Entrust has announced that its Remote Qualified Signature Creation Device (QSCD) has passed Common Criteria examination, allowing it to develop an eIDAS-compliant solution that combines nShield Hardware Security Modules (HSMs) and the Entrust Signature Activation Module (SAM).
“The Entrust SAM software on top of the highly reliable nShield HSM has enabled us to build a cloud signature platform fully compliant with eIDAS and national requirements, allowing our development teams to focus on added value and not product certification,” said Pere Barba, CTO at Vintegris.
“We have developed an integration with Entrust SAM and nShield HSM with our remote signing solution that together forms the Type II QSCD. In collaboration with the Entrust team, we have achieved great results with the overall performance. We are excited about its flexibility and transparency. The remote signing solution can be deployed by anyone interested in advanced or qualified infrastructure,” added Roman Cinkais, CEO of 3Key Company.
“Entrust offers a broad portfolio of certified products and services that help enterprises, government institutions, and qualified trust service providers to quickly deploy compliant services,”said Willem-Jan Bruin, Director of Business Development at Entrust.
He added, “The nShield XC HSMs have completed the Common Criteria EAL4+certification to establish a strong root of trust that anchors the security for signing and sealing applications. In addition, the Entrust SAM has achieved eIDAS QSCD certification (CEN EN 419 241-2) in combination with the nShield Connect XC and nShield Solo XC HSMs. The completion of the Common Criteria evaluation for the QSCD builds on this foundation to ensure full regulatory compliance.”
This system provides a highly secure framework for the establishment of authorised cloud signature and seal services, with final certification due in March 2022. This gives Trust Service Providers (TSPs) the ability to provide their customers with eIDAS-compliant remote signing. The new Entrust solution provides easy application integration in a scalable architecture that can respond to diverse capacity demands, as enterprises around the world seek solutions to allow digital operations that satisfy the highest requirements for confidence, trust, and compliance. Furthermore, the Remote Signing Solution integrates and supports external identity providers and doesn’t require any changesto an organization’s signing application structure.
The Entrust SAM is a critical security component of an eIDAS-compliant digitalsigning service, ensuring that signers maintain complete control over their signature keys. The Entrust SAM runs in the tamper-resistant environment of the QSCD, which is enabled by the Entrust nShield Connect XC or Solo XC, which is already Common Criteria certified. All signature requests to the nShield XC HSMs must first pass through the SAM, which checks and authorises the signing procedure.
Entrust’s long-term strategy to assist TSPs and Signing System Integrators globally includes the Entrust Remote QSCD. Entrust continues to invest in its portfolio, services, and partners in order to enable digital transformation and protect the identity and essential data of people, businesses, governments, and (IoT) devices.