Certification
fiskaly SIGN DE is certified according to the current BSI requirements. This page lists the certificates for versions used in the SIGN DE v2 LIVE environment.
Overview
Section titled “Overview”This page provides:
- Access to all official certificates
- Background on the certification process
- The Compliance Reports of our TSS
A TSS has to be certified with the BSI — the Federal Cyber Security Authority of Germany — in order to meet the requirements of KassenSichV.
fiskaly was the first company to have been issued a certification id by the BSI in 2019 for the SMAERS component. During the certification process, there were numerous adaptations, iterations and major improvements to the technical requirements of building a cloud TSS.
The following certificates have to be achieved:
TSS Application — The composite TSS application certification
Protocol Unit — Security Module Application for Electronic Record-Keeping Systems
Signature Creation Unit — Cryptographic Service Provider for digital signature creation
Background
Section titled “Background”The requirements for the safety module are defined in a technology-independent protection profile according to ISO/IEC 15408 (Common Criteria, CC). To meet these requirements, manufacturers must have their technical devices certified by the BSI. The aim of certification is to ensure a standard minimum level of trust and security from all TSSs and compliance with the necessary interoperability requirements.
Protection profiles and technical guidelines:
The sections below contain certificates for versions used in the SIGN DE v2 LIVE environment and are not an exhaustive list of all certificates achieved by fiskaly.
Official document downloads
Section titled “Official document downloads”Public Key Infrastructure
Section titled “Public Key Infrastructure”All certified TSS need to have certificates issued by a certified Public Key Infrastructure. All fiskaly TSS are using the following Sub-CA and Root-CA certified towards TR-03145.
PKI Certificates
Download fiskaly PKI Certificates
Download PKI Concept
PKI information contains the DARZ certificates DARZ-TSE-SUB-CA-01 and DARZ-TSE-ROOT-CA-01.
TR-03153 — “TSS Application”
Section titled “TR-03153 — “TSS Application””fiskaly sign Cloud-TSE (current version, in use since 24.08.2025)
Section titled “fiskaly sign Cloud-TSE (current version, in use since 24.08.2025)”fiskaly sign Cloud-TSE 1.0.5–1.2.0
Section titled “fiskaly sign Cloud-TSE 1.0.5–1.2.0”No active TSSs with these certificates exist after 02.11.2025.
-
Certificate
— 27.05.2021, certificate according to TR-03153 -
Certificate of Conformity
— 27.05.2021, conformity statement according to TR-03153 -
Compliance Report
— 27.05.2021, certification report according to TR-03153 - Environment Protection — “Umgebungsschutz”
CSPL — “Signature Creation Unit”
Section titled “CSPL — “Signature Creation Unit””fiskaly Cloud Crypto Service Provider 1.5.0
Section titled “fiskaly Cloud Crypto Service Provider 1.5.0”fiskaly Cloud Crypto Service Provider 1.2.0
Section titled “fiskaly Cloud Crypto Service Provider 1.2.0”No active TSSs with these certificates exist after 02.11.2025.
SMAERS — “Protocol Unit”
Section titled “SMAERS — “Protocol Unit””fiskaly Security Module Application for Electronic Record-keeping Systems 1.0.15
Section titled “fiskaly Security Module Application for Electronic Record-keeping Systems 1.0.15”fiskaly Security Module Application for Electronic Record-keeping Systems 1.0.5
Section titled “fiskaly Security Module Application for Electronic Record-keeping Systems 1.0.5”No active TSSs with these certificates exist after 02.11.2025.