Third-Party Certifications & Standards Compliance
45 CFR Part 162
HIPAA Administrative Simplification: Standard unique Health Identifier for Health Care Providers; Final Rule- BS7799 – Specification for an Information Security Management System 9subject to environment, perimeter and network security provisions
- FIPS 140-2 Level 1,2,3 & 4
Security requirements for Cryptographic Modules that integrate easily with the Digi-CA™ system - PKCS#11compliance [Cryptographic Token Interface Standard]
Specification for an API, called Cryptoki, to devices which hold cryptographic information and perform cryptographic functions - PKCS#12 compliance [Personal Information exchange Syntax Standard
Specification of a portable format for storing or transporting a user's Private Keys, certificates, miscellaneous secrets, etc. - PKCS#15 compliance [Cryptographic Token Information Format Standard]
Standard that enables users to use cryptographic tokens to identify themselves to multiple, standards-aware applications, regardless of the application's cryptoki (or other token interface) provider. - 1999/93/EC EU Law
European Legislation for the issuance of EU Qualified Certificates that have legal standing and can be used in a court of law within any EU State - ETSI 101 456
Technical Specification and Policy requirements for Certification Authorities issuing Qualified Certificates - CWA 14167-1
Security Requirements for Trustworthy Systems Managing Certificates for Electronic Signatures - Part 1: System Security Requirements - CWA 14167-2
Security Requirements for Trustworthy Systems Managing Certificates for Electronic Signatures - Part 2: Cryptographic Module for CSP signing operations with backup - Protection profile (CMCSOB-PP) - CWA 14169
Secure Signature-creation devices "EAL 4+" - CWA 14171
General guidelines for electronic signature verification - ETSI 101 862
Qualified Certificate Profile - ETSI 101 861
Qualified Certificate Profile
