Advanced Search

Resolution Of December 2, 2009, Of The Institute For The Elderly And Social Services, Which Publishes The Agreement Charged With Management At The Fábrica Nacional De Moneda Y Timbre-Real Casa De La Moneda, For The Provision Of Technical Services...

Original Language Title: Resolución de 2 de diciembre de 2009, del Instituto de Mayores y Servicios Sociales, por la que se publica el Acuerdo de encomienda de gestión a la Fábrica Nacional de Moneda y Timbre-Real Casa de la Moneda, para la prestación de servicios técnic...

Subscribe to a Global-Regulation Premium Membership Today!

Key Benefits:

Subscribe Now for only USD$40 per month.

TEXT

With date 25 November the Agreement for the implementation of an Encomienda of Management of the Institute of Older and Social Services (IMSERSO) has been signed to the National Factory of Currency and Timbre-Real Casa de la Moneda (FNMT-RCM) for the provision of technical and security services applicable to the certification of electronic signatures and in the field of electronic administration.

In compliance with the provisions of Article 15 (3) of Law 30/1992, of 26 November, of the Legal Regime of Public Administrations and of the Common Administrative Procedure, and in accordance with the powers conferred on this Directorate-General by Royal Decree 1226/2005 of 13 October, resolves:

Proceed to publication in the "Official State Gazette" of the said Agreement, which is incorporated as an annex to this Resolution.

Madrid, December 2, 2009. -Director General of the Institute of Older and Social Services, Pilar Rodríguez Rodríguez.

ANNEX I

Agreement for which the Management Board is implemented by the Institute of Older and Social Services to the National Mint and Timbre-Real Casa de la Moneda, for the provision of services, technicians and security, applicable to the certification of electronic signatures and in the field of electronic administration

In Madrid, 25 November 2009.

UNITED

On one hand, Dona Pilar Rodríguez Rodríguez on behalf and representation of the Institute of Older and Social Services (hereinafter IMSERSO), by virtue of the appointment by Royal Decree 1455/2008, of August 29.

And from another, Don Ángel Esteban Paul, Director General of the National Mint and Timbre-Real Casa de la Moneda (FNMT-RCM), acting on behalf of this Enterprise Public Entity, by virtue of the powers that attributes Article 19 of the Statute of the Entity, approved by Royal Decree 1114/1999, of 25 June (BOE of 7 July), and of its appointment, carried out by Royal Decree 1869/2008 of 8 November 2008 (BOE of 11 November).

Both parties, recognizing the legal capacity and competence required to formalize the present Management Encomienda,

EXPOSE

First. -Law 59/2003, of 19 December, of electronic signature, establishes the bases of regulation of the electronic signature, its legal effectiveness and the provision of certification services, both for the public sector and the private. Article 4 of this Law establishes the use of electronic signatures in the field of Public Administrations, so that, with the basic objective of safeguarding the guarantees of each procedure, additional conditions can be established, such as the imposition of electronic dates on documents of the same nature, which integrate an administrative file.

The fourth additional provision of Law 59/2003 establishes the specialty in the regulation that affects the activity of the FNMT-RCM, referring that the provisions of that Law are without prejudice to the provisions of the article 81 of Law 66/1997, of December 30, of fiscal, administrative and social order measures.

Second. -Article 81 of Law 66/1997, of 30 December, empowers the FNMT-RCM to provide the necessary technical and administrative services to ensure the safety, validity and effectiveness of the issuance and receipt of communications and documents through electronic, computer and telematic techniques (EIT), inter alia, between natural and legal persons with the General Administration of the State and with the public bodies linked to or dependent on it; and of these public subjects to each other. This article, as amended and extended by Law 55/1999, 14/2000, 44/2002, 53/2002 and 59/2003, gives cause of the mandate for the promotion of employment and the application of techniques and means EIT, in the development of the activity and the exercise of the Article 45.1 of Law 30/1992, of 26 November, of the Legal Regime of Public Administrations and of the Common Administrative Procedure and Law 11/2007, of 22 June, of the electronic access of citizens to Public Services.

This Article 81 (2) provides for the provision, by the FNMT-RCM, of the services referred to above, the Autonomous Communities, local authorities, public bodies and entities governed by public law, dependent on them, provided that, in advance, agreements or agreements have been concluded. In paragraph 5, it notes that, in order to extend the services provided by the FNMT-RCM, which would be the scope of this instrument, the Entity may conclude agreements with the various public administrations, entities and bodies. public or dependent, constituting, referred to in Article 81 and development legislation referred to above, a special rule.

