TryTRY
BuyBUY
  • newsletter
  • contact
  • corporate
  • careers
Utimaco
de
TRYour free HSM simulator
BUYget a quote
  • home
  • solutions
  • products
  • services
  • blog
  • downloads
  • partners
  • company

Utimaco Portal

Here you will find everything you need as a partner and customerLogin required

  • home
  • solutions
    • industries
      • banking and financial services
        • acquirer
        • card scheme
        • issuer
        • hsm-as-a-service
      • government
        • federal government
      • cloud
        • cloud-based innovation
        • multi-cloud agility
        • building trust in the cloud
      • connected car (V2V)
      • automotive solutions
      • road infrastructure (V2I), toll collection & ITS
      • industrial IoT & manufacturing
      • energy & utilities
      • lottery & gaming
      • media & entertainment
      • telecommunications
    • applications
      • authentication
      • blockchain
      • code signing
      • database encryption
        • the keys to building a platform of trust in cryptography
      • document signing
      • key injection
      • post-quantum crypto agility
      • public key infrastructure (PKI)
        • EJBCA
      • random number generator (RNG)
    • compliance
      • certifications & approvals
        • Common Criteria (CC)
        • FIPS 140-2
      • compliance & standardization
        • FISMA, FedRAMP, and FICAM
        • Certificate Policy of the Smart Metering PKI
        • eIDAS
        • GDPR
        • PCI DSS
        • Privacy Shield
  • products
    • general purpose HSM
      • SecurityServer Se Gen2
      • SecurityServer CSe
      • Block-safe
      • CryptoServer CP5 (eIDAS & CC)
      • CryptoServer Cloud
      • TimestampServer
      • Q-safe
    • payment HSM
      • Atalla AT1000
      • PaymentServer Se Gen2
      • PaymentServer CSe
      • Secure Configuration Assistance (SCA)
      • QuickStart Services
      • u.cloud – Atalla PaymentHSMaaS
    • key management
      • Enterprise Key Management
    • Software Development Kit (SDK)
      • CryptoServer SDK
      • CryptoScript SDK
    • HSM simulators
      • Block-safe HSM simulator
      • CryptoServer CP5 simulator (eIDAS & CC)
      • SecurityServer simulator
      • Q-safe HSM simulator
    • form factor
      • LAN appliance
      • PCIe card
      • cloud, “HSM as a Service”
    • KeyBRIDGE
      • KeyBRIDGE POI
      • KeyBRIDGE RKD
      • KeyBRIDGE eKMS
      • TokenBRIDGE™
    • u.trust Anchor
      • u.trust Anchor CSAR
      • u.trust Anchor High Performance HSM
    • u.trust 360
  • services
    • consultancy
      • PQC consultancy
    • support
    • managed services
      • Key Exchange & Escrow Service (KEES™)
    • professional services
    • Utimaco Academy
  • blog
  • downloads
    • brochures
    • data sheets
    • case studies
    • white papers
    • webinars
    • e-books
      • PQC for Dummies e-book
      • HSM for Dummies e-book
    • Utimaco Portal
      • integration guides
      • knowledge base
  • partners
    • Partner Program
      • technology partner
    • Partner Locator
  • company
    • about Utimaco
      • legal
      • terms & conditions
      • privacy
        • cookie-policy
    • locations
    • news
      • newsletter
    • events
    • contact
    • careers
    • investors
    • utimaco management
    • business ethics
    • memberships and certifications
    • engagement in research
  • home
  • solutions
    • industries
      • banking and financial services
        • acquirer
        • card scheme
        • issuer
        • hsm-as-a-service
      • government
        • federal government
      • cloud
        • cloud-based innovation
        • multi-cloud agility
        • building trust in the cloud
      • connected car (V2V)
      • automotive solutions
      • road infrastructure (V2I), toll collection & ITS
      • industrial IoT & manufacturing
      • energy & utilities
      • lottery & gaming
      • media & entertainment
      • telecommunications
    • applications
      • authentication
      • blockchain
      • code signing
      • database encryption
        • the keys to building a platform of trust in cryptography
      • document signing
      • key injection
      • post-quantum crypto agility
      • public key infrastructure (PKI)
        • EJBCA
      • random number generator (RNG)
    • compliance
      • certifications & approvals
        • Common Criteria (CC)
        • FIPS 140-2
      • compliance & standardization
        • FISMA, FedRAMP, and FICAM
        • Certificate Policy of the Smart Metering PKI
        • eIDAS
        • GDPR
        • PCI DSS
        • Privacy Shield
  • products
    • general purpose HSM
      • SecurityServer Se Gen2
      • SecurityServer CSe
      • Block-safe
      • CryptoServer CP5 (eIDAS & CC)
      • CryptoServer Cloud
      • TimestampServer
      • Q-safe
    • payment HSM
      • Atalla AT1000
      • PaymentServer Se Gen2
      • PaymentServer CSe
      • Secure Configuration Assistance (SCA)
      • QuickStart Services
      • u.cloud – Atalla PaymentHSMaaS
    • key management
      • Enterprise Key Management
    • Software Development Kit (SDK)
      • CryptoServer SDK
      • CryptoScript SDK
    • HSM simulators
      • Block-safe HSM simulator
      • CryptoServer CP5 simulator (eIDAS & CC)
      • SecurityServer simulator
      • Q-safe HSM simulator
    • form factor
      • LAN appliance
      • PCIe card
      • cloud, “HSM as a Service”
    • KeyBRIDGE
      • KeyBRIDGE POI
      • KeyBRIDGE RKD
      • KeyBRIDGE eKMS
      • TokenBRIDGE™
    • u.trust Anchor
      • u.trust Anchor CSAR
      • u.trust Anchor High Performance HSM
    • u.trust 360
  • services
    • consultancy
      • PQC consultancy
    • support
    • managed services
      • Key Exchange & Escrow Service (KEES™)
    • professional services
    • Utimaco Academy
  • blog
  • downloads
    • brochures
    • data sheets
    • case studies
    • white papers
    • webinars
    • e-books
      • PQC for Dummies e-book
      • HSM for Dummies e-book
    • Utimaco Portal
      • integration guides
      • knowledge base
  • partners
    • Partner Program
      • technology partner
    • Partner Locator
  • company
    • about Utimaco
      • legal
      • terms & conditions
      • privacy
        • cookie-policy
    • locations
    • news
      • newsletter
    • events
    • contact
    • careers
    • investors
    • utimaco management
    • business ethics
    • memberships and certifications
    • engagement in research

