DigiDoc4 uses Trust Service Status Lists (TSLs) to check the trustworthiness of certificates of BDOC and ASiC-E files both upon signing and signature validation.
In order to verify files that are digitally signed with an ID-card or a mobile-ID and/or digitally stamped, all of the root certificates, certifiers and OCSP-responder certificates used to date must be configured in the information system.
You should suspend the certificates of your ID-card as soon as you notice that you have lost it or it has been stolen: this way, your electronic identity remains protected.
If you’re certain that your ID-card has been stolen and cannot be retrieved, you should cancel it.
Kui oled kindel, et ID-kaart on tõepoolest varastatud ja välja ei tule, tuleks kaart tühistada.
How to get rid of the old certificates that your web browser offers when you log in to an e-service with your ID-card?
The purpose of the validity confirmation service, i.e. OCSP (Online Certificate Status Protocol), is to make it possible to ask about the status of certificates in real time.
The certificates tied to your digital means of identification (such as the ID-card, digital ID, Mobile-ID, Smart-ID) represent you in the electronic world. Therefore, it’s important that your certificates are always protected.
Certificate means the electronic evidence that ties a person (e.g. with their ID-card) to the right to perform legally binding acts (making bank transfers, signing contracts, etc.).
Mobile-ID certificates can be suspended, but not updated: in order to use the mobile-ID with expired or suspended certificates you have to replace the SIM card.
What to do if you are not prompted for your PIN1 code or certificate (Lenovo computers – Superfish Inc. VisualDiscovery, other manufacturers Web Companion and AdFender; Bitdefender free) when entering e-services.