In relation to the identification and registration activities, the FNMT-RCM may conclude agreements with persons, entities and corporations carrying out public functions, in which the conditions under which they are established are laid down. can participate in such activities.

Third. -Royal Decree 1317/2001 of 30 November, for which Article 81 is developed, cited above, regulates the regime of the provision of security services by the FNMT-RCM in the issue and receipt of communications and written through electronic, computer and telematic means and techniques. Article 6 empowers the FNMT-RCM to agree with the entities included in its scope, including the IMSERSO, the terms that must govern the provision of its services in relation to communications using electronic, computer and telematics techniques and means.

For its part, the Royal Decree 209/2003 of 21 February regulates the records and the telematic notifications and the use of telematic means for the replacement of the contribution of certificates by the citizens and establishes a regulation specifically aimed at the development and implementation of electronic administration within the General Administration of the State. This Royal Decree amends the Royal Decree 263/1996 of 16 February, which regulates the use of electronic, computer and telematic techniques for the General Administration of the State and Royal Decree 772/1999 of 7 May 1999. the submission of applications, written and communications to the General Administration of the State, the issuing of copies of documents and the return of originals and the arrangements for the registration offices are regulated.

Order PRE/1551/2003, of 10 June, develops the first provision of the aforementioned Royal Decree 209/2003, of 21 February, establishing the requirements of authenticity, integrity, availability and confidentiality recording and reporting devices and applications, as well as the technical protocols and criteria to be subject to and the conditions to be met by the body, body or entity empowered to provide the address service unique electronics as well as the conditions of their delivery.

Fourth. -Law 11/2007, of June 22, of electronic access of citizens to the Public Services, determines the recognition to citizens of their right to relate telematic and electronically to the Administrations Public, in order to contribute to the consolidation of the Electronic Administration, without prejudice to the implementation of the implementation deadlines set out in the standard itself. To this end, the FNMT-RCM, in collaboration with the different Public Administrations, provides technical and administrative services necessary for the identification and authentication of the interveners in the electronic communications of the Public administrations, through the use of electronic signature certificates for officials and other public employees, electronic headquarters certificates and electronic seal certificates for automated administrative action, in the that the Administrations and bodies act, in their electronic registers and offices, to through the own registry offices responsible for accrediting and verifying the special requirements and conditions of use of these electronic certification services to be provided by the FNMT-RCM.

Until the regulatory development of this Law occurs, the Royal Decrees cited above shall remain in force as long as they do not contradict or oppose the provisions of Law 11/2007 of 22 June.

Fifth. -Article 15 of Law 30/1992 of 26 November, of the Legal Regime of Public Administrations and of the Common Administrative Procedure, provides that the carrying out of activities of a material, technical or (a) of the competition services of the administrative bodies or of the entities governed by public law may be entrusted to other bodies or entities of the same or different administration, for reasons of effectiveness or where the means are not available The Commission has been able to do so, without the fact that it has been entrusted with the task of they are the responsibility of the body or entity entrusted with the task of issuing any legal acts or decisions in support of or in respect of which the competent authority is responsible for the exercise of its powers; the specific material activity to be entrusted is integrated.

Sixth. -The National Mint and Timbre-Real Casa de la Moneda is a business public entity that is dependent on the General Administration of the State and is attached to the Ministry of Economy and Finance, through the Sub-secretary of this department, which exercises the strategic direction and effectiveness control of the entity.

Article 2 of the FNMT-RCM Statute, approved by Royal Decree 1114/1999, of 25 June, recognises and establishes, as one of the purposes of the Entity (set out in Article 81 of Law 66/1997), the provision-in the scope of the Public Administrations, or their Public Bodies, linked or dependent-of security, technical and administrative services, in communications through electronic, computer and electronic means and techniques (EIT) as the issue, manufacture and supply of titles or certificates of users (and their supports), in accordance with the provisions of the relevant legal provisions.

For their part, Article 2 (7) and Article 3 (2) of the Staff Regulations, as amended by the single article of Royal Decree 199/2009 of 23 February, set up the FNMT-RCM as its own means and service. The General Administration of the State in the terms of Law 30/2007, of October 30, of Public Sector Contracts and of its Statute.

7. The IMSERSO, in the context of its development of its competences, provides certain services supported by electronic, computer and electronic means and techniques applied to certain administrative procedures. These services must have the necessary security guarantees in accordance with the legal provisions and in order to guarantee the validity and effectiveness of the issuance and receipt of communications and documents produced through techniques and means EIT. Moreover, the electronic identification of the IMSERSO and authentication of the exercise of its competence is also required, in accordance with Law 11/2007, of June 22, of electronic access of citizens to Public Services.

