About

General information

Online service ZEP.DISIG.SK operated by private company Disig a.s. allows end users to electronically sign documents and validate documents signed with an electronic signature. The presented solution demonstrates the technological capabilities of Disig QES Portal, which integrates certified applications Disig QES Signer and Disig Web Signer.

Service operates in two independent modes:

  1. in accordance with new eIDAS Regulation
    • Creates signatures accepted in member states of European Union
    • Validates signatures created in member states of European Union
  2. in accordance with the old Slovak Law on electronic signatures
    • Creates signatures accepted by government institutions of Slovak Republic
    • Validates signatures created by government institutions of Slovak Republic

The desired operation mode is selected by the end user when selecting the document for signing or validation.

Several complementary technologies are used in both operation modes, such as qualified electronic time-stamp that adds trusted confirmation of document existence at the time of signing.

EU

Technical details of eIDAS QES operation mode

  • Source of trust information
    • Trusted list (TSL) published by European Commission (current status)
  • Supported formats of unsigned documents
    • PDF, DOC, DOCX, ODT, TXT, XML (plain XML, XMLDataContainer) and RTF documents
    • PNG, GIF, TIFF, BMP and JPG images
  • Supported formats of signed documents / signature containers
    • PDF, XML, CMS, ASiC-S and ASiC-E
  • Supported formats of electronic signatures
    • CAdES (CMS Advanced Electronic Signatures) in formats
      • CAdES-B-B, CAdES-B-T, CAdES-B-LT and CAdES-B-LTA according to ETSI TS 103 173 standard
    • XAdES (XML Advanced Electronic Signatures) in formats
      • XAdES-B-B, XAdES-B-T, XAdES-B-LT and XAdES-B-LTA according to ETSI TS 103 171 standard
    • PAdES (PDF Advanced Electronic Signatures) in formats
      • PAdES-B-B, PAdES-B-T, PAdES-B-LT and PAdES-B-LTA according to ETSI TS 103 172 standard
  • Supported types of signing certificates
    • Qualified certificate for electronic signature issued by a qualified trust service provider registered in a trusted list published by the European Commission
    • Qualified certificate for electronic seal issued by a qualified trust service provider registered in a trusted list published by the European Commission
  • Supported QSCD interfaces
    • PKCS #11: Cryptographic Token Interface Standard
    • Microsoft Crypto API / Cryptographic Service Provider
SK

Technical details of SK ZEP operation mode

  • Source of trust information
    • Trusted list (DZ) published by National Security Authority of the Slovak Republic (current status)
  • Supported formats of unsigned documents
    • PDF, DOC, DOCX, ODT, TXT, XML (plain XML, XML forms, XMLDataContainer) and RTF documents
    • PNG, GIF, TIFF, BMP and JPG images
  • Supported formats of signed documents / signature containers
    • PDF, CMS, ZEPf, xZEP / ZEPx and ASiC-S
  • Supported formats of electronic signatures
    • CAdES (CMS Advanced Electronic Signatures) in formats
      • CAdES-BES, CAdES-EPES, CAdES-T, CAdES-X and CAdES-A according to ETSI TS 101 733 standard
    • XAdES (XML Advanced Electronic Signatures) in formats
      • XAdES-BES, XAdES-EPES, XAdES-T, XAdES-X and XAdES-A according to ETSI TS 101 903 standard
      • XAdES_ZEP with data objects of XML and PDF types and composite electronic signature
    • PAdES (PDF Advanced Electronic Signatures) in formats
      • PAdES-BES, PAdES-EPES, PAdES-T and PAdES-LTV according to ETSI TS 102 778 standard
  • Supported types of signing certificates
    • Qualified certificate issued by Certification Authority accredited by National Security Authority of the Slovak Republic
    • Qualified system certificate issued by Certification Authority accredited by National Security Authority of the Slovak Republic
  • Supported SSCD interfaces
    • PKCS #11: Cryptographic Token Interface Standard
    • Microsoft Crypto API / Cryptographic Service Provider