The present document contains requirements for the competence, consistent operation and impartiality of conformity assessment bodies assessing and certifying the conformity of Trust Service Providers (TSPs) and the trust services they provide towards defined criteria against which they claim conformance.
NOTE 1: Those requirements are independent of the type and class of trust service provided.
The present document also contains requirements for the conformity assessment of trust services component services, which later forms part of a separate conformity assessment of a TSP.
NOTE 2: This enables a provider of such component services, which are used as part of the service provided by several TSPs, to avoid having to be assessed several times, or even for a TSP to provide a service based just on a component service or collection of components whether or not they are recognized as a trust service under Regulation (EU) No 910/2014.
The present document applies the general requirements of ISO/IEC 17065 to the specific requirements of conformity assessment of TSPs.
The present document is part 1 of a multipart standard. Other parts include:
• ETSI TS 119 403-2: Electronic Signatures and Infrastructures (ESI); Trust Service Provider Conformity Assessment; Part 2: Additional requirements for Conformity Assessment Bodies auditing Trust Service Providers that issue Publicly-Trusted Certificates.
• ETSI TS 119 403-3: Electronic Signatures and Infrastructures (ESI); Trust Service Provider Conformity Assessment; Part 3: Additional requirements for conformity assessment bodies assessing EU qualified trust service providers.