Eighth. -That, according to the reasons now set forth, it has been considered that the administrative, loan and collaboration relations between the IMSERSO and the FNMT-RCM, are implemented through a management mandate, to the a strictly contractual relationship, in which the Administration itself performs its functions with its own means, or those of entities on which the Administration, which carries out the task, has similar control to that which it exercises; on its own services (own resources and technical services). All this, in accordance with the provisions of Article 15, of Law 30/1992, of 26 November, of the Legal Regime of the General Administration and of the Common Administrative Procedure and Articles 4.1.n) and 24.6 of Law 30/2007, of 30 October.

It is stated that this document was approved as a standard document by the Board of Directors of the FNMT-RCM, which will be elevated to the Secretariat of Economy and Finance, through the aforementioned Council, in order to be confirmed by the body of the FNMT-RCM, in accordance with Article 3 (2) of the Statute of this Entity.

While both parties are interested in seeking the maximum extent of the provision of these services in order to make it easier for citizens to have administrative relations through electronic, electronic and technical telematic (EIT), and in accordance with what is foreseen in this exhibition, we proceed to the formalization of the present Management Encomienda according to the following

CLAUSES

First. Object.

1. The purpose of this Decision is to provide for the provision by the FNMT-RCM to the IMSERSO of the following services:

(a) Technical, administrative and security services necessary to ensure the validity and effectiveness of the issuance and receipt of communications and documents produced through EIT techniques and means in the field of action of the IMSERSO, in the technical and administrative conditions which, in the following clauses, are laid down and detailed in Chapter I of Annex I to this Management Committee.

(b) Services relating to the electronic identification of public administrations and the authentication of the exercise of their competence, in accordance with Law 11/2007 of 22 June, of electronic access of citizens to the public Public services, and in particular the activities listed in the following clause and in Chapter III of Annex I to this Management Committee.

2. The FNMT-RCM shall also provide, at the request of the IMSERSO, any or all of the advanced or special services listed in Chapter II of Annex I to this Management Committee.

Second. Scope of application.

For services within the scope of Article 81. -FNMT-RCM shall provide EIT services to persons who have the status of users in accordance with current regulations and the clauses of this Management Committee, when users relate to the IMSERSO within the framework of their respective competences. To this end, the IMSERSO assumes that the certificates (user titles) issued by the FNMT-RCM are universal and will therefore serve the legal relations maintained by users with the different public administrations and, in their Case-law, in the private sector which supports the use of these certificates, in their registers, procedures and formalities.

In the same way, certificates issued or issued by the FNMT-RCM, for other bodies, agencies and administrations in the public sphere of action, may be used by users in their relations with the IMSERSO when the legal order is accepted.

For services of the scope of Law 11 /2007. -FNMT-RCM, for the purposes of the provisions of Law 11/2007, of 22 June, of electronic access of citizens to Public Services, will lend in the terms of the Law and in the those referred to in Chapter III of Annex I to this Encomienda, and subject to the provisions of the Declaration of Certification Practices, accessible in the electronic address:

http://www.ceres.fnmt.es/index.php?cha=cit&sec=3&page=197&lang=es

the following electronic identification and electronic document authentication services of Public Administrations:

Certificate of electronic signature of the staff at the service of the Public Administrations (with support on cryptographic card).

Electronic Seal Certificates of Public Administration, organ, body or entity governed by public law.

Certificate for the identification of electronic Sedes.

Support of the Certificate-User Titles. -For the services of article 81, as for those of Law 11/2007, the FNMT-RCM, will supply cryptographic cards as support of the certificates of the staff to the service of Public administrations and those who are technologically able to admit them and who will also be able to serve as means of identification, entry and presence, of their officials and employees. All this, without prejudice to the provision of a series of infrastructures which, properly integrated, enable the mandates of the legislation referred to in the exhibition of this Encomienda to be complied with.

Extension of the scope of application. -They may adhere to this Encomienda, the agencies and public entities that are dependent on the Contracting Administration, in accordance with the provisions of the eighth clause.

Third. Obligations of the parties for the effective delivery of the services subject to the mandate.

1. For the effective provision of the services covered by the Encomienda, the FNMT-RCM is committed to:

Provide the necessary technical, organizational, and security infrastructure.

To provide the necessary industrial and intellectual property rights, guaranteeing their peaceful use. The FNMT-RCM, excludes any licenses or sublicences, to third parties or to the IMSERSO for applications and systems of the IMSERSO, or third parties, other than those provided directly by the FNMT-RCM, under this document.

