Magyar Telekom Qualified Times Stamping Service …...Version number Date Description of the change 0.90 2004-05-10 First version (technical working materials) 0.91 2004-05-17 Improved

Magyar Telekom

Qualified Times Stamping Service

Time Stamping Policy

Specific object identifier (OID): ..................... 1.3.6.1.4.1.17835.7.1.2.11.3.12.2.0

Version number:........................................................................................................... 2.0

Registration number:…………………………………………………………..……

Date of entry into force:……………………………………………………………………..30. 06. 2017

2 (altogether: 28)

Change management

Version number

Date Description of the change

0.90 2004-05-10 First version (technical working materials)

0.91 2004-05-17 Improved draft 0.92 2004-05-21 Controlled version 0.93 2004-05-23 Version submitted to Magyar Telekom Rt. 1.0 2004-05-28 Version submitted to the National Infocommunications Authority 1.1 2004-07-17 Changes made after authority review 1.2 2004-09-27 Final version submitted to the Authority

1.3 2005-09-01 Amendment for Magyar Telekom name change and its consequences 1.4 30. 12. 2005 Incorporation of the proposals of the external expert review 1.5 20. 07. 2005

19. 08. 2006 Corrections made according to the comments of the Office of the National Infocommunications Authority

1.6 18. 12. 2006 Corrections made according to the comments of the 2006 Authority review 1.7 01. 03. 2009 Amendment according to the comments of the Authority (HL-923-1/2009) 1.8 20. 06. 2010 Review in connection with the termination of authentication services and

the continued provision of qualified time stamping service 1.9 05. 12. 2011 Changes connected with the implementation of resolution no. EF-26838-

9/2011 of the National Media and Infocommunications Authority and in-corporation of the organizational changes

2.0 08. 09. 2016 Incorporation of statutory, organizational and personnel changes Amendment made by: Zoltán Domokos

Technology/Technology plat-form branch

IT security service technical super-visor

Controlled by: Dr. Péter Demény

Group Legal Directorate

Legal consultant

Approved by: Péter Mátyás

Technology/Technology plat-form branch

Head of department Database and ISP Services

3 (altogether: 28)

Contents

Change management.......................................................................................................................................... 2

1 Introduction ................................................................................................................................................. 5

1.1 The regulation .................................................................................................................................... 5

1.2 Scopes of the TSP ............................................................................................................................. 5

1.3 The Service Provider ......................................................................................................................... 6

1.4 Definition of the time stamping service .......................................................................................... 7

1.5 Standards and regulatory compliance ........................................................................................... 8

1.6 Availability, identification of the TSP .............................................................................................. 8

1.7 Community and applicability ........................................................................................................... 9

2 General provisions ................................................................................................................................... 10

2.1 2.1 Components of the time stamping service ........................................................................... 10

2.2 The time stamping service provider ............................................................................................. 11

2.3 Endusers ........................................................................................................................................... 11

2.4 TSP and Time Stamping Service Regulations ............................................................................ 11

2.4.1 Connection of the TSP and the Time Stamping Service Regulations ........................... 11

2.4.2 Service Provider’s regulations concerning the time stamping service .......................... 12

2.4.3 Principles of elaboration of TSP and IBSzSz ..................................................................... 12

3 Time Stamping Policy (TSP) ................................................................................................................... 13

3.1 Overview ............................................................................................................................................ 13

3.2 Identification ..................................................................................................................................... 13

3.3 Time stamping service user ........................................................................................................... 13

3.4 Compliance of the time stamping service ................................................................................... 13

4 Obligations and liability ........................................................................................................................... 14

4.1 Service Provider’s obligations to the endusers .......................................................................... 14

4.2 Subscriber’s obligations ................................................................................................................. 14

4.3 Recommendations concerning the stakeholder ........................................................................ 15

4.4 Liability ............................................................................................................................................... 16

5 Requirements for operation ................................................................................................................... 17

5.1 Regulation and publication of the time stamping service ........................................................ 17

5.1.1 Regulation of the time stamping service ............................................................................ 17

5.1.2 Publication of the time stamping service ............................................................................ 17

5.2 Key management ............................................................................................................................. 19

5.2.1 Generation of the signing key of the time stamping service ........................................... 19

5.2.2 Protection of the Service Provider’s private key ................................................................ 19

5.2.3 Publication of the Service Provider’s public key ............................................................... 19

5.2.4 Validity of the Service Provider’s key ................................................................................... 20

5.2.5 Ending the use of the Service Provider’s key ..................................................................... 20

5.2.6 Life cycle of the HSM unit...................................................................................................... 20

5.3 Time stamping service .................................................................................................................... 20

4 (altogether: 28)

5.3.1 Time stamp profile .................................................................................................................. 20

5.3.2 Clock synchronization with the UTC ................................................................................... 22

5.4 Operation and management of the time stamping service ...................................................... 22

5.4.1 Security precautionary measures ........................................................................................ 23

5.4.2 Classification of components ............................................................................................... 23

