July 26, 2019
1 min read
As of August 1, 2019, the RSASSA-PSSS algorithm must be used by all operators communicating digitally with the industry. Deliveries using the previous signature algorithms will be rejected.
The new requirement
As of January 1, 2019, all operators in the German energy sector (the energy and water industry market) are required to use the RSASSA-PSS algorithm to ensure secure email communications with market participants.
Who does this affect?
Among others, this new RSASSA-PSS algorithm requirement will affect companies with business relations in the German energy sectorbut who have not yet have not switched to the RSASSA-PSS algorithm to ensure secure email communications.
Rejection of invalid digital signatures
As of January 1, 2019, all operators in the German energy sector (the energy and water industry market) are required to use the RSASSA-PSS. However, signatures with both SHA-512 and SHA-256 have been allowed until the end of July 2019.
As of August 1, 2019, signatures with both SHA-512 and SHA-256 are no longer accepted. In practice, this means that digital signatures not using the RSASSA-PSS algorithm are considered invalid and will be rejected from August 1, 2019, and onwards.
TRUSTZONE’s email certificates
We provide S/MIME secure email certificates that fully comply with the RSASSA-PSSS algorithm requirements.