Provide the necessary technical assistance in order to provide the IMSERSO with the information necessary for the smooth operation of the systems.

Technologically upgrade the systems, in accordance with the state of the art, without prejudice to the approval of the corresponding technical requirements by the Superior Council of Electronic Administration or, where appropriate, by the competent body.

Issuing time stamps in electronic, computer and telematic communications that take place under the present Management Encomienda, upon request of the IMSERSO.

To provide the necessary technology so that the obligations of the IMSERSO, can be realized; in particular, the necessary applications for the constitution of the Offices of Registration and accreditation and the processing of the applications for electronic certificates. Such applications will be compatible according to technological advances and the state of the art.

To have available to the IMSERSO and the users a Declaration of Certification Practices (DPC), which will contain, at least, the specifications set out in article 19 of Law 59/2003, of December 19, electronic signature. Such DPC will be available in the following electronic address (URL):

http://www.ceres.fnmt.es/index.php?cha=cit&sec=3&page=197&lang=es

This DPC may be consulted by all interested parties and may be modified by the FNMT-RCM, for legal or procedural reasons. The changes in the DPC will be communicated to the users through their electronic address: www.ceres.fnmt.es.

It is necessary to take into account, in any case, the general part of this DPC and, for each type of certificate or scope of action, its annexes, which constitute the applicable Particular Certification Policies and Practices specifically.

In any case, the technical means and technology used by the FNMT-RCM will allow to demonstrate the reliability of the electronic certification service, the confirmation of the date and time of issue, suspension or revocation of a certificate, the reliability of the systems and products (which will have due protection against alterations, as well as the appropriate technical and cryptographic security levels depending on the procedures where they are used), the verification of the identity of the holder of the certificate, through the Registry Offices and accredited accreditation and, where appropriate, exclusively in relation to the party or entity through which the holder of the certificate has been identified and registered-the relevant attributes, as well as, in general, the actions resulting from the implementation in accordance with the relevant Community or national legislation.

However, in the provision of services in the scope of Law 11/2007, the Registry Offices, by the specialties of administrative and administrative law, will not be directly dependent on the FNMT-RCM but on the organ or public body of origin, without prejudice to the management control and registration protocols to be carried out by the FNMT-RCM, in its condition as a Certification Service Provider.

2. For its part, the IMSERSO is committed to:

Issue the receipt of presentation, signed electronically, where the express record of the date and time of receipt of the received communications is made, in accordance with the provisions of the applicable regulations.

Keep notifications, communications, or documentation issued and received in transactions during the relevant time to enforce the rights of the parties.

Encrypt the communications issued and received.

Perform the identification activities prior to obtaining the electronic certificate and, where appropriate, checking and sufficiency of the corresponding attributes, of the holders of the certificates, as well as of the charge and competence of the relevant signatories/custodians. All this, through the Office of Registration and Accreditation designated to the FNMT-RCM, using the procedures established by this Entity, which are listed in the URL www.imserso.es and in the DPC of the FNMT-RCM. Such procedures are documents subject to verifications and audits so they may be modified by the FNMT-RCM for the purpose of improving the service.

3. Registration offices.-The number and location of the Registration and Accreditation Offices where the activities of identification, reception and processing of applications for the issuance of electronic certificates will be carried out will be the one collected in Annex II to this Management Encomienda. Any modification or alteration of this relationship or the location of the offices must be communicated to the FNMT-RCM, who will give the appropriate dissemination to keep the relationship of the network of Registry Offices permanently updated. accreditation for obtaining electronic certificates in accordance with the terms of Royal Decree 1317/2001 of 30 November and other applicable rules.

For the services of article 81 of Law 66 /1997. The IMSERSO will have a network of Registration and Accreditation Offices that will have to have the precise computer means to connect with the FNMT-RCM. In these cases, the accreditation and identification of the applicants for the certificates shall require proof of their identity and of their willingness to have an electronic certificate issued and, where appropriate, of the powers of representation, competence and suitability for obtaining the relevant certificate, and shall be verified in accordance with and in full compliance with the rules applicable.

These Registration and Accreditation Offices of the IMSERSO will be integrated into the Network of Registration and Accreditation Offices to which citizens can contact to obtain an electronic certificate issued by the FNMT-RCM with compliance with the provisions of the applicable rules. The accreditations made by the persons, entities and corporations referred to in Article 81 (9) of Law 66/1997, of 30 December, cited, and by the various organs and public bodies of the Network of Offices of Registration and accreditation shall take full effect and shall be valid for acceptance by any public administration which supports certificates issued by the FNMT-RCM.