5.4.3 Personnel precautionary measures ..................................................................................... 23

5.4.4 Physical precautionary measures ........................................................................................ 23

5.4.5 Operation ................................................................................................................................. 23

5.4.6 Management of access authorizations ............................................................................... 23

5.4.7 Installation, maintenance of the system .............................................................................. 24

5.4.8 Business continuity of the time stamping service ............................................................. 24

5.4.9 Stopping the operation of the Service Provider ................................................................ 24

5.4.10 Regulatory compliance.......................................................................................................... 24

5.4.11 Recording of the data connected with the time stamping service ................................. 25

5.5 Organization structure .................................................................................................................... 25

6 Signs, abbreviations and definitions ..................................................................................................... 26

7 References ................................................................................................................................................ 28

5 (altogether: 28)

1 Introduction

1.1 The regulation

This regulation defines the requirements of the operation of the times tamping service provided by Magyar Telekom Nyrt. as Qualified Time stamping Service Provider (hereafter: service provid-er), the structure of the time stamp, the rules concerning the time stamping service management and the life cycle of the key management belonging to the time stamp and other general re-quirements.

The full name of the document is: Magyar Telekom Qualified Time Stamping Service Time Stamp Policy

Short name of the document: Time Stamp Policy (hereafter: TSP).

The procedural and other rules concerning the time stamping service not contained in the TSP are given in the Magyar Telekom Time Stamping Service Regulation (hereafter: IBSzSz) [6].

1.2 Scopes of the TSP

Material scope of the TSP

The material scope of the TSP extends to the provision of the service described in the subchap-ter {1.4 Definition of the time stamping service} and to all the objects and tangible assets con-nected with this service.

Area scope of the TSP

The area scope of the TSP extends to the entire territory of Hungary.

Time scope of the TSP

The TSP has indefinite time scope from the date of entry into force of the version of the regula-tion shown on the cover page. The time scope of the TSP will end on termination of the time stamping service and/or on entry into force of a new version of the regulation.

Personnel scope of the TSP

The personnel effect of the TSP extends to each and every member of the user community de-fined in the subchapter {1.8 Community and applicability}, to every natural person and legal enti-ty and person without legal entity.

6 (altogether: 28)

1.3 The Service Provider

In the TSP under Service Provider Magyar Telekom Qualified Time Stamping Service Provider (time stamp organization) created by Magyar Telekom Nyrt. - within its own organization - shall be understood. In a legal sense the Service Provider is represented by Magyar Telekom Nyrt.

Date of registration of the Service Provider as qualified service provider: 01 October 2004

The data of the Service Provider (Magyar Telekom Nyrt.) are the following:

Name: Magyar Telekom Távközlési Nyilvánosan Működő Részvénytársaság

Trade register number: CG 01-10041928

Registered offices: 1013 Budapest, Krisztina krt. 55.

Mail address: 1541 Budapest

Telephone: +36-1-458 7346

Fax: +36-1-458 7335

Website: http://www.telekom.hu/

Availability data of the Qualified Time Stamp Organization are the following:

Name: Magyar Telekom Nyrt./ Qualified Time Stamp Organization

Address: 1117 Budapest Magyar tudósok körút 9.

Telephone: +36 1 481-8401

Fax: +36-1-481-8405

Mail address: 1541 Budapest

Website: http://www.t-sys-tems.hu/nagyvallalatok/hitelesites_szolgaltatasok/idobelyegzes_szolgaltatas

E-mail: [email protected]

The business hours of the Time Stamp Organization are usually 8:00 to 16:00 hours on working days, but on some days it may have different business hours. Outside the above business hours fault reports can be made and certificate of authentication to request time stamp can be with-drawn on the following telephone number:

telephone number of the 24-hour duty service: +36-30-444-17-31

The current data of the Time Stamp Organization can also be checked on the above internet site of the Service Provider.

7 (altogether: 28)

The availability data of the other organizations connected with the time stamping service are given in the IBSzSz [6] document.

Magyar Telekom performs the certified Timestamp service in accordance with [1],[2],[3] laws and the applicable standards - referred to in the “References” part. Compliance with the law and the standards is certified by an accredited certifier organization by way of compliance assess-ment and the activity is supervised by the Trusted Service Supervision Authority (National Media and Info-Communications Authority).

1.4 Definition of the time stamping service

According to the definition of the eIDAS regulation, the ‘electronic time stamp’ means data in electronic form which binds other data in electronic form to a particular time establishing evi-dence that the latter data existed at that time;

Article 97 (1) of Act CCXXII of 2015 If the document has been provided with qualified electronic signature or stamp, or time stamp, and no other follows from the result of the control of the signa-ture or the stamp or the , it shall be presumed that the content of the document has not changed since the placement of the signature or the stamp or the time stamp.

In the course of the time stamping service the Service Provider links a time stamp to the electron-ic document.

