Data integrity in the client system (electronic seal and timestamp)

eZīmogs (electronic seal)

The organization's eZīmogs (electronic seal) attached to the document confirms the immutability of the content of this document and the belonging to the organization (origin), as well as shows the exact time of eZīmogs (electronic seal) creation.

💡
The signing platform (SignAPI) supports integration of eZīmogs (electronic seal) functionality into the client's system.

Types of eZīmogs (electronic seal)

eZīmogs (electronic seal) certificate in file - intended for deployment in the client's device. This type of eZīmogs (electronic seal) ensures the level of an advanced electronic seal for the document created with it.
eZīmogs (electronic seal) in smart card (QSCD). This type of electronic seal provides a qualified electronic seal level for the document created with it. Document signing with electronic seal in smart card can be done both in the eParakstītājs 3.0 software and by integrating the sealing functionality into the client's information system using the capabilities of the Signing platform.

💡
Both eZīmogs in file and the eZīmogs in the smart card contain a qualified electronic seal certificate.

📗
More information about the possibilities and application of eZīmogs (electronic seal) can be found at www.eparaksts.lv.

Timestamp (TSA)

The timestamp is added by default to all documents created using LVRTC tools (eParaksts mobile, eID card, eParaksts card, eZīmogs).

Customer can also use timestamp as an independent additional guarantee for fixing the time of document and data origin.

The timestamp issued by LVRTC:

is included in the EU Trusted List (QTimestamp);
corresponds to the status of a qualified time stamp;
links the date and time to the data in a way that reasonably prevents any unnoticed changes to the data;
is based on a precise time source that is connected to Coordinated Universal Time;
TSA service provides high performance and availability SLA (service level agreement).

📗
Customer can add the LVRTC issued timestamp to various events in the system, such as attaching it to transaction details, system records, electronically signed documents created with both LVRTC and other UPS tools. More information about the timestamp can be found at www.eparaksts.lv.

How to obtain eZīmogs or access to timestamping service?

To obtain a company electronic seal or access to the timestamp (TSA) service, please contact the eParaksts team by writing to [email protected]. Within five working days, we will contact you to start the process of signing the contract and providing access.

The costs of eZīmogs (electronic seal) and TSA (time stamping service) can be found on www.eparaksts.lv.

💡
If you use an electronic seal, remember that a time stamp is included in the package!

What is necessary to integrate an electronic seal into your system?

For integration of electronic seal functionality, please use the Signing Platform (Sign API).
You will need PFX (Personal Information Exchange) file containing signing certificate and private key converted to Base64 format and authentication certificate. Both are provided by LVRTC.
Use integration platform (eidas.eparaksts.lv) with your credentials for backend request to get server to server access (introspect) token which is used to authenticate against SignAPI service.
Authenticate with introspect token to SignAPI service, start SignAPI session, upload file.
To create electronic seal for document provide all required parameters to SignAPI eSealCreate method. Use signing .pfx file, hash its password with SignAPI central public authentication certificate and your electronic seal authentication certificate to perform signing operation.
Download and validate signed document.
Full documentation of SignAPI service is available here.

💡
Try using the electronic seal and timestamping service in the test environment as well!