FAQ - Signatur
Question: | How can an electronic signature be used permanently, even though the certificate is valid for only a limited period? |
Answer: | An electronic signature can be created during the validity period of the matching certificate. Yet, such a signature can be verified even after certificate expiry. Signature verification is in fact still possible even after the certificate is withdrawn, as long as the time of signature creation can still be determined, or at least narrowed down, based on a time stamp or other characteristics of the signed data. Renewing a certificate prior to expiry is permitted by law. Consequently, signature creation data can be used even after the original certificate has expired. Whether certificates for existing signature creation data are renewed in the specific case, depends on the policy statement of the particular trust service (e.g. the certificate policy and the certification practice statement). On the other hand, modifying the signature creation data is usually not really a problem. Further information can be found by following this link:
|