For the services of Law 11 /2007. -The Registry Offices of the IMSERSO, for the scope of Law 11/2007, are of internal order of each administration or body concerned and will determine the identity and competence of the Administrations and that of the different signatories/custodians designated by the administrations, entities and related bodies or dependent holders of the certificates, in accordance with the General DPC and the specific Declaration of Practices APE Certification applicable to this type of systems, available for Web query:

http://www.ceres.fnmt.es/index.php?cha=cit&sec=3&page=197&lang=es

corresponding to the certificates and electronic signature systems of this scope and to the forms and conditions of use of each type of certificate (Annex III).

To this end, the IMSERSO will have the Registration and Accreditation Offices that it deems necessary and appropriate for the accreditation of this type of certificates and must have the necessary computer means to connect telematic with the FNMT-RCM and make the applications for issue of the certificates. In the Register Offices, in order to prove and identify the holders and custodians of the certificates, the verification of their identity, the position and the powers of representation, competence and suitability for obtaining the certificate will be required. certificate and the will of the holder of the certificate, verifying in accordance with and in full compliance with the provisions of the applicable legislation.

4. Forms.-The forms and conditions of application for issue and revocation and/or suspension, if applicable, of certificates shall be in accordance with the models set out in Annex III and the Declaration of Certification Practices of the Entity, applicable to each type of certificate, accessible on the Web address referred to in the preceding paragraph.

Fourth. Term of duration. -This Management Encomienda shall enter into force on the day of its signature and shall extend until 31 December 2011.

The duration of the Encomienda may be extended, for calendar years, up to two more exercises if the IMSERSO is expressly agreed upon before its expiration, with these extensions being assumed by the FNMT-RCM.

The procurement of the services provided for in this Encomienda, beyond its initial duration and, where appropriate, the two possible extensions, may only be carried out by new Encomienda.

Fifth. Arrangements for the provision of services.

Target scope.-The provision of the EIT services referred to in the first clause shall be carried out in accordance with the provisions of Chapters I and II of Annex I for services relating to Article 81 of Law 66/1997, and taking into account the provisions of Chapter III of Annex I, for services relating to the scope of Law 11/2007 of 22 June 2007 on the electronic access of citizens to public services.

To this end, both parties undertake to assume the necessary obligations to this end. Similarly, the IMSERSO is obliged to ensure in front of the users for the fulfillment of the obligations that correspond to it as in charge of the identification, accreditation and registration of users and of the civil servants and employees, signatories/custodians, as well as the receipt and processing of requests for dispatch, revocation and, where appropriate, the suspension of any electronic certificates provided for in this Management Encomienda and its Annexes.

Security Measures. -FNMT-RCM undertakes to take all necessary measures in order to maintain the secrecy of the technical security features to be met by the products, services and procedures applied, on their premises and personnel, and, where appropriate, those of collaborating entities, applying, in accordance with the relevant special rules and the Internal Instructions for the Contracting of the Entity, the obligations of relevant confidentiality, restricting the information and publicity of the different security elements, according to applicable standards and, in general, performing the entrusted activity by implementing special security measures, in accordance with the state of the art.

Sixth. Price and payment terms.

Total price.-The consideration to be paid by the FNMT-RCM on the activities carried out in this Management Unit amounts to the amount of ninety-eight thousand four hundred and twenty-three euros per year (98,423,00 €/year), VAT included. If the initial period of duration of the Encomienda is less than one year, the preceding amount shall be prorated, reduced in proportion to its initial duration.

The total price will be imcremented by the supply of 1,000 cards with 32 Kb chips prepared to generate and use digital certificates with four-and-a-side print in front and back, with the Mifare proximity chip for Access control and customization with photo by thermoprinting for the amount of seventeen thousand five hundred and fifty euros with eighty cents (17,550.86 €), 700 cards will be supplied in the financial year 2010 and 300 in the financial year 2011.

The included VAT annuity distribution will be as follows:

For the financial year 2010, of 102,506.67 euros (11 monthly + 700 cards).

For the financial year 2011, of 103,688.27 euros. (12 monthly + 300 cards).

For the financial year 2012, EUR 8,201,92 (monthly December 2011).

For the successive years of life of the Encomienda the amount to be received by the FNMT-RCM on the activities carried out in this Management Committee will be updated by application of the variation of 85% of the CPI (general index year) published in the previous 12 months according to the index approved by the INE.