Home / News / Utimaco HSM first to be Common Criteria EAL4+-certified according to eIDAS Protection Profile EN 419 221-5

Utimaco HSM first to be Common Criteria EAL4+-certified according to eIDAS Protection Profile EN 419 221-5

October 09, 2018
  • Companies can now rely on Utimaco’s CryptoServer CP5 HSM to comply with European eIDAS regulation for digital signatures, seals and timestamps
  • Certification according to eIDAS Protection Profile EN 419 221-5 opens up new business opportunities for Utimaco and its partners
  • Dedicated Utimaco CryptoServer CP5 simulator available for evaluation and integration testing

Find us on the official Common Criteria portal!

Aachen, October 9th 2018 – Utimaco, a leading manufacturer of Hardware Security Module (HSM) technology, received the Common Criteria (CC) EAL4+ certification for its CryptoServer CP5 HSM based on the eIDAS Protection Profile EN 419 221-5. CryptoServer CP5 is the first HSM in the market with a CC certification based on this protection profile, making it a future-proof choice for eIDAS trust services. These include local and remote electronic signing and sealing, issuing of certificates, website authentication and timestamping. For application development and regression testing, Utimaco offers a dedicated CryptoServer CP5 HSM simulator to prospects and customers.

eIDAS Protection Profile EN 419 221-5 “Cryptographic Module for Trust Services”

The German hardware security specialist was engaged with and contributed to the creation of the security requirements and protection profiles within the Technical Committee 224, Working Group 17 of the European Committee for Standardization (CEN).

Protection profiles (PP) according to the Common Criteria certification scheme define the requirements for information technology security functions. The eIDAS Protection Profile EN 419 221-5 was certified by an accredited evaluation laboratory in late 2017 and approved by the EU member states earlier this year. With this Protection Profile, CEN standardizes security requirements for cryptographic modules being used as Qualified Signature Creation Device (QSCD) according to the eIDAS regulation.

eIDAS trust services supported by Utimaco HSM

Overview of eIDAS use cases supported by the certified Utimaco CryptoServer CP5 HSM

Certified security for a wide range of use cases

The principal aim of the eIDAS regulation is to facilitate a true digital single market in Europe. The related services for electronic identification and trust services lend themselves to a variety of use cases. These include

  • strong website authentication and qualified certificates for sealing communications based on the new PSD2 regulation for the banking and financial services industry,
  • electronic seals for businesses to prove the origin and integrity of data and documents issued by them,

electronic signatures created either locally by the signatory, or remotely by a Trust Service Provider (TSP) on behalf of the signatory. In the latter case, this involves a Signature Activation Module (SAM) supported by a Hardware Security Module to build a Qualified Signature Creation Device for server signing.