The time stamping service provides proof that the data element existed in unchanged from at a given time (proof of existence). If the data element had been signed by the party requesting the data before sending it to the time stamping service provider, then the time stamping service pro-vides proof that the given data element existed and was in the possession of this entity at the given time (proof of possession). The time stamping service provider as third party reliably pro-vides the time stamping service.

The time stamping service provider by the Service Provider can be linked to a document provid-ed with enhanced or qualified signature, and can also be used with files not provided with signa-ture.

Two types of activity can be connected to the service:

� time signal provision, which the Service Provider reserves for the time stamping service, for synchronizing with authenticated time source and

� the time stamping service itself, which the Service Provider provides as qualified time stamping service to its customers (on subscription basis).

Two types of basic operation have to be performed in the use of the time stamps:

8 (altogether: 28)

� time stamping (process) which links the data with time values using cryptographic tools and

� time stamp control (process) which evaluates the compliance of these connections.

In the course of the time stamping service the Service Provider (certifiably) does not learn the content of the time stamped document, it only manages its impression.

The Service Provider recommends two types of access to the time stamping service:

� the first is usually specific - dedicated - access which it typically provides for customers with large traffic 1

� the second is internet-based access with which the service can be extended to the widest possible scope of users.

In terms of accuracy and security the time stamping infrastructure of the Service Provider com-plies with the relevant provisions of BM regulation no. 24/2016. (VI.30) [3], and the ETSI EN 319 421 [4] and the ETSI EN 319 422 [7] standards.

1.5 Standards and regulatory compliance

In content and structure the present TSP is in compliance with the ETSI EN 319 401 [x], ETSI EN 319 421 [4] and ETSI EN 319 422 [7] [7] EU standards for time stamping service providers and time stamping service provision.

In terms of content the TSP satisfies the requirements and recommendations of the Hungarian regulations as well as the internal regulations of the Service Provider and uses the [5] technical specifications.

The time stamps issued according to this Qualified Time Stamping Policy comply with the re-quirements of the ETSI EN 319 421 [4] standard.

In the time stamps issued by itself the Service Provider uses its own OID and supports the ETSI time stamping policy (BTSP).

1.6 Availability, identification of the TSP

The full name of the document can be found in the subchapter {1.1 Regulation}. The TSP can be identified with the following data:

1 This involves certain technical constraints, for example, it may require the use of leased line communication channels or other specific solutions.

9 (altogether: 28)

Specific object identifier (OID): ........................ Found on the cover page of the TSP

Registration number: ................................................................... can be found on the cover page of the TSP

Version number: ........................................................................... can be found on the cover page of the TSP

Date of entry into force can be found on the cover page of the TSP

Technical identifier of the time stamping service: ................. Magyar Telekom TSA v1.0.

The TSP is a public document the timely version of which the Service Provider publishes on the internet at http://www.t-systems.hu/nagyvallalatok/hitelesites_szolgaltatasok/idobelyegzes_szolgaltatas

1.7 Community and applicability

The community belonging to the Service Provider’s time stamping service (hereafter: Communi-ty) consists of the following:

� organizations of the Service Provider’s time stamping service:

- Time Stamping Organizations, as the organization responsible for the operation of the time stamping servers, customer service.

� Magyar Telekom Technology platform branch, Database and ISP ser-vices department ISP group, as operator of the time signal provision ser-vice,

� the endusers {subchapter 2.3}.

10 (altogether: 28)

2 General provisions

2.1 2.1 Components of the time stamping service

Two types of activity can be connected to the authentic time data:

� the time stamping service itself, with which as qualified time stamping service the Service Provider supports its external and internal customers (on subscription basis).

� Time stamping service management processes, authentic time signal provision

Two types of basic operation have to be performed in the course of the time stamping service:

� time stamping (process) which links the data with time values using cryptographic tools

and

� time stamp control (process) which provides the following functions:

- evaluates the compliance of the connections used in the time stamping and/or if necessary, intervenes,

- supervises the internal synchronization, operation of the time stamping servers, intervenes in case of failure,

- ensures the synchronization of the UTC2 used for the time stamping to the time base,

- supervises, maintains the traffic of the time stamping servers, makes the neces-sary backups,

- supervises the authenticity of the time of the time stamps on the basis of the rules described in the subchapter {5.3.2 Clock synchronization with the UTC}.

The Service Provider issues the certificates belonging to the key pairs used in the time stamping from Magyar Telekom RootCA 2011. For more information about the operation of Magyar Tel-ekom RootCA 2011 see chapter 6 of the IBSzSz[6].

In the course of the time stamping service the Service Provider (certifiably) does not learn the content of the time stamped document, it only manages its impression.

In terms of accuracy and security the time stamping infrastructure of the Service Provider com-plies with the relevant provisions of BM regulation no. 24/2016. (VI.30) [3], and the ETSI EN 319 421 [4] and the ETSI EN 319 422 [7] standards.

2 UTC: Coordinated Universal Time

11 (altogether: 28)

2.2 The time stamping service provider

The time stamping service is provided by the Service Provider specified in the {1.3 The Service Provider} subchapter.

