Digital signatures are now central to how organisations and individuals operate. They underpin critical processes in government, finance, healthcare, and many other sectors, ensuring that contracts, approvals, and transactions can move forward securely and with confidence.
The value of a digital signature lies in its ability to provide assurance that the document or transaction is authentic, that it has not been altered, and that the person signing it is who they claim to be. In short, digital signatures protect both the integrity of information and the identities involved.
For these signatures to be trusted globally, they cannot rely on promises alone. They must be backed by standards that are independently verified and internationally recognised. This is the only way to ensure that a digital signature issued in one country will be legally accepted in another, or that an auditor can confidently verify the trustworthiness of a signing system.
Two of the most important standards in this space are ETSI EN 419 241-2 and ETSI EN 419 221-5. These standards also establish Common Criteria protection profiles that specify the security requirements for both server signing and the cryptographic modules that support it. Together, they establish a trusted framework for how large-scale digital signing should be delivered.
At Ascertia, we’ve played a leading role in advancing these standards. We were the first company worldwide to achieve Common Criteria certification against the EN 419 241-2 protection profile, a milestone that demonstrates both our technical leadership and our long-standing commitment to digital trust.
EN 419 241-2 – Trustworthy systems for server signing
As organisations increasingly move toward remote and centralised signing services, the security of server-based solutions has become more important than ever.
Unlike a smartcard or token that remains physically in the hands of a single user, a server-based signing system must support thousands, or even millions, of users remotely. That scale introduces new challenges – and new responsibilities.
The EN 419 241-2 protection profile was created to address exactly this. It specifies how a Qualified Signature Creation Device (QSCD) for server signing must operate to provide the same level of trust as a locally controlled signing device. This means that even though the signing happens on a central server, the legal and technical assurances remain identical to those offered by personal smartcards.
Ascertia’s ADSS Server SAM Appliance was the first solution in the world to achieve EN 419 241-2 certification. This was more than a technical achievement; it was a validation of our vision for secure, scalable server signing.
Certification confirmed that our solution complies with the highest levels of security and provides the necessary legal assurance under eIDAS, the European regulation that defines standards for electronic identification and trust services.
For our customers, this certification directly translates into confidence. They can deploy large-scale remote signing services across Europe and internationally, knowing their systems are efficient and user-friendly while also being fully compliant with the most stringent trust requirements.
EN 419 221-5 – Protection for cryptographic modules
Behind every QSCD lies the Hardware Security Module (HSM), where the most sensitive operations occur: cryptographic keys are generated, stored, and used for signing. However, due to storage constraints, user keys are not kept directly in the HSM.
Instead, they are securely protected and stored within the SAM Appliance. The SAM also plays a critical role in authenticating users, ensuring that only after successful authentication can a key be securely loaded into the HSM and used for signing. If these keys were ever compromised, the entire trust model would collapse.
The EN 419 221-5 protection profile addresses this risk head-on. It defines the requirements for cryptographic modules used by Trust Service Providers (TSPs), ensuring that all key management operations take place in a secure, tamper-evident environment that has been rigorously tested and independently evaluated.
By only working with HSMs that meet EN 419 221-5, Ascertia guarantees that the foundation of its solutions is as secure and reliable as possible. The Ascertia appliance itself was purpose-built to integrate seamlessly with both internal HSMs and network-based HSMs. It was specifically designed to deliver a highly performant solution, surpassing the limitations of SAM implementations that run within an HSM.
This is not an optional safeguard; it’s a necessary condition for creating a trustworthy server environment. Customers can be assured that their most valuable assets, their signing keys, are always protected to the highest recognised standard.
A combined assurance model
Although EN 419 241-2 and EN 419 221-5 define different layers of the digital signing ecosystem, they are designed to work together.
- EN 419 221-5 (HSMs): Secures the cryptographic core, ensuring the protection of keys and sensitive signing operations.
- EN 419 241-2 (QSCD for Server Signing): Builds on that foundation by defining how the overall signing service must operate in a trustworthy and compliant way.
Together, these two standards create a comprehensive assurance model that extends from the hardware layer all the way up to the user-facing signing service.
For customers, this removes uncertainty. They know that every component in the signing process, from key management to server-based QSCD operations, has been independently evaluated and certified to the highest available standard.
This layered approach is vital. In digital trust, a system is only as strong as its weakest link. By aligning with both standards, Ascertia ensures there are no weak links.
The value for customers and partners
The significance of these certifications goes far beyond the technical details of compliance. They bring tangible benefits to every stakeholder in the trust ecosystem:
- For regulators and auditors: Certifications provide independently verified evidence that systems meet legal and technical requirements. This simplifies audit processes and reinforces confidence in the trustworthiness of services.
- For Trust Service Providers (TSPs): Certified solutions make it possible to deliver qualified trust services that comply fully with eIDAS and equivalent global regulations. This opens the door to offering new, revenue-generating services with confidence.
- For enterprises and governments: Certified QSCDs and HSMs guarantee that their digital signatures are secure, legally binding, and internationally recognised. This means that whether they are signing financial transactions, healthcare records, or government contracts, they can operate with confidence in both local and cross-border contexts.
- For technology partners: Certification offers assurance that Ascertia’s solutions provide a secure, standards-based foundation that can be integrated seamlessly into broader trust ecosystems.
Ultimately, by aligning with EN 419 241-2 and EN 419 221-5, Ascertia delivers confidence that digital transactions are secure, futureproof, and globally trusted.
Shaping the future of digital trust with Ascertia
Certification is not the final destination. It’s a marker of ongoing commitment. Ascertia’s achievement of the world’s first EN 419 241-2 certification demonstrated our leadership in defining how server signing should be delivered. But our role does not stop there.
We continue to contribute actively to the evolution of international standards, ensuring they remain fit for purpose in an environment of rapid technological change. Emerging requirements such as mobile signing, qualified seals, and new identity assurance models demand solutions that are flexible, innovative, and secure.
By choosing Ascertia, customers are not only meeting today’s compliance demands but also preparing for tomorrow’s challenges. We remain committed to delivering solutions that set the benchmark for digital trust, solutions that are recognised, reliable, and ready for the future.
