QWAC PSD2 Certificates
Qualified Website Authentication Certificates (QWACS) for PSD2 Compliance
Qualified Website Authentication Certificates (QWACs) from Entrust encrypt sensitive data and identify Payment Service Providers and financial institutions, as well as their roles, in compliance with the Payment Services Directive (PSD2) enacted by the European Union.
QWACs enable and provide security using TLS:
- End-to-end data encryption between the server and client
- Authentication and integrity
- PSD2 compliance
QWAC PSD2 Features
Our certificates comply with eIDAS Regulation (EU) No 910/2014 and the Payment Services Directive (EU) 2105/2366. They’re implemented in accordance with ETSI standards EN 319 411, EN 319 412 and TS 119 495.
All of our certificates are identity checked in accordance with European standards and secured using the latest security guidelines: SHA-2/2048 bit keys, 128-256-bit encryption and support RSA encryption.
Cancel and reissue SSL certificates throughout their term without hassle.
Install TLS/SSL certificates on an unlimited number of servers at no extra cost.
Avoid accidental certificate expirations with automatic expiration notifications.
Penalties for Non-Compliance
The EU Commission extended the deadline for compliance to the PSD2 Regulatory Technical Standards (RTS) to December 31, 2020.
It is up to the National Competent Authority (NCA) of each member state to establish penalties for non-compliance. Please refer to your NCA for specific details.
QWAC PSD2 certificates from Entrust are in compliance with, and valid throughout, the European Union.
Clarity and Compliance from Validated Identities
QWAC PSD2 certificates include extended identity validation and identity of the payment service provider and its roles:
- PSP_AI Account information service
- PSP_PI Payment initiation service
- PSP_AS Account services
- PSP_IC Issuing of card-based payment instruments
- Term: 13 months
- 250 SANS supported
- Trusted root
- RSA encryption algorithm
- SHA-2 hashing algorithm
- 2048 bit minimum key size
- Certificates delivered via email
- Verification method: EV+ Domains: File / WHOIS
Our PSD2 QSeals comply with the regulatory technical standards and provide payment service providers with advanced seals to both identify and verify that data has not been tampered with.
Our eIDAS-compliant Qualified Website Authentication Certificates (QWACs) encrypt sensitive communications and identify European organizations to users.
Verify author and document authenticity, establishing trust for electronically transmitted documents.
Authenticate a publisher’s identity and prevent unverified software from being installed.
Digitally sign and encrypt your email and attachments with secure email certificates.
Learn more about Entrust's Qualified Certificates
This quick webinar will give you some insight into the PSD2 compliance requirement from a Common and Secure Communication perspective.
Watch Tony Morbin, Editor-in-Chief of SC Media UK, interview Chris Bailey, VP of Strategy & Business Development at Entrust, on how new European regulations create financial opportunities and risks.
Entrust® Qualified Certificates include Qualified Website Authentication Certificates and Qualified Certificates for Electronic Seals that comply with encryption, authentication, and data integrity requirements within the European Union.