Index of documents supporting the Grant of Approval to
Royal Bank of Scotland’s TrustAssured service.
| Base Approval Profile | tSd0111 | 3.00 |
| Approval Profile for a Certification Authority | tSd0102 | 3.01 |
| Approval Profile for Signing Key Pair Management | tSd0103 | 3.02 |
| Approval Profile for Certificate Generation | tSd0104 | 3.01 |
| Approval Profile for Certificate Dissemination | tSd0105 | 3.01 |
| Approval Profile for Certificate Status Management | tSd0106 | 3.01 |
| Approval Profile for Certificate Status Validation | tSd0107 | 3.01 |
| Approval Profile for Registration | tSd0042 | 3.02 |
What the tScheme Approved Service Mark signifies
When a trust service carries the tScheme Mark, you can be secure in the knowledge that:
For each service, tScheme approval is regularly reviewed and may be withdrawn.
This Grant of Approval does not affirm or endorse any claims of conformance to standards or adherence to guidelines not explicitly listed as forming part of the service assessment.
Approved
Service - Service Description
The subject service of this Grant of Approval is the TrustAssured Service provided by The Royal Bank of Scotland. The TrustAssured Service provides an umbrella framework for the delivery of a range of services to business customers to enable them to transact in greater confidence in on-line environments.
At the core of the service is the ability to identify counterparties, thereby allowing customers to perform a range of on-line transactions on a global basis with the assurance that their trading partners are, indeed, who they say they are. This fundamental Identity Validation Service (IDV), backed by Identrus certificates, is central to each individual service that is delivered under the TrustAssured brand.
RBS has initially delivered a sign and store document management workflow application for Lombard, the leasing subsidiary of RBS. This application allows customers of Lombard to digitally sign leasing applications and associated documentation on-line. During the assessment, this application was examined in detail to evaluate and review the functionality of the TrustAssured service and to assess its compliance with the relevant Approval Profile criteria in a live environment.
TrustAssured digital certificates are provided to customers in the form of smart cards (with accompanying smartcard readers and signing software). In the case of relying parties, it is necessary to provide the necessary hardware and software to be able to generate the requisite IDVs. The hardware is provided in the form of a Hardware Security Module (HSM) to store the customer's digital signing keys and the software is called the DSMS (Digital System Messaging System) which is the software necessary to create, send and receive the IDV check (OCSP messaging standards).
Scope
Currently the TrustAssured Service is only available to non-consumer entities, i.e. business customers and their employees, partnerships, government agencies, associations and sole proprietorships.
RBS will only issue TrustAssured Services to approved customers who have fulfilled stringent ‘Know Your Customer’ requirements as laid down within the extensive Identrus Operating Rules. Each customer signs a Customer Agreement which binds each end-user to a clearly defined set of Terms and Conditions under which the digital certificates may and may not be used.
Participants in the electronic trust services industry strive: