Registered providers of qualified certificates

Trust service providers (TSPs) that wish to initiate a qualified electronic trust service (eTS) must notify the Norwegian Communications Authority (Nkom). A TSP cannot issue qualified trust services before the Nkom verifies that they comply with the requirements in the Act on electronic trust services, and adds them in the national trusted list (TL) with qualified status as qualified trust service providers (QTSPs).

The following QTSPs are included in the trusted list of Norway with qualified status:

Name	Adresse	Phone/fax	Website:	Reg.date	Certificate Policy
Buypass AS	Postboks 4364 Nydalen, 0402 Oslo	Tlf: 23 14 59 00 Faks: 23 14 59 01	http://www.buypass.no/	11.05.2005	Certificate Policy for Buypass Class 3 Qualified Certificates
Commfides Norge AS	Postboks 405, 1327 Lysaker	Tlf: 920 96 070 Faks: 67 10 50 10	http://www.commfides.com/	29.11.2005	CP/CPS for Commfides SHA256 Class 3 Person High and Person High Employee Certificates
Danske Bank	Postboks 4700, 7466 Trondheim	Tlf: 72 90 72 00 Faks: 72 90 72 01	www.danskebank.no	16.02.2006	Norsk BankID sertifikatpolicy for banklagrede kvalifiserte sertifikater til personkunder
Bankenes ID-tjeneste AS	Postboks 7999, 5020 Bergen	Tlf: 55 21 78 12 Faks: 55 21 75 94	-	22.05.2006	Norsk BankID sertifikatpolicy for banklagrede kvalifiserte sertifikater til personkunder
DNB Bank ASA	0021 Oslo	Tlf: 03 000 Faks: 22 48 18 710	http://www.dnb.no/	28.06.2006	Norsk BankID sertifikatpolicy for banklagrede kvalifiserte sertifikater til personkunder
Nordea Bank Norge ASA	Postboks 1166 Sentrum, 0107 Oslo	Tlf: 22 48 50 00 Faks: 22 48 84 70	http://www.nordea.no/	29.06.2006	Norsk BankID sertifikatpolicy for banklagrede kvalifiserte sertifikater til personkunder
Eika Gruppen AS	Postboks 2349 Solli, 0201 Oslo	Tlf: 22 87 81 00 Faks: 22 87 81 70	www.eika.no	30.06.2006	Norsk BankID sertifikatpolicy for banklagrede kvalifiserte sertifikater til personkunder
SpareBank 1 Banksamarbeidet DA	Postboks 778 Sentrum, 0106 Oslo	Tlf: 21 02 50 50 Faks: 21 02 50 51	http://www.sparebank1.no/	03.07.2006	Norsk BankID sertifikatpolicy for banklagrede kvalifiserte sertifikater til personkunder
SpareBank 1 Banksamarbeidet DA	Postboks 778 Sentrum, 0106 Oslo	Tlf: 21 02 50 50 Faks: 21 02 50 51	http://www.sparebank1.no/	05.01.2007	Norsk BankID sertifikatpolicy for banklagrede kvalifiserte sertifikater til ansatte
Eika Gruppen AS	Postboks 2349 Solli, 0201 Oslo	Tlf: 22 87 81 00 Faks: 22 87 81 70	www.eika.no	24.09.2010	Norsk BankID sertifikatpolicy for banklagrede kvalifiserte sertifikater til ansatte
DNB Bank ASA	0021 Oslo	Tlf: 03 000 Faks: 22 48 18 710	http://www.dnb.no/	24.10.2010	Sertifikatpolicy for BankID på mobil - kvalifiserte sertifikater til personkunder
Eika Gruppen AS	Postboks 2349 Solli, 0201 Oslo	Tlf: 22 87 81 00 Faks: 22 87 81 70	www.eika.no	09.02.2011	Sertifikatpolicy for BankID på mobil - kvalifiserte sertifikater til personkunder
SpareBank 1 Banksamarbeidet DA	Postboks 778 sentrun, 0106 Oslo	Tlf: 21 02 50 50 Faks: 21 02 50 51	http://www.sparebank1.no/	21.02.2011	Sertifikatpolicy for BankID på mobil - kvalifiserte sertifikater til personkunder
Statoil ASA	Postboks 8500, 4035 Stavanger	Tlf: 21 02 50 50 Faks: 21 02 50 51	http://www.statoil.com/	08.05.2009	Statoil Policy Disclosure Statement
Nordea Bank Norge ASA	Postboks 1166 Sentrum, 0107 Oslo	Tlf: 22 48 50 00 Faks: 22 56 81 80	http://www.nordea.no/	23.04.2013	Sertifikatpolicy for BankID på mobil - kvalifiserte sertifikater til personkunder

Centrally stored solution

The NNkom has accepted that a centrally stored solution can satisfy the requirements for qualified certificates provided that it is ensured that only the holder of the certificate has access to the private key and that only the holder can use the key. These are absolute requirements. The certification authority must therefore not have any ability to obtain access to the private key and must not be able to copy this. If the private key is damaged or lost, the signature can no longer be used and the certificate must be withdrawn. The Nkom has found that such a solution is within the requirements in Section 14 of the Electronic Signatures Act.

BankID for mobile phones

BankID for mobile phones is a solution for electronic identification and signing for which the private key is stored in the mobile phone's SIM card. BankID for mobile phones requires a separate PIN code to gain access to the private key and can only be used through a defined security channel. BankID for mobile phones was developed by the banks in cooperation with Telenor and was launched in March 2009.

RA (Registration Authority) for Norsk BankID

The Registration Authority (RA) for Norsk BankID has the following functions:

Verify and confirm the identity of private customers.
Gather and send information to the provider about the customer that is necessary for being able to issue a BankID certificate.
Arrange to use or issue a correct unique standard to identify certificate holders/customers.
Guide and assist the private customer in the registration process.
Arrange for key generation in the central key storage.
Have the ability to initiate blocking of certificates.
Comply with requirements in relevant parts of certificate policy for BankID and certificate practices for providers in addition to other relevant documents for BankID.

If you have any further questions please contact the Nkom at telephone no. +47 22 82 46 00 or email firmapost@nkom.no.