Certificate for electronic signature
Certificate for electronic signature means an electronic attestation which links electronic signature validation data to a natural person and confirms at least the name or pseudonym of that person. [Article 3 (14) Regulation (EU) No. 910/2014 (eIDAS)].
A certificate (public key certificate) is an electronic attestation by which the certificate issuer confirms, that the public key mentioned in the certificate belongs to a natural person whose identity is stated in the body of the certificate unless it is used a pseudonym.
The certificate contains information about the public key, the identity of its holder (called the subject) and the electronic signature of the entity that verified the content of the certificate (called the issuer).
In a typical Public Key Infrastructure (PKI) scheme, the certificate issuer is a certification authority (CA), usually a company that charges customers for issuing certificates.
The certificate is designed to verify the validity of the electronic signature made using a private key belonging to that public key.
The certificate holder's private key is usually stored on the disk of his / her PC and the corresponding public key is automatically stored in the application when it is generated. For a higher level of security, it is recommended that access to the private key is protected by a password or that the private key is stored in a QSCD device (a qualified signature creation device).