Technical information


 

Spanish Law 59/2003 on Electronic Signature in its article 6.1 the following:

“1. An electronic certificate is an electronically signed document by a certification service provider that links a signature verification data to a signatory and confirms its identity.”

Various types of electronic certificates are defined, according to the authorized use and according to the features of the holder of the same. This section provides advanced information on electronic certificates issued by ANF AC.

 

"Stop advertising and start innovating."
 
Seth Godin
 
ANF AC puts value on electronic certificate (patent pending).
 
Electronic certificates are treated as something more than a mere contender of personal filiation and technical keys, they are: 
• a professional accreditation,  
• a legal accreditation, and
• a technical accreditation.
 
The exclusive characteristics of this tool: guarantee of legal and technical security, it has allowed us to include a series of attributes that make them unique in their kind. 
 
Powers of attorney and mandates
 
Spanish Law 59/2003 on Electronic Signature states in its article 11.4, that if the certificate includes a representation relationship, it will include an indication of the public document that faithfully proves the powers of the signatory. This, in reality, results in a mere review of the reference data on empowerment, which is clearly insufficient to determine the scope of those powers, and that makes impossible to include "mandataries", in as much as the mandates are usually private documents. 
 
Only the electronic certificates issued by ANF AC have the capability of associating all the minutes that compose public powers of attorney, or a mandate
 
 
Proprietary Extensions
 
Although it is customary to include proprietary extensions in electronic certificates, the reality is that the information included in them is summarized as brief professional data or personal filiation. 
The proprietary extensions of ANF AC electronic certificates have global reach, including qualitative, professional and business aspects. ANF AC intervenes directly in the taking of evidences, which authenticates and incorporates in the electronic certificate.
 
Interpretable electronic signature / multi-language / mention-exception
 
The electronic certificates of ANF AC are the only ones that have the capability of performing Interpretable Signatures (Intellectual property of ANF AC. Legal Deposit -DL B29364-2005). Main qualities:
• Interpretable to the human eye. Provides security and confidence to the signatory and to the receiving third party.
• It incorporates detailed information of the necessary elements to be used as legal evidence by jurists.
• Smart document. Multi-language in easily selectable layers.
• The only signature that gives the option for the signatory to be able to include as in the paper support, "mentions or exceptions”.
• Possibility of being printed on paper support, without losing the possibility of verification (Graphic marks).
• Capability of including in the signature document, powers of attorney or authenticated mandates.
 
eCommerce in a trusted community “UEXS”
 
All electronic certificate subscribers of ANF AC, by the mere fact of being one, have an exclusive and preferential access in eCommerce platforms.
More information
 
Applications suite

 
All electronic certificate subscribers of ANF AC, by the mere fact of being one, have free access to the Critical Access applications suite, a professional security application unique in its kind.
 
Furthermore, ANF AC's technological companies Cluster, offers a range of professional applications completely interoperable with our electronic certificates.
The certificate must have been recognized by the Spanish Ministry of Industry and Commerce, as enabled to create qualified signatures, and must be listed on its website as such.
 
You can see all certificates recognized by the MITyC at the address:  
 
They are qualified certificates because both the provider that issues them and the content of the certificate, comply with the requirements stated in Chapter II of Spanish Law 59/2003 on Electronic Signature on Recognized Certificates, and Article 28 of the Regulation (EU) 910/2014 of the European Parliament and of the Council on Qualified Certificates of Electronic Signature.
Detailed information of the identity and technical certificates issued by the different ANF AC Hierarchies for the end user.
ANF AC makes available to its customers the following systems:
 
Certificates in Cloud 
Signature creation data custody secure device. This service is specially designed to secure the private key and the electronic certificate, designed to ensure that only its owner exclusively controls the use of its signature creation data (patent pending). in accordance to article 12c and 18a of Spanish Law 59/2003 on Electronic Signature. 
 
