Help with our signature cards
Do you have questions about our signature cards? Then we will be pleased to assist you. The FAQs section may already have the answer to your question. Otherwise, feel free to call us from Monday to Friday, from 7am to 6pm at the following number: +49 (0) 30 – 2598-0.
Due to a weak point found in Infineon chips and the resultant security measures and regulatory requirements, the so-called OCSP service provided by D-TRUST GmbH had to be changed on 23 June 2017. Furthermore, the certificate revocation lists (CRLs) for signature cards issued in line with the German Act on Digital Signature were discontinued on 26 September 2017.
According to their definition, revocation lists are negative lists. They only state certificates that have been revoked. They do not provide any information as to whether a certificate is actually valid or if it was ever issued by a certification authority. A reliable validity check should therefore always be made through the OCSP service (online certificate status protocol).
Since 23 June 2017, all OCSP requests regarding qualified certificates on D-TRUST signature cards have been answered by the eIDAS-compliant D-TRUST OCSP 1 3-1 2016 Signer. You can simply check the validity of your certificate using our OCSP request.
Due to the measures described above, checks using the Adobe signature validation software are currently only possible to a limited extent. This applies, in particular, to signatures with D-TRUST signature cards which were issued up until mid-2017 in line with the then applicable requirements of the German Act on Digital Signature.
Together with Adobe, D-TRUST is doing everything it can to find a solution. For the meantime, however, we recommend that you use a signature validation component, such as intarsys, openlimit, mentana-claimsoft, seccommerce, secrypt or secunet.
FAQs – Frequent questions
We have compiled the answers to frequently asked questions here for you.