Riferimenti normativi

Questa lista di riferimenti è ripresa dal capitolo 1.2 delle prescrizioni tecniche e amministrative. Si tratta di collegamenti che facilitano l'acquisizione dei documenti referenziati.






Prescrizioni tecniche e amministrative


ETSI EN 319 411-2 V2.1.1 (2016-02) Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing certificates; Part 2: Requirements for trust service providers issuing EU qualified certificates
ETSI EN 319 412-1 V1.1.1 (2016-02) Electronic Signatures and Infrastructures (ESI); Certificate Profiles; Part 1: Overview and common data structures
ETSI EN 319 412-2 V2.1.1 (2016-02) Electronic Signatures and Infrastructures (ESI); Certificate Profiles; Part 2: Certificate profile for certificates issued to natural persons
ETSI EN 319 412-3 V1.1.1 (2016-02) Electronic Signatures and Infrastructures (ESI); Certificate Profiles; Part 3: Certificate profile for certificates issued to legal persons
ETSI EN 319 412-4 V1.1.1 (2016-02) Electronic Signatures and Infrastructures (ESI); Certificate Profiles; Part 4: Certificate profile for web site certificates
ETSI EN 319 412-5 V2.1.1 (2016-02) Electronic Signatures and Infrastructures (ESI); Certificate Profiles; Part 5: QCStatements
ETSI EN 319 421 V1.1.1 (2016-03) Electronic Signatures and Infrastructures (ESI); Policy and Security Requirements for Trust Service Providers issuing Time-Stamps
ETSI EN 319 422, V1.1.1 (2016-03) Electronic Signatures and Infrastructures (ESI); Time-stamping protocol and time-stamp token profiles


RFC 5280 (mai 2008) Internet X.509 Public Key Infrastructure - Certificate and CRL Profile


FIPS 140-2 (25.5.01), Security Requirements for Cryptographic Modules


CWA 14169 (2004), Secure Signature-Creation Devices "EAL 4+"
CEN/TS 419241:2014 Security Requirements for Trustworthy Systems Supporting Server Signing
EN 419211-2:2013 Protection profiles for secure signature creation device. Part 2: Device with key generation
EN 419211-3:2013 Protection profiles for secure signature creation device. Part 3: Device with key import
EN 419211-4:2014 Protection profiles for secure signature creation device. Part 4: Extension for device with key generation and trusted channel to certificate generation application
EN 419211-5:2014 Protection profiles for secure signature creation device. Part 5: Extension for device with key generation and trusted channel to signature creation application
EN 419211-6:2014 Protection profiles for secure signature creation device. Part 6: Extension for device with key import and trusted channel to signature creation application


ISO/IEC 15408:2005 , Information technology – Security techniques. Evaluation criteria for IT security
ISO/IEC 15408-3:2008 Information technology – Security techniques. Evaluation criteria for IT security —Part 3: Security assurance components



Common PKI Specifications for Interoperable Applications. Version 2.0 – 20 January 2009

https://www.bakom.admin.ch/content/bakom/it/pagina-iniziale/digitale-e-internet/comunicazione_digitale/firma-elettronica/referenza-normalizzazione.html