DigiDoc4 uses Trust Service Status Lists (TSLs) to check the trustworthiness of certificates of BDOC and ASiC-E files both upon signing and signature validation.
In order to verify files that are digitally signed with an ID-card or a mobile-ID and/or digitally stamped, all of the root certificates, certifiers and OCSP-responder certificates used to date must be configured in the information system.
You should suspend the certificates of your ID-card as soon as you notice that you have lost it or it has been stolen: this way, your electronic identity remains protected.
If you’re certain that your ID-card has been stolen and cannot be retrieved, you should cancel it.
Kui oled kindel, et ID-kaart on tõepoolest varastatud ja välja ei tule, tuleks kaart tühistada.
The purpose of the validity confirmation service, i.e. OCSP (Online Certificate Status Protocol), is to make it possible to ask about the status of certificates in real time.
The certificates tied to your digital means of identification (such as the ID-card, digital ID, Mobile-ID, Smart-ID) represent you in the electronic world. Therefore, it’s important that your certificates are always protected.
Certificate means the electronic evidence that ties a person (e.g. with their ID-card) to the right to perform legally binding acts (making bank transfers, signing contracts, etc.).
Mobile-ID certificates can be suspended, but not updated: in order to use the mobile-ID with expired or suspended certificates you have to replace the SIM card.
On a computer with several users, your browser may prompt you to manually enter the right certificate when entering e-services with an ID-card. Instructions for avoiding this problem and removing expired/extra certificates.