Approval Profile for Certificate Generation – tSd 0104


This document defines the tScheme criteria against which organisations must be successfully assessed in order to be eligible for a Grant of Approval for the provision of Certificate Generation services.


The criteria given in this Approval Profile are related to the provision of Services that result in the creation of an electronic certificate, signed on behalf of an issuing CA in a manner conforming to a published Certificate Policy.

This Service’s function may operate in cooperation with:

  1. services for the registration and verification of the identity of an entity who is entitled to a certificate, together with any qualifying attributes (date of birth, address, credit rating, etc.) as appropriate to the governing Certificate Policy, such as covered by the Approval Profile for Registration;
  2. cryptographic key generation such as covered by the Approval Profiles for Signing Key Pair Management.

EU regulation 910/2014 on electronic identification and trust services for electronic transactions [eIDAS]

Where the CA is issuing Qualified Certificates in compliance with the requirements of [eIDAS], then appropriate Certificate Policies must be used.

Issue 3.03

The full Profile is available as a PDF document free of charge for non-commercial use. To track access, you must register (free of charge) – this entitles you to access the restricted Approvals Profiles page. To register for access to the Profiles please click here. Already registered? Login, then access the files here.


Getting tScheme approval

Approval usually takes at least three months, but it can be quicker.



A collection of white papers and presentations from tScheme.


Our members

We’re a member-led not-for-profit organisation.