Cloud Signature Consortium & Ascertia
Building a new standard for cloud-based digital signatures
What is the Cloud Signature Consortium?
The Cloud Signature Consortium (CSC) is a global association of industries, governments and academic organisations. It includes solution providers, technology firms and Trust Service Providers (TSPs). They’ve all come together to drive standardisation and interoperability of highly secure, compliant cloud-based signatures.
With the introduction of eIDAS and eIDAS 2.0, it is clear a common global standard and methodology for interoperability between organisations was required. The CSC was introduced to develop these common protocols and enable access to secure digital signature solutions across several cloud-based applications, on mobile devices and on the web, in a non-proprietary way.
Ascertia’s involvement with the CSC
Ascertia works with TSPs, Remote Signing Service Providers (RSSPs) and Qualified Trust Service Providers (QTSPs) to power their remote signing services. We comply with the latest CSC standard API implementations enabling widespread remote signing adoption.
Common Criteria EAL4+ Certified
Ascertia’s Remote Qualified Signature Creation Device (QSCD) for high-trust remote signing was designed with CSC QTSPs in mind. Together with SigningHub and ADSS Server products, QTSPs can provide fully hosted remote signing services or hybrid solutions.
As a Qualified Trust Service Provider (QTSP) we had an urgent need to deliver Qualified Remote Signature services that met the EU eIDAS (910/2014) Regulation and the relevant ETSI standards and CEN EN 419241-2 Protection Profile for Qualified Remote Signing with Level 2 Sole Control. Ascertia was the first to release a commercial product, ADSS SAM Appliance, that was CC EAL4+ certified against EN 419241-2. As long-standing users of Ascertia’s world-class products we are pleased to see that the ADSS SAM Appliance using the same robust ADSS Server software.
Patrick Beckman Lapré
Director
QuoVadis +DigiCert