Conformant to the latest ETSI TS 119 612 V1.1.1 (2013-06) Electronic Signatures and Infrastructures (ESI); Trusted Lists;
and 2013/662/EU COMMISSION IMPLEMENTING DECISION of 14 October 2013 amending Decision 2009/767/EC as regards the establishment, maintenance and publication of trusted lists of certification service providers supervised/accredited by Member States

This version can handle simultaneously all the six types of the Trusted List:
1) EU Member State Trusted List, version 3
2) List of Lists of the EU, version 3
3) EU Member State Trusted List, version 4
4) List of Lists of the EU, version 4
5) non EU countries, international organization Trusted List, version 4
6) List of Lists of non EU countries and international organization, version 4

New functions:
- upgrade (convert) Trusted List version 3 to version 4 with a single click, make detailed log on the changes
- new Content Errors function (available in the popup menu) that reports only the errors found during the content validation check
- all the generated reports can be viewed in an external browser also
- generate a self-signed certificate for signing the Trusted List (see: TS 119 612, Section 5.7.1), available in the Tools menu
- XML validation against the proper XML schemas determined on the basis of the value of the TSLVersionIdentifier field
- added new country: HR (Croatia)

Improvements:
- keeping PDF/A conformance during signing of the human readable from by converting the visible signature text to graphics

Performance:
- better and faster rendering of the navigation tree

Tags: Analyze trusted lists, Certificate, Check against TSL, Compliance, Human readable form-PDF, Java7, Machine processable form-XML, Member state, Performance, Signature, TSL editing, Generate self-signed certificate for signing the Trusted List

TLEdit now uses the latest certified CryptoSigno Interop v2.3.0 b141 security module for signature generation and verification.

Improvements on the Check against trusted lists function:
- Verifying and validating XAdES v1.4.2 (ETSI TS 101 903 V1.4.2 2010-12) signatures.
- Displaying CRLs found in the validated signature in tree view.

Tags: Signature

Improvements on the signature verification of Trusted Lists:
- Automatically using the Member State signing certificate published in the list of lists (LOTL) for signature verification.
- If the Member State signing certificate is not published in the LOTL, the supposed signing certificate can be selected from the file system.

Improvements on the Check against trusted lists function:
- Using the CA QC/PKC certificates listed in the Trusted List as Trust Anchors, automatically downloading the freshest Trusted List based on the country code of the certificate issuer.

Improvements on the certificate viewer component:
- Using certification path builder wizard to build and display the upper hierarchy above CA services listed as accredited/supervised in a Member State Trusted List. Using the intermediate and root certificates from the signature, downloading the missing certificates using the URLs from the AIA extension and performing cross-certification as a last resort.

Improvements on the Content audit function of the LOTL:
- The report now includes the country code and name of the Member State whose certificate is missing from the PointersToOtherTSL/OtherTSLPointer element.

Tags: Signature, Check against TSL, List of lists-LOTL, Certificate

Improved localization, ability to change the spoken language on-the-fly by loading new lingual dictionaries from the local file system (see also Tutorial 7).

New options at adding a new service:
- insert at the beginning
- append to the end
- insert before the selected item.

Improved revocation check algorithm in Check against trusted lists function.

Configurable keystore types for signing the TSL.

Tags: Localization, Check against TSL, Signature

Bugfix: Text of LegalNotice was ranked as wrong by content audit function if it contains a second optional part (like FR) after the first mandatory part, related to Member State.

Bugfix: Import on scheme information node doesn't work properly when TSL is signed already.

Tags: TSL editing, Signature

Support for creating signature with Smart Card and private key handled by Microsoft CryptoAPI (only on Windows).

Configurable list of PKCS#11 cryptographic devices.

Signature verification with the official published certificate of the Scheme Operator.

Tags: Signature

Signing human readable form of trusted list with PAdES Basic (PKCS#7) signature.

Tags: Human readable form-PDF, Signature