stored on an HSM and operated in parallel.

Requirements for HSM operation

For the storage of qualified E seals, the HSM must have a certification, e.g. according to “Common Criteria for Information Technology Security Evaluation (CC)”, for the “Protection Profile prEN 419 221-5 Protection Profiles for TSP Cryptographic Modules – Part 5: Cryptographic Module for Trust Services”. In addition, operation at the user’s site must take place in a secure data center (data center), which, for example, has an access control system.

ENISA (The European Union Agency for Cybersecurity) supports this use case in its publication “Assessment of Standards related to eIDAS – Recommendations to support the technical implementation of the eIDAS Regulation” from November 2018.

How does a legal entity receive an e-label?

The E-seal is an EU-wide recognized signature tool for legal entities such as a public limited company (AG), limited liability company (GmbH) or public limited company (AöR). It is the digital stamp for companies and organisations in the private sector, for public authorities and for health care institutions. The qualified E seal is issued by qualified trust service providers (VDA, also known as “trust centers”) that are subject to strict legal and regulatory requirements. The legal entity is securely identified by the VDA. As a rule, a natural person authorized to sign for the organization is identified personally, for example using the PostIdent procedure, including the necessary supporting documents, such as an extract from the commercial register. After successful identification, the VDA generates an individual E-Seal certificate including a secret private key with which the E-Seal is generated using strong cryptographic processes.

The e-seal key must be stored on secure certified hardware, so-called “Secure Seal Creation Units” (SSEE), so that it cannot be misused by unauthorized persons. The qualified VDAs offer sealing cards – smartcards with cryptochip – which can be used for both single seal and mass seal processes. To trigger an e-seal, proof of a PIN is required, which the VDA communicates by PIN letter.

More about Server software digiSeal server + HSM

Previous Story
Use electronic seal: How it works

Related Articles

Use electronic seal: How it works

Now digital documents can be electronically sealed in accordance with...

The e-bill for everyone: Bet on the right format!

secrypt supports the Berliner Stadtreinigung (BSR) in the provision of...

Leave your comment Cancel Reply

(will not be shared)

Categories

  • Allgemein
© 2002-2023 secrypt GmbH Imprint   |   Privacy policy

Contact

secrypt GmbH
Hohenzollerndamm 183
10713 Berlin
Germany

Phone +49 30 75 659 78 - 0
Fax +49 30 75 659 78 - 18

mail@secrypt.de

Support

+49 900 173 27 97 (1,99 €/min. inside Germany )
support@secrypt.de

Infoletter

Subscribe | Unsubscribe





    Please prove you are human by selecting the Truck.


    [recaptcha size:compact]

    Cookiehinweis
    Wenn Sie auf „Alle Cookies akzeptieren“ klicken, stimmen Sie der Speicherung von Cookies auf Ihrem Gerät zu, um die Websitenavigation zu verbessern, die Websitenutzung zu analysieren und unsere Marketingbemühungen zu unterstützen.
    Cookie EinstellungenAlle Cookies akzeptieren
    Manage consent

    Datenschutz-Hinweise

    Die Webseite der secrypt GmbH verwendet Cookies. Cookies sind Textdateien, welche über einen Internetbrowser auf einem Computersystem abgelegt und gespeichert werden. Zahlreiche Internetseiten und Server verwenden Cookies. Viele Cookies enthalten eine sogenannte Cookie-ID. Eine Cookie-ID ist eine eindeutige Kennung des Cookies. Sie besteht aus einer Zeichenfolge, durch welche Internetseiten und Server dem konkreten Internetbrowser zugeordnet werden können, in dem das Cookie gespeichert wurde. Dies ermöglicht es den besuchten Internetseiten und Servern, den individuellen Browser der betroffenen Person von anderen Internetbrowsern, die andere Cookies enthalten, zu unterscheiden. Ein bestimmter Internetbrowser kann über die eindeutige Cookie-ID wiedererkannt und identifiziert werden.

    Durch den Einsatz von Cookies kann die secrypt GmbH den Nutzern dieser Internetseite nutzerfreundlichere Services bereitstellen, die ohne die Cookie-Setzung nicht möglich wären.Mittels eines Cookies können die Informationen und Angebote auf unserer Webseite im Sinne des Benutzers optimiert werden. Cookies ermöglichen uns, die Benutzer unserer Webseite wiederzuerkennen.

    Zweck dieser Wiedererkennung ist es, den Nutzern die Verwendung unserer Internetseite zu erleichtern. Der Benutzer einer Internetseite, die Cookies verwendet, muss beispielsweise nicht bei jedem Besuch der Internetseite erneut seine Zugangsdaten eingeben, weil dies von der Internetseite und dem auf dem Computersystem des Benutzers abgelegten Cookie übernommen wird.

    Die betroffene Person kann die Setzung von Cookies durch unsere Internetseite jederzeit mittels einer entsprechenden Einstellung des genutzten Internetbrowsers verhindern und damit der Setzung von Cookies dauerhaft widersprechen. Ferner können bereits gesetzte Cookies jederzeit über einen Internetbrowser oder andere Softwareprogramme gelöscht werden. Dies ist in allen gängigen Internetbrowsern möglich. Deaktiviert die betroffene Person die Setzung von Cookies in dem genutzten Internetbrowser, sind unter Umständen nicht alle Funktionen unserer Internetseite vollumfänglich nutzbar.

    Domain: www.secrypt.de
    Notwendig
    Always Enabled
    Diese Cookies sind zur Funktion der Website erforderlich und können in Ihren Systemen nicht deaktiviert werden. In der Regel werden diese Cookies nur als Reaktion auf von Ihnen getätigte Aktionen gesetzt, die einer Dienstanforderung entsprechen, wie etwa dem Festlegen Ihrer Datenschutzeinstellungen, dem Anmelden oder dem Ausfüllen von Formularen. Sie können Ihren Browser so einstellen, dass diese Cookies blockiert oder Sie über diese Cookies benachrichtigt werden. Einige Bereiche der Website funktionieren dann aber nicht. Diese Cookies speichern keine personenbezogenen Daten.
    Nicht-notwendig
    Alle Cookies, die für die Funktion der Website möglicherweise nicht erforderlich sind und speziell zum Sammeln personenbezogener Benutzerdaten über Analysen, Werbung und andere eingebettete Inhalte verwendet werden, werden als nicht erforderliche Cookies bezeichnet. Es ist obligatorisch, die Zustimmung des Benutzers einzuholen, bevor diese Cookies auf der Website ausgeführt werden.
    SAVE & ACCEPT