Kamu SM® Bilgilendirme


 

E-imza tebliği gereği Türkiye'de faaliyet gösteren Elektronik Sertifika Hizmet Sağlayıcıları SHA-1 özet algoritmasıyla ürettikleri ve geçerliliği 15.09.2014 tarihini aşan Nitelikli Elektronik Sertifikaları ücretsiz olarak SHA-256'lı olacak şekilde yenileyecektir.

Bu kapsamda TÜBİTAK Kamu Sertifikasyon Merkezi SHA-256'lı yeni sertifikaları üretmiş ve SHA-1'li sertifikaları 15.09.2014 tarihinde iptal etmiştir. SHA-1'li NES sahibi kullanıcılarımızın Online NES İşlemlerine şifreli giriş yaparak SHA-256'lı sertifikalarını kartlarına yüklemeleri gerekmektedir. Detaylı bilgi için tıklayınız.

 

Zaman Damgasında SHA-256

Zaman Damgası alamayan kullanıcılarımızın/kurumlarımızın yazılımlarından SHA-1 özet algoritmasını tamamen kaldırmaları gerekmektedir. Kullanıcılarımızın, e-imza kartlarında SHA-256 güncellemesini yaptıkları halde imza atamamalarının sebebi zaman damgası alamamalarıdır. İmza atarken kullandıkları uygulamada (EBYS/HBYS/EDYS) SHA-256 geçişi yapıldığında imza atmada sorun olmayacaktır.

About Kamu SM

Kamu SM - Government Certification Authority was established in 2005 within Ulusal Elektronik ve Kriptoloji Arastirma Enstitusu (UEKAE) a subsidiary of Türkiye Bilimsel ve Teknolojik Arastirma Kurumu (TUBITAK). Kamu SM is authorized by the Telecommunications Authority to operate according to the act of Electronic Signature Law 5070 published on January 15, 2004. TUBITAK UEKAE, has been assigned by government to create Kamu SM for its competency in areas of information security and electronic signature technologies.

According to Electronic Signature Law 5070 published on January 15, 2004, secure electronic signature given by authorized Electronic Certificate Service Providers will have the same legal effect as that of a handwritten signature. Using the electronic signature created consistent with the law, online transactions has a legal basis and eliminates the use of paper. The person who wants to give approval on declaration of intent can use electronic signature on company's electronic file system, online services, and online government services.

Kamu SM specializes in qualified certification services to confirm the identity of individuals, provide reliability and security of e-documents, electronic data and hardware. Use of qualified electronic certificates issued by Kamu SM in electronic signatures enables the identification of the signature owner and detection as to whether signed electronic data has been altered.

Kamu SM is obligated to prepare Qualified Electronic Certificates, to load signature creation data with these certificates into the Secure Electronic Signature Hardware and to deliver the certificate to the certificate owner. Kamu SM uses secure products and systems to collect applicant data, to prepare and deliver the certificates , manage operations in a reliable way, and to take all necessary measures in order to avoid certificates being copied or distorted.

Services provided by Kamu SM are based on UEKAE PKI technology and aimed at public government and businesses. The scope of the services covers the following fields:

  • Issuing and management of qualified electronic certificates for secure e-signature:

    Qualified electronic certificates, are used for verification of identity of the signor in reliance upon a “qualified electronic certificate” and can be used for detection of any subsequent change or modification in a signed “electronic data” Qualified electronic certificates are issued according to X.509 standarts and can be installed on web browsers, smart cards and tokens that respect to the standart.

  • Issue of ordinary certificates for general e-signature, logging on domains, databases, applications and www; protection of e-mails; protection of SSL servers; development of the VPN’s; protection and signing of software;
  • Supply software libraries (applets and APIs) for integrating existent infrastructure to e-signature applications.
  • Providing additional services: trusted time stamping, OCSP server; Trusted timestamping is the process of securely keeping track of the creation and modification time of a document.

    Online Certificate Status Protocol (OCSP) is a method for determining the revocation status of an X.509 digital certificate using means other than CRLs. It is described in RFC 2560 and is on the Internet standards track.

  • Consultancy and special training in e-signature;
  • Audit of companies in adaption for e-signature.

Official Authorization Document

Quality Certificates

 

NFSANAB

ISO 27001:2005 REGISTERED COMPANY

Kamu SM provides the services for the following key customers

  1. Turkey Statistical Institute - http://www.tuik.gov.tr
  2. Undersecretariat of Foreign Trade - http://www.dtm.gov.tr
  3. Ministry of Justice - http://www.adalet.gov.tr
  4. Ministry of Finance (MASAK)- http://www.masak.gov.tr
  5. PETKIM Petrokimya Holding - http://www.petkim.com.tr
  6. Banking Regulation and Supervision Agency - http://www.bddk.org.tr
  7. T.C. Department of Labor - http://www.iskur.gov.tr
  8. Istanbul Water and Sewerage Administration - http://www.iski.gov.tr
  9. General Directorate of State Hydraulic Works - http://www.dsi.gov.tr
  10. Ministry of Education Bakirkoy District Directorate - http://www.bakirkoy-meb.gov.tr
  11. T.C. Gazi University - http://www.gazi.edu.tr
  12. TÜBİTAK - http://www.tubitak.gov.tr
  13. UEKAE - http://www.uekae.tubitak.gov.tr
  14. Turkish Patent Institute - http://www.tpe.gov.tr
  15. T.C. Ziraat Bank - http://www.ziraat.com.tr
  16. Telecommunication Authority - http://www.tk.gov.tr
  17. National Oil & Natural Gas Company of Turkiye - http://www.tpao.gov.tr/

".tr" Domain Names Policies, Rules and Procedures

This document includes all the information about the ".tr" domain name policies, domain name allotment process, rules and information as well as information on the problem solving process. Click here to Download Document