The Utimaco CP5 HSM is a Common Criteria certified hardware security module based on the CryptoServer Se Gen2 hardware platform, which fulfills the requirements of the eIDAS Protection Profile (PP) [EN419 221-5] as well as other various technical ETSI standards (in particular [EN319401] and [EN319411]). This makes it particularly suitable for eIDAS compliant qualified signature creation and remote signing. Other areas of application include the issuing of (qualified) certificates, OCSP responses, and time stamps.
In the context of remote signature applications, a so called Signature Activation Module (SAM) is required to authorize signatures. A cryptographic module certified according to [EN419221-5], such as the Utimaco CP5 HSM, and a signature activation module in the form of an "internal SAM" that meets the requirements of [ EN419241-2] together form a QSCD.
For the installation of the Utimaco CP5 HSM the installation manual [InstCP5] has to be consulted. For the installation of the SAM firmware the installation guide [AGD_PRE] has to be consulted.