Steps to your SuisseID
Confirm your e-mail address now
20/10/2017 - RSA vulnerability with Infineon smart cards - SuisseID is not affected
Recent press releases (e.g. https://crocs.fi.muni.cz/public/papers/rsa_ccs17, https://www.heise.de/security/meldung/Hunderttausende-Infineon-Sicherheits-Chips-weisen-RSA-Schwachstelle-auf-3864691.html) outline that various smart cards currently have a security vulnerability with Infineon technology. The SuisseID and the organization certificate on SmartCard also rely on Infineon chip technology.
Our card manufacturer informed us that the ATOS CardOS 4.x cards and card reading systems used by SwissSign are not affected. The vulnerability mainly affects cards of the CardOS 5.x generation which still under evaluation at SwissSign.In addition, there is the possibility for everyone to find out via the link https://keychest.net/roca whether the vulnerability affects the card. If you have any further questions, please do not hesitate to contact us also for a certificate of safety from our card manufacturer.
Your SuisseID Team
24.07.2017 – Stopping support for SwissSigner
We have stopped the support for the signature software SwissSigner in favour of common alternatives.
For qualified signatures we recommend the following, for example:
The use of the signature software and its correct application according to the requirements of the Swiss Electronic Signature Act (ZertES) are your responsibility. The validity of your signature or the signatures of other people can be checked using the validator service of the Federal Government.
01.01.2017 - Introduction of new Swiss Signature Law (ZertES): Changes to timestamps and qualified signatures
We are pleased to inform you regarding a significant change to the statutory framework relating to the use of electronic signatures in this document.