- Identity and digital signature
- Integration
Signator migration to the Amazon Web Services cloud
The current hierarchy of the AOC Consortium is in the final phase of its validity period, as it will expire in 2030. Therefore, since last autumn the AOC Consortium has begun the tasks to manage this situation. On October 16, 2024, the Ministry of Economic Affairs and Digital Transformation published the new hierarchy in its Trusted List of Trusted Electronic Service Providers (TSL).
This new hierarchy will allow:
- extend its validity until the year 2048
- emit with elliptic curves
- increase certificate security
Thus, the AOC Consortium has created a new certification root and two new SubCAs:
- CA CONSORCI AOC (G3) ROOT-A (G3): new root certification authority
- SubCA PUBLIC SECTOR Q (G3) A.1: replacing the current EC-SectorPublic;
- SubCA CITIZENSHIP Q (G3) A.2: replacing the current EC-Ciutatania.
It is expected that the start of issuances by these two new certification entities will begin during the second half of 2025.
The certificates issued by the new certification bodies must allow them to be made same uses than the current certificates and, therefore, the recognition processes necessary to ensure interoperability from the first day of issue.
You will also need to configure certificates of these two new CAs to your systems and applications. It is essential that enable compatibility with these user application certificates. Also Windows server and client systems through corporate domain trusts, JAVA-based applications at the client and server level, etc.
On the other hand, as we mentioned above, we are managing theacceptance of new certificates at the level of systems based on Internet trusts (such as by the main validation services: PSIS and @FIRMA; by the platforms of the AOC Consortium, etc.) so that they are operational when the new certification entities start the emission activity.
Furthermore, if you use any of your own or third-party applications (such as applications from a Ministry or other AGE bodies) that must accept the new certificates, please let us know- Let us know through the User Support Center and we will try to help you manage the functional tests.
For any question in this regard you can contact ours Customer Service Center.