2.3 Endusers

The endusers of the time stamping service provided by the Service Provider can be the following:

� the subscriber who uses the time stamping service on the basis of contract with the Service Provider,

� the stakeholder.

The subscriber can be any natural person or legal entity or organization without legal personality who/which accepts the obligations laid down in the regulations of the Service Provider (in par-ticular in this TSP), and pays for the service.

The subscriber is in contractual relationship with the Service Provider in the relevant Time Stamping Service Provision contract in the following: ISzSz [9], in compliance with the General Terms and Condition of Magyar Telekom’s Time Stamping Service (hereafter: GTC ) [8] and the TSP documents. The Service Provider communicates with the subscriber primarily through the Time Stamping Organization. Subscriber may use the time stamping service exclusively in the manner and for the purpose determined in the TSP and the ISzSz.

The stakeholder can be any natural person or legal entity or organization without legal personali-ty, the member of such Community who is the recipient of the electronic document and who acts with reliance on an authenticated time when controlling the authenticity of the signature and/or the time stamp.

2.4 TSP and Time Stamping Service Regulations

2.4.1 Connection of the TSP and the Time Stamping Service Regula-tions

The Service Provider, as qualified time stamping service provider provides the services specified in the {1 Introduction}. . The Service Provider has service regulations for the time stamping ser-vice provided by it which go under the short name of: IBSzSz [6]. The legal, commercial and other procedural rules of the time stamping service, not regulated in the TSP, are contained by the Service Provider’s effective IBSzSz document.

The IBSzSz is a public document the timely version of which the Service Provider publishes on the internet at

12 (altogether: 28)

http://www.t-systems.hu/nagyvallalatok/hitelesites_szolgaltatasok/idobelyegzes_szolgaltatas

.

2.4.2 Service Provider’s regulations concerning the time stamping service

The Service Provider’s public regulations concerning the time stamping service are the follow-ing:

- TSP (this document),

- IBSzSz [6],

- ÁSzF (GTC) [8].

2.4.3 Principles of elaboration of TSP and IBSzSz

The TSP contains the requirements for the Service Provider and the time stamping service.

The IBSzSz contains the organizational, process and personnel rules supporting concrete im-plementation, based on and in compliance with the Service Provider’s internal and public regu-lations.

13 (altogether: 28)

3 Time Stamping Policy (TSP)

3.1 Overview

The Service Provider’s time stamping service may be used by the subscribers specified in the {2.3 Endusers} subchapter under contract with the Service Provider for the purpose specified therein. Service Provider will not restrict the use of the time stamping service in the respect of the type or authentication of the electronic document provided with the time stamp. .

In the respect of the general rules of operation of the time stamping service the Service Provider follows the[4] standard, while in the respect of the user and time stamp support applications and the profile of the time stamp – its structure and content – it follows the [7] standard.

In the course of the time stamping service ,in the respect of communication between the Service Provider and the endusers, the Service Provider complies with the [5] standard, and ensures the accuracy of the time stamping service. As far as accuracy is concerned, the variation must al-ways be smaller than 500 milliseconds.

3.2 Identification

The identification and availability of the present TSP are as described in the subchapter {1.6 Availability, identification of the TSP}.

Every time stamp contains the OID number of this TSP.

3.3 Time stamping service user

The Service Provider’s time stamping service may be used by the Community defined in the {1.7 Community and applicability} subchapter, and by Subscribers on the basis of contract with the Service Provider, in the manner defined therein. .

3.4 Compliance of the time stamping service

Service Provider ensures the compliance of the time stamping service according to the regula-tory and technical standards defined in the {1.5 Standards and regulatory compliance} subchap-ter, through regular audits performed by external and internal auditors.

14 (altogether: 28)

4 Obligations and liability

It is the fundamental duty of the Service Provider to provide the agreed time stamping service in compliance with this and the other public regulations, contract – the [6], [7], [8], [9] documents –, and the Service Provider’s internal security regulations.

The general obligations of the Service Provider are defined in the IBSzSz [6] document {9.6.1 Li-ability and warranty of the time stamping service provider} subchapter.

4.1 Service Provider’s obligations to the endusers

In the course of the provision of the time stamping service Service Provider undertakes the fol-lowing obligations to the endusers:

- it ensures that the time stamp response contains, apart from the elements added in the time stamping procedure, the same data as the request.

- the issued time stamp does not contain erroneous data,

- will not learn the content of the time stamped document, it will only manage its impres-sion,

- it will only use the signing key of the time stamp within the framework of time stamping ,

- it will issue the time stamp with an accuracy inside 500 milliseconds,

- ensures the reliability and security of the time stamping service in compliance with the requirements applicable to qualified authentication service providers.

- records every important event connected with time stamping, logs these and safely stores the log files.

4.2 Subscriber’s obligations

The obligations of the subscriber in the context of the Service Provider’s time stamping service are determined by the following.