There is a credit reserve in budget application 3591 227.82 for the financial years 2010, 2011 and 2012.

This price is obtained by adding the amounts listed in paragraphs 1 and 2 below, which may be added to advanced services.

1. Prices for EIT services-Article 81 (Citizens/Companies/Serv. Additional). -FNMT-RCM will receive, for the essential services EIT, listed in Chapter I of Annex I, provided to the IMSERSO the quantity of eighty-six thousand eight hundred Twenty-three euro per year (86,823,00 €/year), including taxes, which will be increased from the first lifetime of the Encomienda, applying the change of 85% of the CPI (year-on-year general index) published in the previous 12 months according to the index approved by the INE, taking as reference the year of the signing of the Entrusts. The application of this price is set out in Chapter I of Annex IV to this Agreement.

If there was an express request for advanced services from those listed in Chapter II of Annex I, the amount above would be increased by the corresponding amount which would be deducted from the application of the tables of Chapter II of Annex IV, of Prices and Plan of Implementation, of this Encomienda.

2. Prices for Services Law 11/2007 (Employee/Seat/Seal/Cards/Serv. Additional). -FNMT-RCM will receive, for the services of Law 11/2007, listed in Chapter III of Annex I, provided to the IMSERSO the amount of eleven thousand six hundred (€ 11.600,00 €/year) (inclusive VAT) amount to be increased from the first life annuity of the Encomienda, applying the change of 85% of the CPI (year-on-year general index) published in the previous 12 months according to the index approved by the INE, taking as a reference the year of the signature of this Encomienda. The application of this price is set out in the tables in Chapters I and III of Annex IV to this Committee.

If there was an express request for services from those listed in Chapter III of Annex I, made by the IMSERSO, the previous amount would be increased by the corresponding amount that would be deducted from the application of the tables Chapter II of Annex IV, Pricing and Implementation Plan, of this Encomienda.

3. Price update. -In the event of any extension of the Encomienda and not the price of the same or agreed to its update, all the prices of each of the corresponding extensions, will be updated applying the variation 85% of the CPI (annual general index) published in the previous 12 months, according to the index approved by the INE, taking as a reference the year of the signature of this Management Committee.

4. Consideration of the prices. -The prices established in this Encomienda and its annexes, have the consideration of tariffs for the purposes provided for in the second paragraph of article 24.6, of Law 30/2007, of October 30, of Contracts of the Public Sector, Once the formalisation of the present Encomienda is authorised by the management body of the FNMT-RCM, in accordance with the provisions of Article 3.2 of the Statute of this Entity. However, the FNMT-RCM shall be obliged to accept any other charges imposed by the Deputy Secretary for Finance, as a governing body of the entity, according to the number of administrations. (a) to the extent to which the budget is allocated and the volume of services provided.

5. Billing. -FNMT-RCM, may carry out monthly billings against partial certifications made by the IMSERSO, by the prorateo of the annual amount to be paid, and also to liquidate in such monthly bills those services additional or advanced requested. The payment of the invoices shall be made, within a period not exceeding 30 days of the invoice date, by bank transfer to the FNMT-RCM account:

Account Code: 0182.2370.49.0208501334.

IBAN: ES28 0182 2370 4902 0850 1334.

BIC Code: BBVAESMM.

The invoices for the FNMT-RCM will be issued in the name of:

IMSERSO Denomination. Computer Area.

Avenue de la Illustration s/n with vta a Ginzo de Limia, 58.

Population Madrid.

Province-CP 28029 Madrid.

NIF/CIF Q2827004I.

Contact Person/Phone: Antonio Sanchez Burgos/913638505.

Reference: Encomienda FNMT.

6. Cost of the validation services (Act 11 2007). -In accordance with Article 21.1 of Law 11/2007, of 22 June, of electronic access of citizens to Public Services, the making available of information on the state of validity of the recognised certificates, issued by the FNMT-RCM in the field of this Law, shall not be cost to the Public Administrations.

Seventh. Review and monitoring commission. -Without prejudice to the provisions for updating the economic conditions of the activities entrusted to it, the parties may propose the review of this Encomienda at any time of its validity, the effects of including, by mutual agreement, the relevant amendments.

At the request of any of the parties, a joint committee may be set up for the examination, monitoring, coordination of the Encomienda and, where appropriate, accessions, as well as for proposals for modification and resolution of the conflicts.

