1、 ETSI TS 119 412-3 V1.0.1 (2015-07) Electronic Signatures and Infrastructures (ESI); Certificate Profiles; Part 3: Certificate profile for certificates issued to legal persons TECHNICAL SPECIFICATION ETSI ETSI TS 119 412-3 V1.0.1 (2015-07)2Reference RTS/ESI-0019412-3-TS Keywords electronic signature
2、, IP, profile, security, trust services ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de Grasse (06) N 7803/88 Important notice The pre
3、sent document can be downloaded from: http:/www.etsi.org/standards-search The present document may be made available in electronic versions and/or in print. The content of any electronic and/or print versions of the present document shall not be modified without the prior written authorization of ET
4、SI. In case of any existing or perceived difference in contents between such versions and/or in print, the only prevailing document is the print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that
5、the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at http:/portal.etsi.org/tb/status/status.asp If you find errors in the present document, please send your comment to one of the following services: https:/por
6、tal.etsi.org/People/CommiteeSupportStaff.aspx Copyright Notification No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm except as authorized by written permission of ETSI. The content of the PDF version shall not be modif
7、ied without the written authorization of ETSI. The copyright and the foregoing restriction extend to reproduction in all media. European Telecommunications Standards Institute 2015. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTMand the ETSI logo are Trade Marks of ETSI registered for the benefit o
8、f its Members. 3GPPTM and LTE are Trade Marks of ETSI registered for the benefit of its Members and of the 3GPP Organizational Partners. GSM and the GSM logo are Trade Marks registered and owned by the GSM Association. ETSI ETSI TS 119 412-3 V1.0.1 (2015-07)3Contents Intellectual Property Rights 4g3
9、Foreword . 4g3Modal verbs terminology 4g3Introduction 4g31 Scope 5g32 References 5g32.1 Normative references . 5g32.2 Informative references 5g33 Definitions and abbreviations . 5g33.1 Definitions 5g33.2 Abbreviations . 6g34 Profile requirements . 6g34.1 Generic requirements . 6g34.2 Basic certifica
10、te fields 6g34.2.1 Subject 6g3History 7g3ETSI ETSI TS 119 412-3 V1.0.1 (2015-07)4Intellectual Property Rights IPRs essential or potentially essential to the present document may have been declared to ETSI. The information pertaining to these essential IPRs, if any, is publicly available for ETSI mem
11、bers and non-members, and can be found in ETSI SR 000 314: “Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in respect of ETSI standards“, which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web server (http:/ipr.etsi
12、.org). Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guarantee can be given as to the existence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become, essential to the
13、present document. Foreword This Technical Specification (TS) has been produced by ETSI Technical Committee Electronic Signatures and Infrastructures (ESI). The present document is part 3 of the multipart deliverable covering the Certificates Profiles. Full details of the entire series can be found i
14、n part 1 i.4. Modal verbs terminology In the present document “shall“, “shall not“, “should“, “should not“, “may“, “need not“, “will“, “will not“, “can“ and “cannot“ are to be interpreted as described in clause 3.2 of the ETSI Drafting Rules (Verbal forms for the expression of provisions). “must“ an
15、d “must not“ are NOT allowed in ETSI deliverables except when used in direct citation. Introduction ITU and ISO issued standards for certification of public keys in ITU X.509 | /ISO/IEC 9594-8 i.2 which are used for the security of communications and data for a wide range of electronic applications.
16、 Regulation (EU) No 910/2014 i.3 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC defines requirements on specific types of certificates named “qualified
17、 certificates“. Implementation of Directive 1999/93/EC i.1 and deployment of certificate infrastructures throughout Europe as well as in countries outside of Europe, have resulted in a variety of certificate implementations for use in public and closed environments, where some are declared as qualif
18、ied certificates while others are not. Applications need support from standardized and interoperable identity certificates profiles, in particular when applications are used for electronic signatures, authentication and secure electronic exchange in open environments and international trust scenario
19、s, but also when certificates are used in local application contexts. ETSI TS 119 412-2 2 specifies a profile for certificates issued to natural persons, which provides the basis for this profile for certificates issued to legal persons. The present document aims to maximise the interoperability of
20、systems issuing and using certificates both in the European context under the Regulation (EU) No 910/2014 i.3 and in the wider international environment. ETSI ETSI TS 119 412-3 V1.0.1 (2015-07)51 Scope The present document specifies a certificate profile for certificates issued to legal persons. The
21、 profile defined in the present document builds on requirements defined in ETSI TS 119 412-2 2. The present document supports the requirements of EU qualified certificates as specified in the Regulation (EU) No 910/2014 i.3 as well as other forms of certificate. 2 References 2.1 Normative references
22、 References are either specific (identified by date of publication and/or edition number or version number) or non-specific. For specific references, only the cited version applies. For non-specific references, the latest version of the referenced document (including any amendments) applies. Referen
23、ced documents which are not found to be publicly available in the expected location might be found at http:/docbox.etsi.org/Reference. NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee their long term validity. The following referenced do
24、cuments are necessary for the application of the present document. 1 Recommendation ITU-T X.520 (10/2012): “Information technology - Open Systems Interconnection - The Directory: Selected attribute types“. 2 ETSI TS 119 412-2: “Electronic Signatures and Infrastructures (ESI); Certificate Profiles; P
25、art 2: Certificate Profile for certificates issued to natural persons“. 2.2 Informative references References are either specific (identified by date of publication and/or edition number or version number) or non-specific. For specific references, only the cited version applies. For non-specific ref
26、erences, the latest version of the referenced document (including any amendments) applies. NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee their long term validity. The following referenced documents are not necessary for the applicatio
27、n of the present document but they assist the user with regard to a particular subject area. i.1 Directive 1999/93/EC of the European Parliament and of the Council of 13 December 1999 on a Community framework for electronic signatures. i.2 Recommendation ITU-T X.509/ISO/IEC 9594-8: “Information tech
28、nology - Open Systems Interconnection - The Directory: Public-key and attribute certificate frameworks“. i.3 Regulation (EU) No 910/2014 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market an
29、d repealing Directive 1999/93/EC. i.4 ETSI TS 119 412-1: “Electronic Signatures and Infrastructures (ESI); Certificate Profiles; Part 1: Overview and common data structures“. 3 Definitions and abbreviations 3.1 Definitions For the purposes of the present document, the terms and definitions given in
30、ETSI TS 119 412-1 i.4 apply. ETSI ETSI TS 119 412-3 V1.0.1 (2015-07)63.2 Abbreviations For the purposes of the present document, the abbreviations defined in ETSI TS 119 412-2 2 apply. 4 Profile requirements 4.1 Generic requirements All certificate fields and extensions shall comply with ETSI TS 119
31、 412-2 2 with the amendments specified in the present document. 4.2 Basic certificate fields 4.2.1 Subject The subject field shall include at least the following attributes as specified in Recommendation ITU-T X.520 1: countryName; organizationName; organizationIdentifier; and commonName. Additional
32、 attributes may be present. The countryName attribute shall specify the country in which the subject (legal person) is established. The organizationName attribute shall contain the full registered name of the subject (legal person). The organizationIdentifier attribute shall contain an identificatio
33、n of the subject organization different from the organization name. Certificates may include one or more semantics identifiers as specified in clause 5 of ETSI TS 119 412-1 i.4. The commonName attribute value shall contain a name commonly used by the subject to represent itself. This name needs not be an exact match of the fully registered organization name. ETSI ETSI TS 119 412-3 V1.0.1 (2015-07)7History Document history V1.0.0 June 2015 EN Approval Procedure AP 20151016: 2015-06-18 to 2015-10-16 V1.0.1 July 2015 Publication (same technical content as ETSI EN 319 412-3 V1.0.0)