− To use the time stamping service Subscriber must ensure the infrastructure of communi-cation with Service Provider’s time stamping units (e.g. internet or leased line connection), as well as the software application required for using the service, in accordance with the technical conditions agreed with the Service Provider in advance. Service Provider must, through the entire process, cooperate with the subscriber. Subscriber and Service Provid-

15 (altogether: 28)

er may agree that Service Provider establish the above-mentioned communication con-nection and/or provide the software application for a special fee.

− For the purpose of provision of the time stamping service, Subscriber shall submit to the Service Provider the data necessary for issuing the authentication certificate in accord-ance with the contract between the parties.

− Subscriber shall share with its users authorized to use the service and install the authenti-cation certificate received from the representative of the Service Provider; in doing so it shall act with due care to prevent the illegal use of the private key belonging to the certifi-cate (and thus of the service itself). Subscriber shall give information and guidance to its authorized users about the use of the service and the prevention of the illegal use of the private key belonging to the authentication certificate.

− Subscriber shall, without delay, notify the Service Provider if the private key of the authori-zation certificate has been compromised or if it has learned about any illegal use thereof. Service Provider waives any liability for damages caused by the illegal use of the authenti-cation certificate.

− Subscriber shall pay the fee of the time stamping service in accordance with its contract with the Service Provider. The basis of calculation of the fee is successful service of the time stamping request with the authentication certificate. The Service Contract may also dispose otherwise.

4.3 Recommendations concerning the stakeholder

In the course of the time stamping service the Service Provider is not in contract with the stake-holder therefore, instead of obligations the Service Provider makes recommendations to the stakeholder. The recommendations for the stakeholder are determined by the IBSZSZ [6] regu-lation and by the following.

If the stakeholder wants reasonably to rely on a time stamp, it is recommended that it control the time stamp as well as the validity of the certificate of the time stamping unit (time stamping serv-er) and/or the validity of the RootCA 2011 certificate of the issuing Magyar Telekom by using the valid revocation status information, in compliance with the regulations.

The recommended steps of control of the time stamps issued by the Service Provider are the following:

− check whether the Service Provider has electronically signed the time stamp,

− whether the Service Provider’s signature has been executed with the key used for the time stamping and whether the certificate belonging to it is valid,

16 (altogether: 28)

− the users of the time stamp can control the validity of the service provider’s certificate on the basis of the CRL published with the frequency determined in the IBSzSz [6] which can be reached on thehttp://www.t-systems.hu/nagyvallalatok/hitelesites_szolgaltatasok/idobelyegzes_szolgaltatas website.

4.4 Liability

The liability of the Service Provider is determined in the IBSzSz [6] {9.6} and {9.2 Financial liabil-ity, liability insurance} and by the following.

The time stamping organization of the Service Provider is responsible for the issue of the authenti-cation certificate for using the time stamping service, for creating the connected key pair and for submission of these to the Subscriber in a safe manner.

Service Provider is responsible for the revocation, on the request of the Subscriber, of the authenti-cation certificate for using the service.

The liability of the subscriber and the stakeholder is determined in the IBSzSz [6] regulation {9.6.2 Subscriber’s liability and warranty} and {9.6.3 Stakeholder’s liability} subchapters.

17 (altogether: 28)

5 Requirements for operation

5.1 Regulation and publication of the time stamping service

5.1.1 Regulation of the time stamping service

The Service Provider’s IT system supporting its time stamping service, the authentic time signal used in the time stamps are ensured by the infrastructure described in {5.3.2 Clock synchroniza-tion with the UTC}.

Service Provider publishes the conditions, tariffs and technical conditions of its time stamping service on the


internet site. On this site also the signing certificate of the time stamping unit(s) and the relevant CRL are available for downloading. The other details of publication are given in {5.1.2 Publica-tion of the time stamping service} subchapter.

Further regulatory issues of the time stamping service are addressed in the IBSzSz [6] regula-tion.

5.1.2 Publication of the time stamping service

Service Provider publishes the effective version of its Time Stamping Policy of the time stamping service on the


internet site. Further contractual documents on the service (ÁSZF, IBSzSz) are also available on this site. Furthermore, on the above site the Service Provider also publishes the certificates of the time stamping units and the RootCA 2011 certificate of the certifying Magyar Telekom.

Other information concerning the time stamping service:

a) The Service Provider can be reached through the Time Stamping Organization. Further details are contained in {1.3 The Service Provider} subchapter.

b) This Time Stamping Policy document can be identified with the OID number on the cover page. Further details are contained in the {1.6 Availability, identification of the TSP} subchapter.