New business opportunities with existing and new partners

For Utimaco business partners, this recent certification opens up a wide range of business opportunities, among which remote signing solutions. German-based IT service provider Bank-Verlag, together with software developer achelos and Utimaco, is developing a Signature Activation Module for banking applications. The service enables bank customers to generate online signatures remotely and speeds up and simplifies processes such as signing contracts, opening an account or issuing insurance policies. Ascertia, a global provider of digital signature creation and verification solutions, will be using the Utimaco CP5 HSM within its ADSS SAM Appliance, a remote QSCD currently undergoing CC EAL4+ certification against EN 419 241-2. There is great market interest in the powerful combination of Ascertia software working with Utimaco HSMs to deliver eIDAS compliant remote signing.

“With eIDAS, the European Commission is looking to stimulate the digital market in Europe,” says Malte Pollmann, CEO of Utimaco. “Being the first vendor certified according to Protection Profile EN 419 221-5, Utimaco helps pave the way for compliant and highly secure trust services. These ambitions are reflected in a number of current and upcoming partner projects.”

Proof of concept with the CryptoServer CP5 simulator

Several companies have already made use of the CryptoServer CP5 simulator for testing purposes in the past months. One of these is Halcom, a provider for digital banking solutions based in Slovenia. Having extensively tested the CP5 HSM’s functionalities with the help of the simulator, Halcom is now able to kick-start the implementation of CryptoServer CP5 into its solution and provide its customers with both secure and compliant trust services.

Luka Ribičič, Head of Halcom-CA, notes: “To be able to offer our clients eIDAS-compliant solutions, cooperating with a trustworthy HSM provider was crucial. The CryptoServer CP5 simulator as well as the affordable price point were key factors in our decision for Utimaco.”

Utimaco_Simulator_eIDAS_Common_Criteria

About Utimaco

Utimaco is a leading manufacturer of Hardware Security Modules (HSMs) that provide the Root of Trust to many industries, from financial services and payment to the automotive industry, cloud services and the public sector. We keep cryptographic keys and digital identities safe protecting your critical digital infrastructures and high value data assets. Our products enable innovation and support the creation of new business by helping to secure critical business data and transactions. Founded in 1983, today Utimaco HSMs are deployed across more than 80 countries in more than 1,000 installations. Utimaco employs a total of 200 people, with sales offices in Germany, the US, the UK and Singapore. For more information, visit https://hsm.utimaco.com/.

Follow us: LinkedIn, Twitter and Youtube.

Contact:
Utimaco
Alexandra Guennewig
Germanusstraße 4
52080 Aachen
Phone: +49 241 1696-200
E-Mail: pr@utimaco.com
Contact Agency:
Akima Media
Jan Gutheil
Garmischer Str. 8
80339 München
Phone: +49 89 959 18-0
E-Mail: utimaco@akima.de
Back to overview

Stay on top of our news
Don’t miss out on any Utimaco updates

Partners

EUROPEAN DYNAMICS SA. Envoy Data Corporation - Utimaco Hardware Security Modules Partner Secure Source Distribution (M) Sdn Bhd - Utimaco Hardware Security Modules Partner Utimaco HSM - InfoGuard Swiss Cyber Security Macroseguridad CREA plus d.o.o. AKEA S.A. - Utimaco Hardware Security Modules Partner Altacom UAB Ascertia - Utimaco Hardware Security Modules Partner Perceptus-sp.-z-o.-o. CEGA Security SecureMetric Technology Sdn. Bhd. Clearkey Consulting - Utimaco Hardware Security Modules Partner Compumatica secure networks GmbH Safesoft Kft. Primekey Solutions AB Thomas-Krenn.AG Nexus - Utimaco Hardware Security Modules Partner Baas Control s.r.o. MALKOM D.Malińska i Wspólnicy s.j. Encryption Consulting LLC Astel (UK) Ltd. - Utimaco Hardware Security Modules Partner PrimeKey Labs GmbH Synergy Computers (Pvt.) Ltd. - Utimaco Hardware Security Modules Partner Skytech Computing Solutions Limited. - Utimaco Hardware Security Modules Partner Utimaco HSM - QuintessenceLabs Telegrupp AS Nexus Technology GmbH Versasec Abrantix AG CewTec S.A. JJNet International Co., Limited - Utimaco Hardware Security Modules Partner Real security d.o.o. Fornetix - Utimaco Hardware Security Modules Partner MIcrosec E-Sign S.A. ESYSCO Sp. z o.o. Cryptomathic A/S Softline Solutions GmbH VAR Group SpA - Utimaco Hardware Security Modules Partner Microexpert Limited Throughwave (Thailand) Co.,Ltd - Utimaco Hardware Security Modules Partner IQuantics Corp Utimaco HSM - PTESA_profesionales en transacciones electronicas cv cryptovision GmbH Cryptomathic GmbH Nexus - Utimaco Hardware Security Modules Partner Komar Consulting Inc. - Utimaco Hardware Security Modules Partner intarsys AG MTG - Utimaco Hardware Security Modules Partner Rohde & Schwarz Cybersecurity GmbH CertiSur S.A. PETA (Thailand) Co., Ltd. Cyber Armor Pte Ltd Cogito Group Pty Ltd Compumatica secure networks B.V. CREAplus Italia S.r.l Fortiedge Pte Ltd. Cryptomathic Inc. PKI Solutions Inc.
Find a partner