Eighth. Extension of services to other bodies and public entities linked to or dependent on the signatory. -FNMT-RCM shall extend the provision of the services referred to in this Management Committee at the request of any bodies and entities public related or dependent on the Administration making the present Encomienda. This request shall be made through the Protocol of Accession to the Encomienda, as set out in Annex V.

FNMT-RCM shall be bound by the application for accession, provided that the following two conditions are met:

a) That this Entity has the necessary budgetary and productive capabilities and

(b) That, on the part of the body or entity that adheres to, there is sufficient credit reserve or budgetary allocation for the provision of the services in each financial year and this is reflected in the said Protocol of Accession.

Ninth. Responsibility. -FNMT-RCM as a provider of the services mentioned in the first and annexes clause, and the IMSERSO as the recipient of the certification and electronic signature services and in charge of the registration and accreditation functions in the the procedure for the identification, accreditation and registration of users and, where appropriate, administrations and signatories/custodians, each shall be responsible for the damage and damage caused by the operation of the system in accordance with the general rules of the legal system which will result from implementation and in accordance with the obligations assumed through the present Encomienda.

The FNMT-RCM, given the legal mandate of extension of the services, limits its liability, provided that its performance or that of its employees is not due to intentional or gross negligence, up to an annual amount of the present Encomienda increased by a maximum of 10%.

10th. Resolution and Extinction. -Resolution causes. The FNMT-RCM shall be obliged to carry out the activities provided for in this Decision of Management, as a means of its own and technical service of the General Administration of the State, within the meaning of Article 24.6 of the Law 30/2007 of Public Sector Contracts and Article 3.2 of its Staff Regulations, so you may not be able to urge any of the following causes of resolution without prior authorization of the entity's governing body.

The Management Mandate may be resolved by the IMSERSO and in its case of the bodies that are attached, when there is a manifest lack of quality of service, by the FNMT-RCM, or serious non-compliance with the obligations of the latter in the development of its activity. The decision of an acceding body or of the principal signatory of the Encomienda shall not constitute the resolution on behalf of the other bodies which have legal personality independent of their membership or association.

The FNMT-RCM may, subject to the authorization of its membership body, request the resolution of the Encomienda for non-payment of the agreed price, for lack of budgetary entry/credit reserve or for serious non-compliance with the the obligations which correspond to the IMSERSO or the bodies which are attached and which are included in the clauses of this Management Encomienda and its Annexes. The decision in relation to an acceding body or the principal signatory of the Encomienda shall not entail the resolution with the other bodies which have legal personality independent of their membership or association.

Causes of extinction. They will be causes of extinction:

The compliance with the deadline set in the Encomienda and its extensions.

The mutual agreement of the parties.

11th. Data protection.

Regime.-The regime of protection of personal data derived from this Encomienda and the joint action of the parties will be provided for in the Organic Law 15/1999, of December 13, of Protection of Data of Character Staff (LOPD) and in its implementing regulation approved by Royal Decree 1720/2007 of 21 December. The files of the FNMT-RCM will be of public ownership and its creation, modification or deletion has been made by general arrangement published in the "Official Gazette of the State" (Order EHA/2357/2008, of July 30, for which the files are regulated of personal data of the National Mint and Timbre-Real Casa de la Moneda, "BOE" n. º 190, of August 7).

The files of the IMSERSO and, where appropriate, of the entities or entities that adhere, shall be of public ownership and its creation, modification or deletion shall be made by general provision, in accordance with the Law.

Access to data on behalf of third parties. -Without prejudice to data transfers that may be carried out between the Public Administrations in the exercise of personal data protection legislation of its powers, it will not have a data communication character the access that the IMSERSO and the agencies and entities that will adhere, can carry out on the data of personal character that the FNMT-RCM maintains, as responsible of the file, on its own users, natural persons, in order to request the services described herein Entrusts. Such data are those contained in the regulated file, in number 5 of the Annex to Order EHA/2357/2008, cited in the previous paragraph.

Nor will it be of a data communication character the access that the FNMT-RCM could perform on the personal data that, as responsible for the file, the IMSERSO and the bodies or entities that are attached maintain on its users, for the purpose of providing the services described in this Encomienda.

In accordance with Article 12 of the LOPD, the FNMT-RCM, the IMSERSO and the bodies or entities that are attached to it, in their capacity as processors, shall assume the following obligations:

They will only process the data according to the instructions of the file manager and that exclusively refers to the performance of the services contemplated in this Encomienda.

They shall not apply or use the data for an purpose other than the purpose of this Encomienda and its Annexes.

They will not communicate them, even for conservation, to other people.

They will apply security measures that match the type of data they are dealing with.