18 (altogether: 28)

c) The hash algorithm applicable in the context of the service: the algorithm provid-ed by the effective NMHH resolution.

d) Validity time of the Service Provider’s time stamp signing key: 5 years, provided that the key is not compromised during that time.

e) Accuracy of the time on the time stamp: UTC ± 500 milliseconds (maximum vari-ation).

f) Conditions of using the time stamping service:

- technical conditions: Subscriber must have the required software ap-plication and communication connection. Further details are given in the {5.1.1 Regulation of the time stamping service} subchapter

and

- legal, commercial conditions: as specified in the {2.3 Endusers} and {4 Obligations and liability} subchapters.

g) Subscriber’s obligations: Subscriber shall comply with the contractual conditions of using the service, ensure the necessary technical conditions and pay the fees of the service. Further details are contained in {4.2 The Service Provider} sub-chapter.

h) Obligations of the stakeholder: the stakeholder is recommended to make the necessary controls before acting in reliance on the time stamp. Further details are given in {4.3Recommendations concerning the stakeholder}.

i) Length of keeping the time stamping service files: for 10 years from the date of their origination or, in case of legal dispute, until closure of the procedure the Service Provider will keep the log files.

j) Limitation of the Service Provider’s liability: for details see the {4.4 Liability} sub-chapter.

k) Settlement of complaints and legal disputes: complaints may be submitted to the qualified Time Stamping organization of the Service Provider. More details are contained in the ÁSzF [8].

l) External independent auditing organizations:

19 (altogether: 28)

- National Media and Infocommunications Authority (Trusted Supervi-sion),

- External independent auditing organization.

5.2 Key management

5.2.1 Generation of the signing key of the time stamping service

In the respect of key management the Service Provider will provide for the enforcement of the physical, procedural and personal security precautionary measures complying with the known standards, as well as the relevant administrative and management procedures. The details are given in the IBSzSz [6] {6 Technical security precautionary measures} subchapter.

The keys of the Time Stamping Organization are generated according to the FIPS 140-2 stand-ard at level 3, or in the CC EAL 4 tested cryptographic module (Hardware Security Module, hereafter: HSM).

The own keys of the time stamping units serving the time stamping service of the Service Pro-vider are generated in the cryptographic module (HSM) and stay in the HSM through their entire life cycle.

He cryptographic modules of the time stamping units of the Service Provider comply with the specification given in section 7.6.3 of the EU standard [4].

5.2.2 Protection of the Service Provider’s private key

The protection of the Service Provider’s private key is in compliance with the requirements for qualified time stamping service providers. More detailed specifications are given in IBSzSz [6] {6.2 Protection of the Service Provider’s private keys and requirements for cryptographic mod-ules} subchapter.

5.2.3 Publication of the Service Provider’s public key

The validity and reliability of the certificates issued for the TSUs is supervised by the Service Provider throughout the entire chain before importing them into the timestamp units.

The certificates of the time stamping unit(s) is available on the


website.

20 (altogether: 28)

5.2.4 Validity of the Service Provider’s key

The validity time of the Service Provider’s key is 5 years. The period of use of the Service Provid-er’s keys is specified in IBSzSz [6] {6.3.1 Period of use of the certificates and the key pairs} sub-chapter, and the archivation of the keys is specified in the IBSzSz [6] {6.2.4 Private key archivation} subchapter.

5.2.5 Ending the use of the Service Provider’s key

After the expiry of the validity time of the key, the key will be destroyed in compliance with the procedure described in IBSzSz [6] {6.2.9 Method of destruction of the private key}, and the Ser-vice Provider will generate new key in accordance with the procedure described in {6.1.1 Key pair generation}.

If the Service Provider’s key is compromised during its validity time, the Service Provider will pro-vide for immediate revocation of the certificate, immediate destruction of the key and the gener-ation of a new key.

5.2.6 Life cycle of the HSM unit

The delivery, storage and installation of the Service Provider’s HSM units shall be done with the observance of strict physical and personnel security measures.

The most important facts, properties established in the control, testing and evaluation of the HSM modules are entered in the certificate of the asset.

The Service Provider describes the most important security and other requirements concerning the operation of the equipment in the {5.4 Operation and management of the time stamping ser-vice} subchapter.5.4

5.3 Time stamping service

5.3.1 Time stamp profile

The Service Provider ensures the secure issue of the time stamps and the accuracy of the data on the time stamp. The time stamp profile on the basis of the standards [4] and [7] contains the following:

Field name Value or rule

Version Technical ID of the Service Provider’s time stamping service: Magyar Telekom TSA v1.0 so the value of the field is: „v1.0”

21 (altogether: 28)

Version

The hash algorithm approved in the time stamp SHA-256, SHA-384, SHA-512

Regulation ID that can be named in the time stamp request (OID)

It is not compulsory to specify, but if specified its value will be identi-cal with the regulation ID specified in the time stamp response.

Length of the random number (nonce) shown in the time stamp request

64 bit

Can the service provider’s certificate be request-ed in the time stamp request (certReq)

Yes

Accuracy 500 milliseconds

Arrangement False

Regulation ID that can be named in the time stamp request (OID)

The value of the field is the TSP ID effective at the date of issue of the time stamp

Hash algorithm used in the time stamp response SHA-256, SHA-384, SHA-512

Signing algorithm used in the time stamp re-sponse

RSA

Time resolution of the time stamp response (genTime)

0,001 second

UTC max offset value of the time stamp service 500 milliseconds

Supported access protocol HTTPS

Use of store and forward protocol Not supported

Size of serial number Dynamic length

Unique serial number The Service Provider generates a unique serial number, the unique-ness of which serial numbering survives even the eventual interrup-tion of the service.

