+49 6151 8762 777  |   vertrieb@da-rz.de

TSE-PKI Parameters

Due to the Act on the Protection against Manipulation of Digital Basic Records (in short: Cash Register Act), cash registers and related systems must introduce technical security to prevent manipulation from 2020. The requirements are set out in the technical guideline (TR) of the Federal Office for Information Security (BSI), BSI TR-03153 Technical Security Device for Electronic Recording Systems, among others.

The TSE PKI provides a PKI solution that ensures operation in accordance with the requirements of the aforementioned TR and is certified in accordance with BSI TR-03145.

TSE=PKI
TSI-PKI Certificate
Parameters
Contact Details
Certificate Policy
Forms
Blocking Procedure
CERTIFICATE CER PEM SHA-1/SHA256 CRL
DARZ-TSE-SUB-CA-01 (SerNo. 1) CER PEM Fingerprints HTTP LDAP
DARZ-TSE-SUB-CA-01 (SerNo. 2) CER PEM Fingerprints HTTP LDAP
DARZ-TSE-SUB-CA-01 (SerNo. 3) CER PEM Fingerprints HTTP LDAP
DARZ-TSE-ROOT-CA-01 (SerNo. 1) CER PEM Fingerprints HTTP LDAP
DARZ-TSE-ROOT-CA-01 (SerNo. 2) CER PEM Fingerprints HTTP LDAP

(The Re-Keying of the root CA and the associated link certificate will be added here later.)

Parameters for setting up access to the blacklist or LDAP directory.


CRL LDAP URI

inkl. Parameter (BaseDN)

ldap://ldap-tse-pki.da-rz.net/serialNumber=1,cn=DARZ-TSE-ROOT-CA-01,dc=DARZ,dc=de?authorityRevocationList
 
ldap://ldap-tse-pki.da-rz.net/serialNumber=2,cn=DARZ-TSE-ROOT-CA-01,dc=DARZ,dc=de?authorityRevocationList
 
ldap://ldap-tse-pki.da-rz.net/serialNumber=1,cn=DARZ-TSE-SUB-CA-01,dc=DARZ,dc=de?certificateRevocationList
 
ldap://ldap-tse-pki.da-rz.net/serialNumber=2,cn=DARZ-TSE-SUB-CA-01,dc=DARZ,dc=de?certificateRevocationList
 
ldap://ldap-tse-pki.da-rz.net/serialNumber=3,cn=DARZ-TSE-SUB-CA-01,dc=DARZ,dc=de?certificateRevocationList


CRL HTTP URI

http://tse-pki.da-rz.net/tse-pki/crl?issuerDN=CN=DARZ-TSE-ROOT-CA-01,O=DARZ,C=DE,SERIALNUMBER=1

http://tse-pki.da-rz.net/tse-pki/crl?issuerDN=CN=DARZ-TSE-ROOT-CA-01,O=DARZ,C=DE,SERIALNUMBER=2

http://tse-pki.da-rz.net/tse-pki/crl?issuerDN=CN=DARZ-TSE-SUB-CA-01,O=DARZ,C=DE,SERIALNUMBER=1

http://tse-pki.da-rz.net/tse-pki/crl?issuerDN=CN=DARZ-TSE-SUB-CA-01,O=DARZ,C=DE,SERIALNUMBER=2

http://tse-pki.da-rz.net/tse-pki/crl?issuerDN=CN=DARZ-TSE-SUB-CA-01,O=DARZ,C=DE,SERIALNUMBER=3

Organization DARZ GmbH
Department IT-Services
Person Jürgen Henzler
Address Julius-Reiber-Straße 11, D-64293 Darmstadt
Telephone +49 6151 8762-100
Email TSE-PKI@da-rz.de
Website www.da-rz.de

On request TSE-PKI@da-rz.de

Forms are available through request at: TSE-PKI@da-rz.de

The procedures for blocking and suspending certificates are described in the current version of the Certificate Policy.
The current Certificate Policy of the TSE-PKI can be requested via TSE-PKI@da-rz.de