CoSign by ARX Receives Common Criteria EAL4+ Certification

The certification makes CoSign the first remote signing solution to be fully compliant with the new eIDAS regulation

LONDON, Jul 21, 2014 (BUSINESS WIRE) -- ARX , the global leader in digital signature solutions, is proud to announce that CoSign, its flagship product, has received Common Criteria EAL4+ certification from OCSI, the Italian information security certification organization, after undergoing rigorous testing of hardware and software security at the IMQ laboratory.

With this new certification, CoSign has been officially recognized as a highly secure, centrally managed remote signing device that fully complies with the Italian signature law that will be enforced starting next month. This certification also means that CoSign complies with the principles outlined in the European Union’s recently enacted ‘Electronic Identification and Trust Services for Electronic Transactions in the Internal Market’ (eIDAS) regulation.

Declared the strongest digital signature on the market by Forrester Research, CoSign offers a unique combination of powerful security features: The signature keys are housed in a fully secure Hardware Security Module (HSM) appliance, which also performs the remote signing process, ensuring that each user maintains sole control of his or her keys. In addition, two-factor authentication provides the benefit of an additional layer of security as required by the new eIDAS regulation.

Organizations that previously used smartcards can easily transition to the CoSign remote signing solution, enabling signers across the EU to digitally sign their documents while using the latest technologies. CoSign also allows Trusted Service Providers to offer new services to their customers, such as remote signing capabilities and qualified signatures on a variety of platforms including mobile phones and tablets. The easy-to-deploy CoSign solution will also enable organizations to easily establish internal private TSPs that can generate their own remote qualified signatures.

“We are proud that CoSign is now Common Criteria EAL4+ certified, opening new opportunities for millions of European businesses. As the first remote signing solution to fully comply with the new European eIDAS Regulation, we look forward to playing a significant role in the European transition to the use of secure remote signing,” said Ezer Farhi, VP of R&D at ARX and a member of the CEN and ESTI standardization committees.

Read more about cosign - http://www.marketwatch.com/story/cosign-by-arx-receives-common-criteria-eal4-certification-2014-07-21

Digital Signature Mart are providing All Types of Digital Signature Certificate such as class 2, class 3, and DGFT, Get Digital Signature Certificate by Digital Signature Mart from Delhi, India.

04:25 Share:

Akhilesh Yadav Launches Scheme to Make Offices Paperless

Lucknow: Uttar Pradesh Chief Minister Akhilesh Yadav on Saturday launched a scheme to make secretariat offices "paperless" by obtaining his digital signature.

"It is an important step aimed at not only increasing efficiency and bring transparency in working of departments, but also to turn the concept of green governance into reality," an official release issued in Lucknow said.

With taking a decision to make IT and Electronics department paperless in the first phase, the Chief Minister obtained his digital signature and approved a departmental file using the same, it said.

Using the e-office application developed by NIC, Mr Yadav directed all divisional commissioners and district magistrates that hurdle should not be faced by the people and students in obtaining various government services like certificates.

The Chief Minister said the government was committed for providing services and information to the people near their doorsteps through electronic delivery system, it said.

After making functioning of the Secretariat paperless, the disposal of files would be quick and it could be tracked immediately, Mr Yadav said.
Read more.. http://www.ndtv.com/article/cities/akhilesh-yadav-launches-scheme-to-make-offices-paperless-553538

Digital Signature Mart offers All India Digital Signature Certificate provider in Delhi at very lowest price.

07:42 Share:

Looking into unauthorised digital signature certificates issue: Govt

The government today said it is looking into the matter raised by tech giants Google and Microsoft which have said that the National Information Center (NIC) has issued unauthorized digital certificates.

The Controller of Certifying Authorities issues licenses and regulates the working of Certifying Authorities, who issue digital certificates for electronic authentication of users.

Digital signature certificate is like an electronic passport that allows a person, computer or organization to securely exchange information over the Internet.

When contacted, Department of Electronics and Information Technology Secretary R.S Sharma told PTI: “We are looking into this issue. Certifying Authority (CA) is taking appropriate steps and is working under the guidance of the CCA.”

In a blog post last week, Google said, “On Wednesday, July 2, we became aware of unauthorized digital signature certificates for several Google domains.

“The digital certificates were issued by NIC of India, which holds several intermediate CA certificates trusted by the Indian Controller of Certifying Authorities (India CCA).”

Similarly, Microsoft said it is aware of improperly issued SSL certificates that could be used in attempts to spoof content, perform phishing attacks or perform man-in-the-middle attacks.

“SSL certificates were improperly issued by NIC, which operates subordinate CAs under root CAs operated by Government of India’s Controller of Certifying Authorities, which are CAs present in the Trusted Root Certification Authorities Store,” it added.

Meanwhile, CCA in a post on its website said: “Due to security reasons 3 CA Certificates issued to NICCA have been suspended and the corresponding CRLs have been updated for this purpose. Further updating will be notified.”

Google said it had alerted NIC, India CCA and Microsoft about the incident and blocked the mis-issued certificates in Chrome with a CRLSet push. “On July 3, India CCA informed us that they revoked all the NIC intermediate certificates and another CRLSet push was performed to include that revocation.”

The US-based firm said India CCA informed it about the results of their investigation on July 8.

“They reported that NIC’s issuance process was compromised and that only four certificates were mis-issued, the first on June 25. The four certificates provided included three for Google domains (one of which we were previously aware of) and one for Yahoo domains,” Google added.

Digital certificate provides identifying information, and is forgery resistant and can be verified.

It contains certificate holder’s name, a serial number, expiration dates, a copy of certificate holder’s public key and digital signature of the CA so that a recipient can verify the certificate.

06:11 Share: