Trusted List of supervised trust service providers
General information
The present list is the trusted list including information related to the qualified trust service providers which are supervised by Austria, together with information related to the qualified trust services provided by them, in accordance with the relevant provisions laid down in Regulation (EU) No 910/2014 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC.
The cross-border use of electronic signatures has been facilitated through Commission Decision 2009/767/EC of 16 October 2009 which has set the obligation for Member States to establish, maintain and publish trusted lists with information related to certification service providers issuing qualified certificates to the public in accordance with Directive 1999/93/EC of the European Parliament and of the Council of 13 December 1999 on a Community framework for electronic signatures and which are supervised/accredited by the Member States. The present trusted list is the continuation of the trusted list established with Decision 2009/767/EC.
Specific information
In Austria, EU Regulation (EU) No 910/2014 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC (‘eIDAS Regulation’) is implemented through the Signature and Trust Services Act (SVG, Federal Law Gazette I no. 50/2016) and through the ordinances issued on the basis of that Act.
As the supervisory body pursuant to Art. 12 SVG, the Telekom-Control-Kommission (TKK) supervises all trust service providers (TSPs) established in Austria. TSPs are required to comply with the requirements specified in the eIDAS Regulation. Compliance with these requirements is verified by the TKK on the basis of Articles 12 to 15 SVG; in this task the TKK is assisted by the Austrian Regulatory Authority for Broadcasting and Telecommunications (RTR).
RTR is entrusted with the responsibility of maintaining the ‘trusted list’ specified in Art. 22 of eIDAS Regulation (Art. 14 Par. 1 SVG). The trusted list contains information on all qualified TSPs established in Austria and on the trust services provided by those TSPs. Non-qualified TSPs are included in the list on request. RTR makes the trusted list available to the interested public in machine-readable form, specifically in XML format based on ETSI TS 119 612 V2.1.1. The list is updated after any modification and at any rate every six-months.
To certify the seal verification data, which correspond to the seal generation data used by RTR to sign the Austrian trusted list, RTR utilises a public key infrastructure that is based on the RTR Certificate Policy and the Certification Practice Statement; these documents refer for the most part to the supervisory body’s Certification Practice Statement.