Mobile-ID is a SIM card-based electronic personal identification service that allows end-users to access e-services, give digital signatures, and otherwise authenticate themselves through electronic channels. Demo Environment and test numbers help in developing services.
In Estonia, the BDOC format and its two subformats are used for digital signatures, which can be recognised by .bdoc and .asice file extensions.
Nowadays, nearly all file formats are suitable for digital signing. There are no restrictions on digitally signed documents exchanged between information systems, but if a signed document is sent to an end-user, the most common and standard file formats should be preferred.
An overview of DigiDoc container formats supported by different versions and components of the ID-software can be found on the DigiDoc container format life cycle page. There is also a sample file for each format.
In order to verify signatures given with test certificates in the DigiDoc4 client, you need to configure the test certificates manually. Otherwise the signature validation check will return the status “Unknown”.
In order to make it easier to add signing support to web applications, we recommend using a JavaScript library with a unified API that allows different plugins to be used in a similar way (independently of the operating system and the browser).
In order to use the mobile-ID identification and signing option in your information system, you need to use mobile-ID rest API.
Advantages of electronic identification over regular authentication solutions that use usernames and passwords.
In order to verify files that are digitally signed with an ID-card or a mobile-ID and/or digitally stamped, all of the root certificates, certifiers and OCSP-responder certificates used to date must be configured in the information system.
Trust Service Status Lists (TSLs) are used in Libdigidocpp (v3.9 and later) and DigiDoc4j libraries. More information on TSLs can be found in the documentation.
Mobile-ID certificates can be suspended, but not updated: in order to use the mobile-ID with expired or suspended certificates you have to replace the SIM card.
If the phone connected to your mobile-ID is lost or stolen, you should immediately suspend the mobile-ID certificates in order to be protected from identity theft.
In order to verify signatures given with test certificates in the DigiDoc4 client, you need to configure the test certificates manually. Otherwise the signature validation check will return the status “Unknown”.
Additional information necessary for developing and testing mobile-ID (mID) services
You should purchase a test ID-card for testing created services and applications. There are test numbers available for the developers of mobile-ID applications. Information and links to test environments.
Valideerimisvead ning hoiatustega dokumendid ja nende käsitlemine DigiDoc tarkvarateekides, lõppkasutaja rakenduses.