Share this page

EMEA

Utimaco IS GmbH
Germanusstraße 4
52080 Aachen
Germany
Phone: + 49 241 1696 200

Americas

Utimaco Inc.
900 E Hamilton Ave., Suite 400
Campbell, CA 95008
USA
Phone: +1 844 UTIMACO

APAC

Utimaco IS Pte Limited
80 Raffles Place,
#32-01, UOB Plaza
Singapore 048624
Phone: +65 6622 5347

Utimaco

  • support
  • corporate
  • careers
  • legal
  • terms & conditions
  • privacy
  • cookie-policy
© 2021
to top
  • home
  • solutions
    • industries
      • banking and financial services
        • acquirer
        • card scheme
        • issuer
        • hsm-as-a-service
      • government
        • federal government
      • cloud
        • cloud-based innovation
        • multi-cloud agility
        • building trust in the cloud
      • connected car (V2V)
      • automotive solutions
      • road infrastructure (V2I), toll collection & ITS
      • industrial IoT & manufacturing
      • energy & utilities
      • lottery & gaming
      • media & entertainment
      • telecommunications
    • applications
      • authentication
      • blockchain
      • code signing
      • database encryption
        • the keys to building a platform of trust in cryptography
      • document signing
      • key injection
      • post-quantum crypto agility
      • public key infrastructure (PKI)
        • EJBCA
      • random number generator (RNG)
    • compliance
      • certifications & approvals
        • Common Criteria (CC)
        • FIPS 140-2
      • compliance & standardization
        • FISMA, FedRAMP, and FICAM
        • Certificate Policy of the Smart Metering PKI
        • eIDAS
        • GDPR
        • PCI DSS
        • Privacy Shield
  • products
    • general purpose HSM
      • SecurityServer Se Gen2
      • SecurityServer CSe
      • Block-safe
      • CryptoServer CP5 (eIDAS & CC)
      • CryptoServer Cloud
      • TimestampServer
      • Q-safe
    • payment HSM
      • Atalla AT1000
      • PaymentServer Se Gen2
      • PaymentServer CSe
      • Secure Configuration Assistance (SCA)
      • QuickStart Services
      • u.cloud – Atalla PaymentHSMaaS
    • key management
      • Enterprise Key Management
    • Software Development Kit (SDK)
      • CryptoServer SDK
      • CryptoScript SDK
    • HSM simulators
      • Block-safe HSM simulator
      • CryptoServer CP5 simulator (eIDAS & CC)
      • SecurityServer simulator
      • Q-safe HSM simulator
    • form factor
      • LAN appliance
      • PCIe card
      • cloud, “HSM as a Service”
    • KeyBRIDGE
      • KeyBRIDGE POI
      • KeyBRIDGE RKD
      • KeyBRIDGE eKMS
      • TokenBRIDGE™
    • u.trust Anchor
      • u.trust Anchor CSAR
      • u.trust Anchor High Performance HSM
    • u.trust 360
  • services
    • consultancy
      • PQC consultancy
    • support
    • managed services
      • Key Exchange & Escrow Service (KEES™)
    • professional services
    • Utimaco Academy
  • blog
  • downloads
    • brochures
    • data sheets
    • case studies
    • white papers
    • webinars
    • e-books
      • PQC for Dummies e-book
      • HSM for Dummies e-book
    • Utimaco Portal
      • integration guides
      • knowledge base
  • partners
    • Partner Program
      • technology partner
    • Partner Locator
  • company
    • about Utimaco
      • legal
      • terms & conditions
      • privacy
        • cookie-policy
    • locations
    • news
      • newsletter
    • events
    • contact
    • careers
    • investors
    • utimaco management
    • business ethics
    • memberships and certifications
    • engagement in research