Signature Stamp Server (QSealC) Certificate: It provides evidence of a transaction with a legal assumption and protects the authenticity and integrity of the data when relayed by third parties in the PSD2 scheme. It contains fields PSPs (Payement Service Provider) according to the Payment Services Directive (PSD2). This regulation helps modernize electronic exchanges in the banking world.
PSD2 recommends in terms of proof the use of the QSealC server cachet to sign end-to-end information: for retention and identification. If the QSealC is generated and exploited on QSCD cryptographic material, such as eIDAS then the signature is qualified otherwise it has the status of validated.
Establishments identified as PSPs must use PSD2-compliant certificates. These PSPs must be authorized by a National Banking Authority (NCA).
The directive introduces this new type of certificate described in ETSI TS 119 495, which includes elements of qualified eIDAS certificates.
In the PSD2 scheme, banks that offer an online service must offer each other API access to other PSPs via the TLS protocol.
Integrated into an electronic exchange workflow that meets all PSD2 requirements: that is, with TLS bindings with Qwacs certificates, QSealC certificates provide legal proof of the transaction.