eIDAS digital signature profiles

eIDAS standard can have multiple digital signature profiles. These mean how much proof is embedded into the signature metadata for later validation. Following table contains summary of supported eIDAS digital signature profiles XAdES CAdES PAdES STANDARD BASELINE STANDARD BASELINE STANDARD …

CEF eSignature building block “Hello World”

CEF eSignature building block is very powerful tool. However it is daunting task to get started with it. Because of the complexity most of the smaller development agencies reject all project that has qualified electronic signature component. There are also …

eID technology and credits

Technology Here is listed some of the tools, frameworks and technologies we are working to achieve secure user identification and creating digital signatures. Apache2 web server which has great built in support for Client Certificate Authentication. This means that it …

Are national eID cards violating your privacy?

People are often confusing eID related topics that are not one and the same. Not knowing all the facts makes them scared of their privacy. Lets clarify some questions that I have seen people to be misunderstanding. Using national eID …

How eID card signing works on the web

ID cards are Smart cards with a chip or NFC.  They can be connected to computers or or other devices using a reader with special apps and drivers. Governments are usually providing these drivers, aka “eID Middleware“, to work with …

Let’s fix your DigiDocService problem

If you found this page then chances are that you need to replace your DigiDocService integration immediately with more modern solutions. Unfortunately it is not most trivial task and might cost you decent amount of money and headache. Most companies …

Qualified digital signature not recognized. Missing Root CA certificate

After upgrading to new computer with Ubuntu 20.04 I managed to see such error “1 signature is unknown!”. SignatureXAdES_LTA.cpp:198 Signature validationSignatureXAdES_B.cpp:738 Unable to verify signing certificateX509CertStore.cpp:351 unable to get local issuer certificate:0OCSP.cpp:308 Certificate status: unknown Issue happens because openssl version …