eIDAS certification

With the European eIDAS regulation (electronic identification and trust services), trust in digital transactionstransactions has become a major issue for the interoperability and security of exchanges throughout the EU (signatures, stamps, electronic time stamping). As a recognized Conformity Assessment Body, LSTI Certification can help you qualify your trust services to guarantee their legal value and strengthen your organization's competitiveness in the digital single market.

What is it?

To perform an advanced electronic signature, an electronic signature certificate must first be obtained. Qualified electronic signature certificates within the meaning of Regulation no. 910/2014 "eIDAS" are issued by Qualified Trusted Service Providers (QTSPs). This European regulation establishes a harmonized legal framework that ensures the mutual recognition and legal equivalence of qualified electronic signatures with handwritten signatures across the European Union. In essence, it establishes the conditions for assessing the conformity of Service Providers and the services they offer (stamps, time stamping, electronic registered mail, etc.) to guarantee their maximum security and unquestionable legal validity.

The challenges of eIDAS certification?

The major challenges of eIDAS certification for customers (Trusted Service Providers) are :

Increased confidence and credibility : Obtaining qualification strengthens the confidence of users and partners in your digital services.
Pan-European recognition: Ensure the legal validity of your services (signatures, stamps, etc.) in all European Union member states.
Regulatory compliance: Meet the strict requirements of European regulations to avoid legal challenges.
Access to public procurement: eIDAS qualification is often required for transactions with European administrations and public bodies.
Secure transactions : guarantee the highest level of security for the identification and integrity of exchanged data.
Process optimization: Facilitate the complete dematerialization of contractual and administrative exchanges.

How does eIDAS certification work?

LSTI is officially listed by the European Commission as a Conformity Assessment Body (CAB) accredited to carry out eIDAS certification audits.

The list of our eIDAS certified auditors is available on our search engine, under the TSP register.

The European eIDAS regulation sets out the requirements to be met by Trust Services providers (TSPs) offering trust services such as electronic signature, website authentication, electronic registered mail, etc. within the internal market.

Qualification of providers is awarded by the supervisory bodies of EU member states. Qualification is granted on the basis of a report drawn up by a conformity assessment body accredited to carry out such assessments.

Which standards are covered by eIDAS certification?

Qualified service providers submit a full audit report to the supervisory body at intervals of no more than two years. These audits are based on the following standards:

EN 319 403: Electronic signatures and infrastructures (ESI) - Assessment of trust service providers - Requirements for conformity assessment bodies assessing trust service providers
EN 319 401: Electronic signatures and infrastructures (ESI) - General policy requirements for trust service providers
EN 319 411-1 : Electronic signatures and infrastructures (ESI) - Policy and security requirements for trust service providers issuing certificates - Part 1: General requirements
EN 319 411-2: Electronic Signatures and Infrastructures (ESI) - Policy and security requirements for Trusted Service Providers issuing Qualified Certificates - Part 2: Requirements for Trusted Service Providers issuing EU Qualified Certificates
EN 319 421: Electronic signatures and infrastructures (ESI) - Policy and security requirements for trust service providers issuing time stamps
EN 319 521: Electronic signatures and infrastructures (ESI) - Policy and security requirements for Electronic Registered Delivery Service Providers
EN 319 531: Electronic signatures and infrastructures (ESI) - Policy and security requirements for Electronic Mail Service Providers
EN 319 102-1: Electronic signatures and infrastructures (ESI) - Procedures for Creation and Validation of AdES Digital Signatures: Part 1: Creation and Validation
EN 319 441: Electronic signatures and infrastructures (ESI) - Policy requirements for TSP providing signature validation services
TS 119 511: Electronic signatures and infrastrucutures (ESI) - Policy and security requirements for TSP long-term preservation of digital signatures or general data using digital signatures techniques
TS 102 640-3 : Electronic Signatures and Infrastructures; Registered Electronic Mail - Part 3: information Security Policy requirements for REM Management Domains

Request a quote

Why choose LSTI?

Recognized expertise

With over twenty years' experience, LSTI supports more than 300 organizations in France and Europe as a certification body and benchmark assessment center in the fields of cybersecurity, digital trust and information security.assessment center, working in the fields of cybersecurity, digital trust and information security.

Specialized auditors

Our teams of auditors are made up of experienced professionals who are fully conversant with the ANSSI's cybersecurity standards, information security management practices and European digital trust frameworks.curity standards, information security management practices and European digital trust frameworks. Their approach guarantees assessments that are demanding, balanced and adapted to the operational contexts of each organization.

Independent third party and dedicated support

Authorized by ANSSI, LSTI guarantees impartiality, transparency and consistency throughout the entire cycle: preparation, audits, monitoring and renewals. A dedicated contact ensures continuity and clarity throughout the certification process.