Regulation (EU) 910/2014 on electronic identification and trust services for electronic transactions in the internal market (the eIDAS Regulation) came into force on July 1st 2017.
The Regulation requires Trust Service Providers (TSPs) to gain ‘qualified status’. This involves achieving certification from an accredited certification body through an approved scheme, i.e. a certification scheme that has been demonstrated as suitable to assess all of the requirements placed on TSPs by the Regulation.
Qualified status is then granted by the UK Supervisory Authority, the Information Commissioner’s Office (ICO), after checking that all requirements have been met. A detailed description of the approval process is included in the ICO’s guidance document – Achieving ‘qualified status’ and ceasing to provide qualified trust services under the eIDAS Regulation – Information for trust service providers, obtainable through the following link.
UKAS has been working with scheme owners in order to identify schemes that meet the stated requirements for the certification of TSPs. To date the ETSI certification scheme which requires accreditation to ISO/IEC 17065 plus the requirements in ETSI EN 319 403 for the certification of Trust Service Providers has been confirmed as suitable for use with the eIDAS Regulation. For a list of CBs accredited to offer this scheme, and other schemes as they become approved, please use the search facility on the UKAS website – www.ukas.com
UKAS continues to work with scheme owners to bring other existing schemes into line with the requirements of the eIDAS Regulation.
If you have any queries regarding this technical bulletin please raise them through Kevin Belson – UKAS Technical Manager – [email protected]
Download [wpfilebase tag=fileurl id=1329 linktext=’Printable version‘ /] of this Technical Bulletin