In addition to the above, the content structure of the time stamp satisfies the following require-ments:

- The time shown on the time stamp is provided by a time base taken from several inde-pendent sources, which thus only allows maximum UTC ± 500 milliseconds variation.

- the internal clock signal was verified by an expert committee at the start of the time stamping system, with the help of an independent reference time source,

- the authenticity of the internal clock is ensured through a GPS unit with external UTC time bases and with synchronization with the Magyar Telekom time base during opera-tion ,

- the Service Provider signs the time stamp exclusively with the signing key issued for the purpose of time stamping,

22 (altogether: 28)

- the time stamp contains the field of the owner of the signing certificate.

5.3.2 Clock synchronization with the UTC

Service Provider ensures that the time data used for the time stamping service are synchronized with the UTC and that its variation from the UTC does not exceed the specified value. The Ser-vice Provider’s system providing the time signal (Trusted Time Infrastructure, hereafter: TTI ) is established as an integral part of the existing infrastructure of Magyar Telekom.

The TTI system established by the Service Provider is a hierarchic time signal supply infrastruc-ture, one of the time sources of which is the reference oscillator (atomic clock) of Magyar Tele-kom. The levels of the TTI system are the following:

- The server at the highest level of the hierarchy synchronizes the reference time to the GPS satellites (which radiate the signal with 1 microsecond accuracy) then, after reach-ing the synchronized time signal, it adjusts to the high precision synchronous signal provided by the atomic clock of Magyar Telekom. The server to be found at this level continuously logs every event, which is important in case of alert or for the operation of the system.

- The firewalls of the time stamping system synchronize with the top level ntp servers (ntp.telekom.intra infrastructure) after key authentication.

- At the third level of the hierarchy is the Service Provider unit which, similarly to the first two levels, provides for the generation of the time stamps after time audit and time cali-bration. The Service Provider unit may divert from the time signal provided by the time server by maximum 500 milliseconds. In case of 500 milliseconds or more diversion the time stamp requests will be rejected as long as the entire system is not synchronized again with the time of the time servers.

- The time stamping servers take accurate time signals twice a day which the system pre-cisely logs.

The TTI system is placed in geo-redundant manner in high security data centers protected from physical intrusion.

5.4 Operation and management of the time stamping service

The Service Provider provides for the enforcement of appropriate physical, procedural and per-sonal security precautionary measures complying with the known standards, as well as the rele-vant administrative and management procedures.

23 (altogether: 28)

5.4.1 Security precautionary measures

The relevant security requirements are determined in the IBSzSz [6] {6 Technical security pre-cautionary measures} subchapter.

5.4.2 Classification of components

The Service Provider provides for the exposure classification of the IT system and system com-ponents supporting the time stamping service, and for their the appropriate protection accord-ing to the classification. The classification of the components and the determination of the risk factors are specified in the Service Provider’s document entitled “Analysis of risks in the quali-fied time stamping service system of Magyar Telekom”.

5.4.3 Personnel precautionary measures

The personnel requirements of the Service Provider’s service are specified in the IBSzSz [6] document {5.2 Procedural precautionary measures} and {5.3 Requirements concerning the per-sonnel}.

5.4.4 Physical precautionary measures

The physical precautionary measures of the time stamping service are described in the IBSzSz [6] document {5.1 Physical requirements} subchapter.

5.4.5 Operation

Service Provider ensures that the IT system and the system components supporting the time stamping service are operated in compliance with appropriately developed rules of operation and other technical documentations, securely and without minimum risk of failure.

The detailed descriptions of the operation are given in the Service Provider’s internal regulatory documents.

5.4.6 Management of access authorizations

Service Provider ensures that only authorized persons access the IT system supporting the time stamping service. Exclusively authorized personnel may carry out the interventions into the sys-tem and any other administrator, installation operations.

The management of the authorizations is regulated in the Service Provider’s internal regulations.

24 (altogether: 28)

5.4.7 Installation, maintenance of the system

The installation of the IT system supporting the time stamping service was implemented under the strict supervision of the Service Provider, according to the relevant administration and per-sonnel security measures. In addition to the above, the Service Provider ensures the continuous monitoring, maintenance of the system and repair of the eventual failures. Each change is rec-orded in the configuration log files. Without the permission of the Service Provider the system and its components may not be reconfigured or the functions of the components changed.

5.4.8 Business continuity of the time stamping service

The Service Provider takes every action necessary to ensure the continuous operation of the time stamping service. The Service Provider has business continuity plan and/or disaster recov-ery plan which determine the tasks of the Service Provider in case of unexpected events or an eventual disaster.

The Service Provider ensures the continuous availability of the time stamping service on the ba-sis of §45 (1) of BM regulation no. 24/2016. ()VI.30 – at annual level it guarantees 99.5% availability rate. The occasional service outage may not exceed 3 hours in length.

