I.CA - Remote Seal

Qualified electronic seal (also referred to as "QSealCD") under Article 27 (3) of Regulation No. 910/2014 - eIDAS is a "Enhanced electronic seal that is created using a qualified seal creation device and is based on a qualified certificate for electronic seal."

Qualified electronic seal can be created in two ways:

  • QSealCD held by the person creating the seal (if the data for the creation of electronic seals is kept in a completely managed environment, but not necessarily exclusively for users).
  • QSealCD remotely (if electronic seal creation data is managed by a qualified trust service provider).

The I.CA RemoteSeal service is option 2. I.CA operates the HSM module where the private key for the electronic seal of the client is stored. Authentication certificate issued to this client is used for verification. A component is installed in the client environment that sends an I.CA request for remote data sealing (data hash, not document content). Returns the cryptogram   that is used to create a sealed document.

Supported signature formats

  • CAdES-B-B, CAdES-B-T (according to EN 319 122), in variants: Internal / External
  • PAdES-B-B, PAdES-B-T (according to EN 319 142), in variants: Invisible / Visible - Text / Image / Text + Image + optional background image
  • XAdES-B, XAdES-T – dle normy ETSI TS 103171, a to ve variantě enveloped

Registration authorities



8/28/2019 Swedish partnership
More here
7/16/2019 I.CA starts issuing certificates using elliptic curve cryptography (ECC)
More here
3/27/2019 I.CA became a member of the OBE QTSP Working Group
More here