Types of Certificates 

 

End-Entity Electronic Certificates

Law 59/2003 on Electronic Signature Article 12, establishes the obligation on the part of the entity issuing recognized certificates, to:
“c) Ensure that the signer has exclusive control over the use of signature creation data corresponding to the verification data contained in the certificate.”
 
 
 
ANF AC makes available to its subscribers a complete range of electronic certificates, intended for different uses 

 

 

Identity Certificates

Electronic certification issued by ANF AC that links to its owner verification data of Signature and confirms its identity. 

It is a certificate in which the subscriber will be an individual. They may incorporate professional data, powers of representation or mandates given by third parties or legal entities.
  • Length of the key: 2048 bits.
  • Signing algorithm SHA-256WithRSAEncryption.
These certificates allow to offer to a physical person representative of a legal person the tool of electronic signature with which to carry out formalities in the name of the represented juridical person.
 
The certificate, in addition to identifying the individual representative as the holder / signatory and accrediting its powers of representation on the legal person represented, includes information on the same, on whose behalf.
  • Length of the key: 2048 bits.
  • Signing algorithm SHA-256WithRSAEncryption.
These certificates, in accordance with EU Regulation 910/2014 (Eidas), are an electronic declaration linking the validation data of a stamp, created by a legal person, with that legal person and confirming the name of that person.
 
The certificate identifies the natural person representing the legal entity and accredits its powers of representation on the represented legal person, and includes information on the same, in whose name acts. Recital 65 of the EIDAS: 

“In addition to authenticating the document issued by the legal entity, electronic seals may be used to authenticate any digital assets of the legal entity, eg software or servers.”
  • Length of the key: 2048 bits.
  • Signing algorithm SHA-256WithRSAEncryption.
The purpose of this certificate is to allow its subscribers to authenticate themselves in their telematic relations and be used for the generation of electronic signatures.
 
This is a certificate in which the subscriber is a Public Administration and the person in charge of the certificate, who is in possession of the signature creation device and acts on behalf of the subscriber, is a member of the Public Administration, whether it be official, employment, temporary or temporary staff.
  • Length of the key: 2048 bits.
  • Signing algorithm SHA-256WithRSAEncryption.
 
The Certification Policy follows the definitions established by the Information Technology and Communications Division (DTIC) in its document "Electronic Certificate Profiles" of April 2016.
Electronic certification issued by ANF AC that links to its owner verification data of Signature and confirms its identity.
 
It is a certificate in which the subscriber will be a natural person, who acts as a Recognized Registration Authority Operator. These certificates incorporate this professional attribute, as well as the ARR Office to which they are attached
  • Length of the key: 2048 bits.
  • Signing algorithm SHA-256WithRSAEncryption.
ANF AC, within the framework of its electronic certification service, issues type certificate of identity:

•    Certificate for Issuance Reports Manager
It is a certificate used by the Issuance Reports Manager (IRM) to electronically sign the emission records, other processes associated with its function as IRM and to authenticate telematically with the trusted servers of ANF AC.
 
•     Certificate for PKI Operator
It is a certificate used by ANF AC staff, or external collaborators, who are authorized to access and make use of ANF AC systems.
  • Length of the key: 2048 bits.
  • Signing algorithm SHA-256WithRSAEncryption.
 
 
Technical Certificates
 
•    SSL Secure Server

 The purpose of this certificate is to establish data communications via TLS / SSL in services and computer applications, especially for:
 
- The identification of the organization holding the domain (DNS), providing a reasonable guarantee to the user of an Internet browser that the website that accesses is owned by the Organization identified in the certificate through its name and address.
- The encryption of communications between the user and the website, facilitating the exchange of encryption keys necessary for the encryption of information over the Internet.
The maximum validity of these certificates is 5 years.

•   SSL Secure Server with Extended Validation (EV)

In addition to the utilities provided by the SSL certificate, Extended Validation (EV) aims to provide a better level of authentication for organizations to secure transactions on their websites.
 
The purpose of SSL EV Certificates is to use them in TLS / SSL protocols in order to guarantee the validity of the constitution of the organization identified in the certificate, avoiding cases of phishing or other cases of online identity fraud.
 
ANF AC complies with the guidelines of the CA / Browser Forum published on its website https://www.cabforum.org, including acceptance of the audit programs specified therein.
 
Following the recommendations of CAB / FORUM, it is established as maximum period of validity 27 months.

•    Electronic Office

The purpose of this certificate is to establish data communications via TLS / SSL in services and computer applications, especially for:
 
- Identification of the Public Administration, administrative body or entity that owns the domain.
- The encryption of communications between the user and the website, facilitating the exchange of encryption keys necessary for the encryption of information over the Internet.
- This is a certificate issued with the legal status of recognized in which identifies the Public Administration, administrative body or entity headquartered.

•     Electronic Office with Extended Validation (EV)

In addition to the utilities provided by the Electronic Headquarters certificate, Extended Validation (EV) aims to provide a better level of authentication by the Public Administration, administrative body or entity to secure transactions on its websites, avoiding phishing or other cases of online identity fraud.
  • Length of the key: 2048 bits.
  • Signing algorithm SHA-256WithRSAEncryption.