introduction to qualified certificates supporting psd2 · eidas meets psd2 securing access to...
TRANSCRIPT
INTRODUCTION TO QUALIFIED CERTIFICATES SUPPORTING PSD2Michał Tabor
© All rights reserved
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
CERTIFICATE
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
TWO CERTIFICATES
3
QUALIFIED CERTIFICATE FOR ELECTRONIC SEAL
Issued to: Payment Service ProviderIssued by: Qualified Trust ServiceValid from: 2018/03/20 to: 2020/03/20
QUALIFIED WEBSITE CERTIFICATE
Issued to: Payment Service ProviderIssued by: Qualified Trust ServiceValid from: 2018/03/20 to: 2020/03/20
Qualified Certificates for Seals (QCSEALs)EU 910/2014 (eIDAS)Annex III
Qualified Website Certificates (QWACs):EU 910/2014 (eIDAS)Annex IV
For the purpose of identification PSPs shall rely on
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
REQUIRED PSD2 DATA (RTS) in CERTIFICATE
4
QUALIFIED CERTIFICATE
Issued to: Payment Service Provider Issued by: Qualified Trust ServiceValid from: 2018/03/20 to: 2020/03/20…
Authorisation Number of PSP
PSD2 Role(s) of PSP
Name of Home Competent Authority
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
REQUIRED PSD2 DATA (RTS) in CERTIFICATE
5
QUALIFIED CERTIFICATE
Issued to: Payment Service Provider Issued by: Qualified Trust ServiceValid from: 2018/03/20 to: 2020/03/20…
Authorisation Number of PSP
PSD2 Role(s) of PSP
Name of National Competent Authority
RTS
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
THE SOURCE OF REQUIRED DATA IN CERTIFICATE
6
QUALIFIED CERTIFICATE
Issued to: Payment Service Provider Issued by: Qualified Trust ServiceValid from: 2018/03/20 to: 2020/03/20…
Authorisation Number of PSP
PSD2 Role(s) of PSP
Name of National Competent Authority
NATIONAL COMPETENT AUTHORITY
PUBLIC REGISTER
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
POLICY REQUIREMENTS
CERTIFICATE ISSUANCE
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
PAYMENT SERVICE PROVIDER
PUBLIC REGISTER
QUALIFIED TSP CERTIFICATION AUTHORITY
1. Certificate application
2. Identity validation
NATIONALCOMPETENT AUTHORITY
AUTHORISATIONPSD2 Specific Attributes
Certificate Issuance
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
PAYMENT SERVICE PROVIDER
PUBLIC REGISTER
QUALIFIED TSP CERTIFICATION AUTHORITY
1. Certificate application
2. Identity validation
NATIONALCOMPETENT AUTHORITY
AUTHORISATIONPSD2 Specific Attributes
Certificate Issuance
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
PAYMENT SERVICE PROVIDER
PUBLIC REGISTER
QUALIFIED TSP CERTIFICATION AUTHORITY
1. Certificate application
2. Identity validation
NATIONALCOMPETENT AUTHORITY
AUTHORISATIONPSD2 Specific Attributes
Certificate Issuance
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
PAYMENT SERVICE PROVIDER
PUBLIC REGISTER
QUALIFIED TSP CERTIFICATION AUTHORITY
1. Certificate application
2. Identity validation
NATIONALCOMPETENT AUTHORITY
AUTHORISATIONPSD2 Specific Attributes
Certificate Issuance
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
PAYMENT SERVICE PROVIDER
PUBLIC REGISTER
QUALIFIED TSP CERTIFICATION AUTHORITY
1. Certificate application
2. Identity validation
NATIONALCOMPETENT AUTHORITY
AUTHORISATIONPSD2 Specific Attributes
Certificate Issuance
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
POLICY REQUIREMENTS
CERTIFICATE REVOCATION
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
PUBLIC REGISTER
RELYING PARTY (eg. PSP, PSU)
QUALIFIED TSP CERTIFICATION AUTHORITY
PSP
NATIONALCOMPETENT AUTHORITY
Certificate Management
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
PUBLIC REGISTER
RELYING PARTY (eg. PSP, PSU)
QUALIFIED TSP CERTIFICATION AUTHORITY
PSP
NATIONALCOMPETENT AUTHORITY
Certificate Management
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
CERTIFICATE ATTRIBUTES
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
Authorisation number
17
QUALIFIED CERTIFICATE
Issued to: Payment Service Provider Issued by: Qualified Trust ServiceValid from: 2018/03/20 to: 2020/03/20…
Authorisation Number of PSP
organizationIdentifier
PSD2 QCStatement
• PSD2 Role(s) of PSP• Name of National Competent Authority
PSDPL-KNF-1130348297
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
PSD2 ROLES AND NAME OF NCA
18
QUALIFIED CERTIFICATE
Issued to: Payment Service Provider Issued by: Qualified Trust ServiceValid from: 2018/03/20 to: 2020/03/20…
Authorisation Number of PSP
• ROLES:(i) account servicing (PSP_AS);
(ii) payment initiation (PSP_PI);
(iii) account information (PSP_AI);(iv) issuing of card-based payment instruments
(PSP_IC);
• NAME OF NCA
PSD2 QCStatement
PSD2 QCStatement
• PSD2 Role(s) of PSP• Name of National Competent Authority
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
DRAFT ETSI TS 119 495
Electronic Signatures and Infrastructures (ESI);Sector Specific Requirements;Qualified Certificate Profiles and TSP Policy Requirements under the payment services Directive 2015/2366/EU
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
The DRAFT and Annexes
20
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
Annex C ‐ Guidance for PSD2 NCAs
21
• PSD2 Specific Attributes need to be• readily available for verification by QTSP, • in a form easily related to the Certificate.
• The QTSP needs to be informed by NCA if the PSP’s authorisation is revoked
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
ETSI TS 119495 TIMELINE
PotentiallyEuropean Standard (EN)
eIDAS meets PSD2Securing Access to Financial Services with Qualified Certificates
END OF PUBLIC REVIEW23 MARCH 2018
Thank you
23
Michal TaborRapporteur of WI TS119495