ORDER OF THE MINISTRY OF JUSTICE OF UKRAINE, ADMINISTRATION OF PUBLIC SERVICE OF SPECIAL COMMUNICATION AND INFORMATION PROTECTION OF UKRAINE

of August 20, 2012 No. 1236/5/453

About approval of requirements to formats, structure and to protocols which are implemented in well-tried remedies of the electronic digital signature

In pursuance of Item 3 of the Actions plan on implementation of the Concept of development of the electronic control in Ukraine approved by the order of the Cabinet of Ministers of Ukraine of September 26, 2011 No. 1014-r, according to the Law of Ukraine "About the electronic digital signature", subitems 65 and 66 item 4 of the Regulations on the Ministry of Justice of Ukraine approved by the Presidential decree of Ukraine of April 06, 2011 No. 395, subitems 7 and 11 of item 4 of the Regulations on Administration of Public service of special communication and information protection of Ukraine approved by the Presidential decree of Ukraine of June 30, 2011 No. 717, and for the purpose of creation of conditions of technological compatibility of software and hardware complexes of the akcreditirovanny centers of certification of keys and well-tried remedies of the electronic digital signature of PRIKAZYVAYEM:

1. Approve the attached requirements to formats, structure and protocols which are implemented in well-tried remedies of the electronic digital signature (further Requirements):

1.1. Requirements to format of the strengthened certificate of public key.

1.2. Requirements to structure of object identifiers for cryptographic algorithms which are state standards.

1.3. Requirements to format of the certificate revocation list.

1.4. Requirements to format of signed data.

1.5. Requirements to the protocol of fixation of time.

1.6. Requirements to the protocol of determination of the status of the certificate.

2. Determine that:

2.1. The Akcreditirovanny centers of certification of keys, the customers, developers, vendors and the organizations operating well-tried remedies of the electronic digital signature in electronic document management systems which are created in pursuance of the Actions plan on implementation of the Concept of development of the electronic control in Ukraine approved by the order of the Cabinet of Ministers of Ukraine of September 26, 2011 No. 1014-r provide application of provisions of Requirements in software and hardware complexes of the akcreditirovanny centers of certification of keys and well-tried remedies of the electronic digital signature since December 31, 2012.

2.2. The Akcreditirovanny centers of certification of keys, customers, developers, vendors and the organizations operating well-tried remedies of the electronic digital signature except determined in subitem 2.1 of Item 2 of this order, provide application in software and hardware complexes of the akcreditirovanny centers of certification of keys and well-tried remedies of the electronic digital signature of provisions of Requirements since June 01, 2013.

2.3. The Akcreditirovanny centers of certification of keys which performed the actions determined in subitems 2. 1, 2.2 Items 2 of this order, provide services to the electronic digital signature from the moment of passing of repeated accreditation according to Item 13 of the Procedure for accreditation of the center of certification of keys approved by the resolution of the Cabinet of Ministers of Ukraine of July 13, 2004 No. 903;

2.4. The subjects of legal relations in the field of services of the electronic digital signature using the strengthened certificates of public keys in the activities apply the electronic digital signature:

1) within the country for the purpose of providing electronic document management and electronic authentication of persons according to:

national standard of Ukraine GSTU 4145-2002 "Information technologies. Cryptographic information protection. The digital signature based on elliptic curves. Forming and check", the approved order of the State committee of Ukraine concerning technical regulation and consumer policy of December 28, 2002 No. 31 with function of hashing according to the state standard specifications 34.311-95 interstate standards "Information technology. Cryptographic information protection. Hashing function", the approved order of the State committee of Ukraine concerning technical regulation and consumer policy of October 21, 1997 No. 640. These standards are applied to imposing of the electronic digital signature till January 1, 2022 and to imposing of the electronic digital signature for the purpose of provision of services of the electronic digital signature on verification of the status of certificates of public keys before the expiration of their action and verification of the electronic digital signature;

national standard of Ukraine GSTU 4145-2002 "Information technology. Cryptographic information protection. The electronic digital signature based on elliptic curves", the approved order of the State committee of Ukraine concerning technical regulation and consumer policy of December 28, 2002 No. 31 with function of hashing according to the national standard of Ukraine GSTU 7564-2014 "Information technologies. Cryptographic information protection. Hashing function", to No. 1431 approved by the order of the Ministry of Economic Development and Trade of Ukraine of December 2, 2014. These standards are applied to imposing of the electronic digital signature since January 1, 2022 and to verification of the electronic digital signature;

National standard of Ukraine GSNU ISO/IEC 14888-3: 2015 "Information technologies. Protection methods. Digital signatures with amendment. Part 3. The mechanisms based on discrete logarithming", the state company "Ukrainian research and training center of problems of standardization, certification and quality" approved by the order of December 18, 2015 No. 193, using algorithm ECDSA with extent of expansion of the main field of elliptic curve at least 256 with functions hashing of sha256 or sha512 according to FIPS PUB 180-4 "SecureHashStandard";

2) for cross-border cooperation with any purpose according to requirements:

Disclaimer! This text was translated by AI translator and is not a valid juridical document. No warranty. No claim. More info