5.4.9 Stopping the operation of the Service Provider

The Service Provider can end its operation in the following cases:

- On the decision of the management body of the Service Provider

- On the decision of the authority.

The operation of the Service Provider will be stopped in the manner and steps described in the document IBSzSz [6] {5.7 Stopping the time stamping service provider or organization}.

5.4.10 Regulatory compliance

The regulations concerning the time stamping service of the Service Provider are given in the {1.5 Standards and regulatory compliance} subchapter. 1.5

25 (altogether: 28)

5.4.11 Recording of the data connected with the time stamping ser-vice

During its operation the IT system supporting the Service Provider’s time stamping service logs at least the following data:

- accesses of the system and messages important for the operation system,

- events affecting the configuration of the system components, change of the system, in-terventions,

- communication with local and external time sources and time variation.

5.5 Organization structure

In the Magyar Telekom Nyrt. organization the organizations involved in the Service Provider’s time stamping service go under the following names:

- Time stamping organization: Magyar Telekom Nyrt. Technology platform branch, Data-base and ISP services department, PKI group,

- Also involved in the provision of the service are the Technology platform branch, Data-base and ISP services department ISP group, as operator of the time signal service.

26 (altogether: 28)

6 Signs, abbreviations and definitions

The document carries the following signs and abbreviations:

� TSP: Time Stamping Policy,

� ISzSz: Time Stamping Service Contract,

� ÁSzF (GTC): General Terms and Conditions of Contract,

� IBSzSz: Magyar Telekom Time Stamping Service Regulations

� OID: Object Identifier (specific document identifier),

� UTC: Coordinated Universal Time, time base according to the ITU-R TF460-5 recommen-dation,

� HSM: Hardware Security Module, Cryptographic unit,

� TTI: Trusted Time Infrastructure (time signal service infrastructure),

{ } between these marks reference is made to a given chapter / subchapter of a document.

[ ] between these marks document reference numbers are given, see: {7 References} sub-chapter.

Service Provider uses the terms given in the TSP in the following meaning:

Term Definition (explanation)

activation data data needed for the operation of the cryptographic module that need to be protected (e.g. PIN code, passphrase or manually handled set of keys)

electronic documents a set of data interpreted through an electronic device subscriber In case of the time stamping service, the user.

stakeholder recipient of the electronic document who acts in reliance on a given time stamp

recipient party (accepting party)

recipient of the electronic document who acts in reliance on a given time stamp

Time Stamping Service Regu-lations

Pursuant to Article 1 of Act CCXXII of 2005 the trust service provider’s statement on the detailed procedural or other operating requirements connected with the provision of certain trust services

Time stamp data permanently linked to or logically connected with an electronic docu-ment that certifies that the electronic document existed in the same form at the time of placing the time stamp

time stamping service provid-er

a trust service provider that provide time stamping service

27 (altogether: 28)

cryptographic key a unique string of signals that controls cryptographic transformation which is needed for performance of the cryptographic transformation, in particular for the creation or verification of electronic signature

certificate For the time stamping service the certificates of the time stamping service providers.

publication of certificate revo-cation status

For the time stamping service information supply to the recipient party on revocation of time stamping certificates. The service can be provided real time or must be based on information updated in predefined intervals.

certificate revocation list For the time stamping service the electronic list containing the IDs of time stamping certificates revoked for any reason, e.g. invalidated, that is issued by the service provider

Revocation registers (certifi-cate revocation register)

For the time stamping service the registers of certificates suspended or revoked which contain at least the fact of suspension or revocation and the time of suspension or revocation

time stamping policy a set of rules in which the service provider, user or other person (organiza-tion) defines the conditions of using a time stamp for a group of users with some common security requirements, or for specified applications

enduser the subscriber, the recipient party and the stakeholder

28 (altogether: 28)

7 References

In this TSP the Service Provider makes reference to the following documents:

[1] Regulation (EU) no 910/2014 (23 July 2014) on electronic identification and trust services for electronic transactions in the internal market

[2] Act CCXXII of 2015 on the general rules of electronic administration and trust ser-vices,

[3] Decree 24/2016. (VI.30) BM on the detailed requirements for trust services and their providers,

[4] ETSI EN 319 421 EU standard: Policy and Security Requirements for Trust Ser-vice Providers issuing Time-Stamps ,

[5] IETF RFC 3161 Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP),

[6] Magyar Telekom Time Stamping Service Regulations (IBSzSz) --- MAGYAR TELEKOM NYRT.

[7] ETSI EN 319 422 EU standard: Time-stamping protocol and time-stamp token profiles

[8] Magyar Telekom Qualified Times Stamping Service General Terms and Condi-tions of Contract (ÁSzF (GTC) --- Magyar Telekom Nyrt.,

[9] Magyar Telekom Time Stamping Service Agreement - short name Service Agree-ment (ISzSz).

Documents

Magyar Telekom Qualified Times Stamping Service …...Version number Date Description of the change 0.90 2004-05-10 First version (technical working materials) 0.91 2004-05-17 Improved