欧洲中央银行决定(EU) 2016/187,修订决定ECB/2013/1,该决定关于为欧洲中央银行体系的公钥基础设施制定框架(ECB/2015/46)

技术法规类型:欧盟Eurlex法规 来源:tbtmap

EURLEX ID:32015D0046

OJ编号:OJ L 37, 12.2.2016, p. 100-103

中文标题:欧洲中央银行决定(EU) 2016/187,修订决定ECB/2013/1,该决定关于为欧洲中央银行体系的公钥基础设施制定框架(ECB/2015/46)

原文标题:Decision (EU) 2016/187 of the European Central Bank of 11 December 2015 amending Decision ECB/2013/1 laying down the framework for a public key infrastructure for the European System of Central Banks (ECB/2015/46)

分类:01.40.95_欧洲中央银行系统

文件类型:二级立法 Decision|决定

生效日期:2016-02-15

废止日期:2058-12-31

法规全文:查看欧盟官方文件

L_2016037EN.01010001.xml

12.2.2016   

EN

Official Journal of the European Union

L 37/100

DECISION (EU) 2016/187 OF THE EUROPEAN CENTRAL BANK

of 11 December 2015

amending Decision ECB/2013/1 laying down the framework for a public key infrastructure for the European System of Central Banks (ECB/2015/46)

THE GOVERNING COUNCIL OF THE EUROPEAN CENTRAL BANK,

Having regard to the Treaty on the Functioning of the European Union, and in particular Article 127 thereof,

Having regard to the Statute of the European System of Central Banks and of the European Central Bank, and in particular Article 12.1 in conjunction with Article 3.1, Article 5, Article 12.3 and Articles 16 to 24 and 34 thereof,

Whereas:

(1)

Regulation (EU) No 910/2014 of the European Parliament and of the Council (1) has repealed Directive 1999/93/EC of the European Parliament and of the Council (2) with effect from 1 July 2016. Therefore, it is appropriate to refer to Regulation (EU) No 910/2014 in Decision ECB/2013/1 (3).

(2)

Information concerning the ESCB-PKI certification authority, including its identity and its technical components, as set out in the Annex to Decision ECB/2013/1, needs to be updated.

(3)

Therefore, Decision ECB/2013/1 should be amended accordingly,

HAS ADOPTED THIS DECISION:

Article 1

Amendments

Decision ECB/2013/1 is amended as follows:

(1)

in Article 1, point 10 is replaced by the following:

‘10.

“ESCB-PKI certification authority” means the entity, trusted by users, to issue, manage, revoke and renew ESCB-PKI certificates in accordance with the ESCB/SSM certificate acceptance framework;’;

(2)

in Article 4, paragraph 4 is replaced by the following:

‘4.   The ESCB-PKI certification practice statement is a set of rules governing the life cycle of electronic certificates, from the initial request to the subscription end or revocation, as well as the relationships between the certificate applicant or subscriber, the ESCB-PKI certification authority and the relying parties. It covers certificates falling under the scope of Directive 1999/93/EC and Regulation (EU) No 910/2014 of the European Parliament and of the Council (4) and certificates falling outside their scope. It also sets out the roles and responsibilities of all parties and establishes the procedures concerning issuing and managing certificates. It is annexed to the Level 2 — Level 3 Agreement.

(4)  Regulation (EU) No 910/2014 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC (OJ L 257, 28.8.2014, p. 73).’;"

(3)

in Article 10, the introductory statement and point (a) of paragraph 1 are replaced by the following:

‘1.   Unless they prove that they have not acted negligently, the Eurosystem central banks shall be liable in accordance with their functions and responsibilities in the ESCB-PKI for any damage caused to a user who reasonably relies on a qualified certificate, as defined in Directive 1999/93/EC and Regulation (EU) No 910/2014, as regards:

(a)

the accuracy at the time of issuance of all the information contained in a qualified certificate, and the question of whether the certificate contains all the details prescribed for a qualified certificate as defined in Directive 1999/93/EC and Regulation (EU) No 910/2014;’;

(4)

the Annex is replaced by the Annex to this Decision.

Article 2

Entry into force

This Decision shall enter into force on the third day following that of its publication in the Official Journal of the European Union.

Done at Frankfurt am Main, 11 December 2015.

The President of the ECB

Mario DRAGHI

(1)  Regulation (EU) No 910/2014 of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC (OJ L 257, 28.8.2014, p. 73).

(2)  Directive 1999/93/EC of the European Parliament and of the Council of 13 December 1999 on a Community framework for electronic signatures (OJ L 13, 19.1.2000, p. 12).

(3)  Decision ECB/2013/1 of the European Central Bank of 11 January 2013 laying down the framework for a public key infrastructure for the European System of Central Banks (OJ L 74, 16.3.2013, p. 30).

ANNEX

‘ANNEX

Information concerning the ESCB-PKI certification authority, including its identity, and its technical components

The ESCB-PKI certification authority is identified in its certificate as the issuer and its private key is used to sign certificates. The ESCB-PKI certification authority is in charge of:

(i)

issuing private and public key certificates;

(ii)

issuing revocation lists;

(iii)

generating key pairs associated with specific certificates, e.g. those that require key recovery;

(iv)

maintaining overall responsibility for the ESCB-PKI and ensuring that all the requirements necessary to operate it are met.

The ESCB-PKI certification authority includes all individuals, policies, procedures and computer systems entrusted with issuing electronic certificates and assigning them to the certificate subscribers.

