Post.Trust retains compliance with the EU Directive 1999/93/EC for eSignatures and the International Standard in Information Security Management ISO 27001. © Post.Trust, 2013.
Post.Trust is a trusted Certification Authority accredited to the International Standard in Information Security Management ISO 27001 and the EU Signatures Directive 1999/93/EC. The company is a member of Microsoft’s Root Certificate Program and has recently been accepted into the global Adobe® Certified Document Services (CDS) Program.
Post.Trust was originally audited against B.S. 7799-2:2002 and I.S. 17799-2:2002 in November 2003 by Certification Europe Ltd. and was successful in attaining certification against these standards. Certification Europe Ltd is itself accredited by the Irish National Accreditation Board (INAB) to carry out audits against these standards. Post.Trust is now accredited to ISO 27001:2005.
Post.Trust awarded certification to the Information Security Management System standards by Certification Europe.VIEW CERTIFICATE
Post.Trust is also certified by Certification Europe as a Certification Service Provider (CSP) to issue advanced electronic signatures supported by qualified certificates which comply with Annex I of Directive 1999/93/EC. This combined accreditation enables Post.Trust to offer services and products compliant with the highest international security standards and the Irish eCommerce Act, 2000.
Post.Trust awarded certification to the EU Directive 1999/93/EC for eSignatures by Certification Europe.
Supervision of Certification Service Providers issuing qualified certificates in Ireland
The Minister for Communications, Energy and Natural Resources is required under section 29(3) of the E-Commerce Act 2000 to prescribe a scheme of supervision of Certification Service Providers (CSPs) established in the state who issue qualified certificates to the public. Regulations (S.I. No.233 of 2010 Electronic Commerce (Certification Service Providers
Supervision Scheme) Regulations 2010) were made by the Minister on 31st May 2010.
These regulations require that CSPs who issue qualified certificates to the public notify the Minister when they commence providing certain E-Commerce sector services and require that they provide evidence annually thereafter that the qualified certificates which they issue to the public meet the requirements of Annex I of the schedule of the E-Commerce Act 2000 and that the Certification Service Provider itself meets the requirements of Annex II of the E-Commerce Act 2000.
Trusted List of Certification Service Providers in Ireland
The Trusted List of a Member State provides a minimum of information on supervised and accredited Certification Service Providers issuing Qualified Certificates in accordance with the provisions laid down in Directive 1999/93/EC (Art. 3.3, 3.2 and Art. 7.1(a)), including information on the Qualified Certificate supporting the electronic signature and whether the signature is or not created by a Secure Signature Creation Device.
Ireland's National Trusted List is established, maintained and published by the Department for Communications, Energy and Natural Resources under SI 233 of 2010.
The objective of the Trusted List is:
- to provide reliable information on the supervision and accreditation status of certification services from Certification Service Providers, who are supervised and accredited by Ireland as compliant with the relevant provisions laid down in Directive 1999/93/EC;
- to facilitate the validation of electronic signatures supported by those listed as supervised and accredited Certification Service Providers.
Post.Trust is one of a few Certification Service Providers listed on the Department for Communications, Energy and Natural Resources website who has notified the minister and proven to be in compliance with Annex II of the eCommerce Act 2000 in the issuing of qualified certificates.
For further information on Ireland’s Trusted List of Certification Service Providers click here for the relevant page on the Department for Communications, Energy and Natural Resources website.
Alternatively, you can access Ireland’s Trusted List directly through the following links:
Machine Readable form of Trusted List (XML)
Human Readable form of Trusted List (PDF)
The top level list referencing the national lists can be found on the European Commission Digital Agenda for Europe web site.
Microsoft Trusted Certificate List Accreditation
Post.Trust's accreditation to the International Standard in Information Security Management ISO 27001 was used in part by Microsoft Corporation in April 2000 to accredit the Post.Trust root certificate against the AICPA/CICA WebTrust SM/TM Program for Certification Authorities. The success of this accreditation resulted in the inclusion of the root certificate in the Microsoft ‘Trusted Root Certificate Authorities’ List (CTL). This root certificate is automatically loaded onto a client PC by uploading trusted root certificates from Microsoft Corporation.