The device that secures the signature creation data is certified with ISO 15408 Common Criteria EAL 4+ (or higher), or FIPS 140-2.
 
Secure Signature Creation Device - SSCD
SmartCard, or Token HSM with USB connector 
Device certified in ISO 15408 Common Criteria , EAL 4+ (or higher)
 
Software Token 
Cryptographic token with USB connector
Natural person certificate profile

Electronic certificate issued by ANF AC that its owner with signature verification data and confirms their identity. 
 
It is a certificate in which the subscriber is a natural person. They may incorporate professional data, powers of attorney or mandates granted by natural or legal persons, and proprietary extensions of ANF AC.
 
The representation of third entities before the Public Administration limiting the capacity of access or of representation itself is possible. 
 
Legal representative certificate profile in all its modalities
These certificates allow to offer to a natural person representative of a legal person, the tool of electronic signature, with which to carry out formalities in the name of the represented legal person.
 
The certificate, in addition to identifying the representative natural person as the holder / signatory and attesting its powers of attorney from the represented legal person, includes information on the same, on whose behalf he/she acts. 
 
. These certificates may incorporate professional or business data, powers of attorney or mandates granted by natural or legal persons, and proprietary extensions of ANF AC.
 
 
“The signatory is the person who uses a signature creation device and acts in his own name or on behalf of a natural or legal person that he represents.”
 
Public Employee certificate profile

It is a certificate in which the subject is the public employee of a Public Administration to whom the subscriber with sufficient powers of representation, requests for, the issuance of the certificate to be authenticated in their telematic relations and be used for the generation of electronic signatures as officer, employee, or temporary personnel of the Public administration.
 
 
“The signatory is the person who uses a signature creation device and acts in his own name or on behalf of a natural or legal person that he represents.”
 
RA Operator certificate profile

It is a certificate used by the operators of the Recognized Registration Authorities to electronically sign the documents obtained and processed during the process of requesting certificates, to authenticate electronically with the trusted servers of ANF AC, and to provide electronic certification services of ANF AC to the general public.
 
Issuance Reports Manager and PKI Operator certificate profile

ANF AC, within the framework of its electronic certification service, issues identity certificate of the type:
 
• Issuance Reports Manager Certificate
It is a certificate used by the Issuance Reports Managers (IRM) to electronically sign the issuance acts, other processes associated with its function as IRM and to electronically authenticate with the trusted servers of ANF AC.
 
• PKI Operator Certificate
It is a certificate used by ANF AC staff, or external collaborators, who are authorized to access and make use of the ANF AC systems.
 
Electronic Seal certificate profile in all its modalities
These certificates, in accordance with EU Regulation 910/2014 (Eidas), are an electronic declaration linking the validation data of a stamp, created by a legal person, public law institution, or Public Administration, with that entity, and confirm their name.  
 
The certificate identifies the natural person representing the legal entity and accredits its powers of representation over the legally represented person, and includes the information on it, on its behalf and the action. Recital 65 of the EIDAS determines: 
 
“In addition to authenticating the document issued by the legal person, electronic seals can be used to authenticate any digital asset of the legal person, such as software code or servers.”  
 
Secure Server SSL and Electronic Headquarters certificate profile in all its modalities
• Secure Server SSL
 
The purpose of this certificate is to establish data communications via TLS/SSL in services and computer applications.
 
• Electronic Headquarters
 
The purpose of this certificate is to establish data communications via TLS/SSL in services and computer applications of the Public Administration, body or administrative entity holding the domain.
 
Class 1 OCSP Responder certificate profile
Certificates issued and installed on our servers "OCSP Responder" to sign online validation responses. 
 
 
TimeStamping Unit certificate profile 
Certificates issued and installed on our "TSU" servers to sign electronic time stamps. 
 
Proprietary extensions that ANF AC can introduce into electronic certificates. Our subscribers can propose new extensions that will be analyzed by the Governing Board of the PKI.