Standards Outlined

Print

Third-Party Certifications & Standards Compliance

45 CFR Part 162
HIPAA Administrative Simplification: Standard unique Health Identifier for Health Care Providers; Final Rule

BS7799 – Specification for an Information Security Management System 9subject to environment, perimeter and network security provisions

FIPS 140-2 Level 1,2,3 & 4
Security requirements for Cryptographic Modules that integrate easily with the Digi-CA™ system

PKCS#11compliance [Cryptographic Token Interface Standard]
Specification for an API, called Cryptoki, to devices which hold cryptographic information and perform cryptographic functions

PKCS#12 compliance [Personal Information exchange Syntax Standard
Specification of a portable format for storing or transporting a user's Private Keys, certificates, miscellaneous secrets, etc.

PKCS#15 compliance [Cryptographic Token Information Format Standard]
Standard that enables users to use cryptographic tokens to identify themselves to multiple, standards-aware applications, regardless of the application's cryptoki (or other token interface) provider.

1999/93/EC EU Law
European Legislation for the issuance of EU Qualified Certificates that have legal standing and can be used in a court of law within any EU State

ETSI 101 456
Technical Specification and Policy requirements for Certification Authorities issuing Qualified Certificates

CWA 14167-1
Security Requirements for Trustworthy Systems Managing Certificates for Electronic Signatures - Part 1: System Security Requirements

CWA 14167-2
Security Requirements for Trustworthy Systems Managing Certificates for Electronic Signatures - Part 2: Cryptographic Module for CSP signing operations with backup - Protection profile (CMCSOB-PP)

CWA 14169
Secure Signature-creation devices "EAL 4+"

CWA 14171
General guidelines for electronic signature verification

ETSI 101 862
Qualified Certificate Profile

ETSI 101 861
Qualified Certificate Profile