The ESCB-PKI certification authority includes two technical components:

The Root ESCB-PKI certification authority: This certification authority, at the first level, only issues certificates for itself and its subordinate certification authorities. It is only in operation when carrying out its own narrowly-defined responsibilities. Its most significant data are:

a)

SHA-1 certificate (1):

Distinguished name

CN=ESCB-PKI ROOT CA, O=EUROPEAN SYSTEM OF CENTRAL BANKS, C=EU

Serial number

596F AC4C 218C 21BC 4E00 6B42 A164 46DD

Distinguished name of issuer

CN=ESCB-PKI ROOT CA, O=EUROPEAN SYSTEM OF CENTRAL BANKS, C=EU

Validity period

From 21-06-2011 11:58:26 to 21-06-2041 11:58:26

Message digest (SHA-1)

CEFE 6C32 E850 994A 09EA 1A77 0C60 3D90 ADC9 9192

Message Digest (SHA-256)

C919 CF49 C024 7E50 2E0C C3C9 81E0 FB88 A013 AA2B 15C9 5142 F491 BDE7 E403 E3FB

Cryptographic algorithms

SHA-1/RSA 4096

b)

SHA-256 certificate:

Distinguished name

CN=ESCB-PKI ROOT CA, O=EUROPEAN SYSTEM OF CENTRAL BANKS, C=EU

Serial number

4431 9C5F 91E8 162F 4E00 73F6 6AB8 71D8

Distinguished name of Issuer

CN=ESCB-PKI ROOT CA, O=EUROPEAN SYSTEM OF CENTRAL BANKS, C=EU

Validity period

From 21-06-2011 12:35:34 to 21-06-2041 12:35:34

Message digest (SHA-1)

3663 2FBA FB19 BDBC A202 3994 1926 ED48 4D72 DD4B

Message Digest (SHA-256)

7963 2A97 1D12 A889 9724 BB35 C37B 51D2 3E21 4DF9 20C3 2450 093E 0EA7 49FB AAEB

Cryptographic algorithms

SHA-256/RSA 4096

The Online ESCB-PKI certification authority: This certification authority, at the second level, is subordinate to the Root ESCB-PKI certification authority. It is responsible for issuing ESCB-PKI certificates for users. Its most significant data are:

a)

SHA-1 certificate (2):

Distinguished name

CN= ESCB-PKI ONLINE CA, O=EUROPEAN SYSTEM OF CENTRAL BANKS, C=EU

Serial number

2C13 E18F FDB5 91CE 4E9 550B B5A3 F59C

Distinguished name of issuer

CN=ESCB-PKI ROOT CA, O=EUROPEAN SYSTEM OF CENTRAL BANKS, C=EU

Validity period

From 22-07-2011 12:46:35 to 22-07-2026 12:46:35

Message digest (SHA-1)

D316 026C D2CF 1A8C 4AA3 8C29 EE3D 591E 4286 AD08

Message Digest (SHA-256)

4B18 7644 BF79 4F83 D000 999D 7927 433F 75F3 CFB1 643A 6D0F 8A25 9435 BE86 1B7A

Cryptographic algorithms

SHA-1/RSA 4096

b)

SHA-256 certificate:

Distinguished name

CN= ESCB-PKI ONLINE CA, O=EUROPEAN SYSTEM OF CENTRAL BANKS, C=EU

Serial number

660C 9B12 9A0A 6C21 5509 38DD 54A0 ED2D

Distinguished name of Issuer

CN=ESCB-PKI ROOT CA, O=EUROPEAN SYSTEM OF CENTRAL BANKS, C=EU

Validity period

From 22-07-2011 12:46:35 to 22-07-2026 12:46:35

Message digest (SHA-1)

E976 D216 4A5F 62DA C058 6BE0 EC10 EF24 36B8 12AC

Message Digest (SHA-256)

1335 26DC 99E9 CC36 62F8 F5FA 2006 3005 BA90 E663 2BF3 4F18 A84B A39B 5FAA 5700

Cryptographic algorithms

SHA-256/RSA 4096’

(1)  This certificate will be used only in systems that do not support higher algorithms.

(2)  This certificate will be used only in systems that do not support higher algorithms.

附件:

P020171219678919011201.pdf

标准托管

托管标准,您可以接收以下服务:

1 标准定期系统查新,若有最新版本,会以站内短信或邮件的形式通知用户;

2 随时在标准托管页面中查看到该条标准的最新状态;

3 若用户有在学习和科研中的需要,可以在标准托管页面中试阅标准;

4 企业如果需要上新产品,我院及时提供标准查询、采购等方面的支持;

5 为企业在标准制修订、企业良好行为创建以及标准化试点过程中遇到的困难,可联系我院指定相关专家负责进行指导帮助、提供政策咨询;

6 为企业提供标准化政策的解读、标准化知识的推广培训、标准自我公开声明、标准文献的免费查询、企业标准化体系建设等方面的标准化服务;

进入企业标准托管

标准查新

您可以通过编辑查新模板,批量查询指定标准集的最新情况。我们会通过查询,向您展示您所查询标准的:

1. 准确的标准号及标准名称(我们通过人工智能技术对您提交的标准号进行自动纠正)

2. 标准的最新状态(现行、废止或未发布)

3. 若标准已废止并被新标准替代,会反馈被替代的标准

4. 若您已托管此标准,便可以实时跟踪这个标准的最新状态

标准查新 模板下载

标准查询

您可以在这里检索全球超过140万条标准,支持上百个国内国际标准组织的标准查询。您也可以在这里检索国内各类国家、部委和地方的法律法规。

更多标准子库在持续建设中。

标准检索

标准资讯点击排行榜 全部

资讯标题点击

[[ n.title ]] [[ n.read ]]

大连标准化公共服务平台

版权:大连标准化研究院有限公司

地址:大连市中山区高原街56号

电话:0411-82740851

大连标准