Digital

Blog

European Commission Digital

New service provider for the eDelivery PKI

The eDelivery Public Key Infrastructure (PKI) service is currently being migrated from its incumbent certification authority to CommisSign-2, the certification authority of the European Commission.

As part of the migration, the PKI domain owners are requested to sign the updated General Terms and Conditions (GTC) document to ensure an uninterrupted provision of eDelivery PKI service to their users. The signature of the updated GTC document is a pre-condition for a domain to be able to request certificates from the new provider. Once the GTC document is signed for a certain PKI domain, the users will be asked to follow a new process to request and renew their digital certificates. Details about the forthcoming changes in the process are communicated to the domain owners alongside the GTC document.

All domains will have to migrate before the end of September 2022 and subsequently invite their users to request new CommisSign-2 certificates., no later than the end of January 2023. In early 2023, all still valid certificates issued by the previous certification authority will be revoked.

For more information regarding the eDelivery PKI service, please contact us via our portal or by e-mail: EC-EDELIVERY-SUPPORT@ec.europa.eu.

The eDelivery Building Block | PKI service

eDelivery is a building block that provides technical specifications and standards, installable software and ancillary services to allow projects to create a network of nodes for secure digital data exchange.

The eDelivery PKI service enables issuance and management of the digital certificates used on the deployed eDelivery components, e.g., between eDelivery Access Points (AP) and Service Metadata Publishers (SMP), to ensure confidentiality, integrity and non-repudiation of the data moving across systems.

In its capacity of Solution Provider of the eDelivery Building Block, the European Commission makes available a PKI service to organisations participating in eDelivery-based projects operated by the EU and EEA public administrations. Such public administrations first have to establish themselves as PKI domain owners in relationship to the service. The organisations who are authorised by the PKI domain owner to be part of their domain can then use the eDelivery PKI service to obtain digital certificates. The use of the eDelivery PKI is optional, policy domains may choose to use any other PKI service or mutual trust mechanism.


Photo by Zack Walker on Unsplash