09 Apr Asseco provides innovative
Asseco Data Systems, as the first company in Poland, has integrated the qualified electronic signature validation service with the newly audited qualified maintenance service. This will enable clients to additionally secure their signed and sealed electronic documents over a long period of time and adjust them to formal and legal requirements. At the same time, the maintenance service guarantees the constant updating of cryptographic algorithms to ensure the highest level of security.
An electronic signature, unlike a handwritten signature, is not perpetual. Most often e-documents are signed and verified within the validity period of the qualified certificate. Sometimes, however, a document is signed electronically, but by the time of its verification the certificate with which the signature was made has expired, making the verification of compliance impossible. To avoid this, qualified e-document maintenance is used, owing to which certificates are periodically updated and extend the reliability of the e-signature. Qualified validation and maintenance services complement the entire life cycle of an electronic document, from the moment of e-signature to long-term archiving, while ensuring complete security. Responsibility and legal consequences are assumed by Asseco Data Systems, which is subject to periodic external audits, thereby guaranteeing that, if the “strength” of applied cryptographic algorithms is lost, they will be upgraded using newer, stronger techniques.
“Expanding our offer with such an innovative service as the qualified maintenance of e-documents is a response to emerging needs. The introduction of modern solutions, which are increasingly more widely practiced in the West, gives our customers the opportunity to use fully available trust services from a single provider. Qualified maintenance ensures in the long term the authenticity and legal validity of the qualified electronic signature associated with a specific document content. It safeguards the evidence of qualified validation and the integrity of the signed content both formally and legally and by increasing the level of cryptographic security. From a technical point of view, it involves time-stamping of previously collected evidence from a qualified validation activity, which is a step preceding maintenance,” said Marcin Szulga, R&D Director at the Security and Trust Services Division of Asseco Data Systems.
Asseco Data Systems, as the first and only trust service provider in Poland, has passed the eIDAS compliance audit for qualified maintenance of qualified electronic signatures. This is a periodic audit, as a result of which the issued certificate attests the level of cyber security, which must be kept up-to-date and adapted to the latest requirements. Under Article 34 of the eIDAS Regulation, trust services can only be provided by a provider that has procedures and technologies in place to extend the trustworthiness of a qualified electronic signature beyond its technical validity period.