eIDAS

Security Framework for Qualified Trust Service Providers

This document proposes a security framework to achieve compliance with Article 19 of the eIDAS Regulation, to which both non-QTSP and QTSP are subject. Nevertheless, Article 19.1 states that the security measures “shall ensure that the level of security is commensurate to the degree of risk”. to achieve compliance with Article 19 (valid for both, QTSPs and non-QTSPs), this series of documents recommend that the level of security implemented by non-QTSP, expected to follow ‘best practices’ when operating with due diligence, is equivalent to the one of QTSP. For this reason, the security practices applied by QTSPs are also relevant to – and can also be followed by – non-QTSPs.

Published: March 11, 2021
Language: English

Recommended publications

NIS Investments 2024

This report aims at providing policy makers with evidence to assess the effectiveness of the existing EU cybersecurity framework specifically through...

Published on November 21, 2024
Remote ID Proofing - Good practices

Published on March 12, 2024
Trust Services-Secure move to the cloud of the eIDAS...

Published on June 12, 2023
Digital Identity: Leveraging the SSI Concept to Build Trust

Published on January 20, 2022