They will not unnecessarily store personal data in the accesses that are made and if they are stored, after the end of this Agreement, they will destroy or return the data and media to the data controller. appear, by raising the record of such destruction or return.

In the event that the FNMT-RCM, the IMSERSO and the entities or entities that are attached, allocate the data handled to another purpose, communicate or use them in violation of the stipulations of this Encomienda, they shall be also considered to be responsible for the treatment, in response to the infringements they would have incurred.

12th. Legal regime and conflict resolution. The provision of the services referred to in this Management Encomienda and its annexes, as regards the content and characteristics thereof, shall be carried out subject to the regulation contained in the Law 59/2003, of 19 December, electronic signature, article 81 of Law 66/1997, of December 30, of fiscal, administrative and social order measures and its implementing legislation, Law 11/2007, of June 22, of electronic access of the public services, and the rest of the provisions cited in the exhibition as well as the provisions that are applicable and where applicable, how many provisions will be made, during the period of the Encomienda and which will affect its object.

This Agreement is the legal instrument governing the Management Committee that performs the IMSERSO to the FNMT-RCM, in accordance with Articles 4.1.n) and 24.6 of Law 30/2007, of October 30, of the Sector Contracts Public and the Staff Regulations of the FNMT-RCM, as well as the other implementing provisions.

The IMSERSO will have the power to dictate how many acts and resolutions are necessary for the development of the material and technical activity entrusted to the FNMT-RCM, in accordance with the provisions of the article. 15, paragraph 2, of Law 30/1992, of 26 November, of the Legal Regime of the Public Administrations and of the Common Administrative Procedure and in its case special rules.

The parties undertake, through the commission provided for in the seventh clause, to resolve by mutual agreement the incidents that may exist in the interpretation and fulfillment of this Encomienda. The litigious matters which, however, arise between the parties will be subject to Law 52/1997 of 27 November, and detailed rules of development and, in any case, to the judicial-administrative jurisdiction, in accordance with the provisions of its Law regulatory.

13th. Information and publication. -FNMT-RCM shall inform the formalization and, where appropriate, the extinction of the benefit referred to in this Encomienda to the Ministries of Economy and Finance and the Presidency, as well as to the other bodies competent, for the purposes of coordination and interoperability relating to the development of e-Government and the electronic access of citizens to Public Services.

This Management Encomienda shall be published in the terms provided for in the applicable regulations.

And, in proof of conformity, both parties subscribe to the present Management Board and all its annexes, at the place and date indicated in the heading. -National Mint and Timbre-Royal Mint, the Director General, Angel Esteban Paul. -Imserso, the Director General of the Imserso, Pilar Rodríguez Rodríguez.

ATTACHMENT INDEX

Annex I. Technical characteristics of the activities to be carried out by the FNMT-RCM.

Chapter I. EIT Services.

Chapter II. Advanced services.

Chapter III. APE Services (Law 11/2007).

Annex II. Registration and accreditation offices.

Chapter I. Log Procedures (Registration Area URL).

Chapter II. Listing of the registry offices.

Annex III. Forms and conditions of use.

Chapter I. Forms and Class 2 Conditions.

Chapter II. APE forms and conditions.

Annex IV. Pricing and implementation plan.

Chapter I. EIT Services.

Chapter II. Advanced services.

Chapter III. APE Services (Law 11/2007).

Annex V. Model of Accession Protocol.

ANNEX I

Services to be provided

Technical characteristics of the activities to be performed by the FNMT-RCM

CHAPTER I

EIT Services

The National Mint and Timbre-Real Casa de la Moneda (FNMT-RCM), as a provider of certification services, will issue for anyone who requests it a set of certificates, called "Basic Certificate" or "User Title", which allows the holder of the same to communicate with other users, securely.

The format of the certificates used by the FNMT-RCM is based on the format defined by the International Telecommunication Union, telecommunications standardisation sector, in the UIT-T Recommendation X.509 of 31 March 2001. 2000 or higher (ISO/IEC 9594-8 of 2001). The format will be the one for Version 3 of the certificate, specified in this rule.

The certificate will be valid for use with market standard communication protocols, SSL type, TLS, etc.

As associated certification services for the use of certificates by their holders, the FNMT-RCM will provide the following technical services:

User registry.

Issue, revocation, and file of public key certificates.

Certificate publishing and Certificate Registration.

Record significant events.

Generating and managing keys

Generation and management of the keys. -In the procedure for obtaining certificates, the FNMT-RCM will develop the necessary elements to activate, in the position of the applicant, the software that generates through its web browser, a public and private key pair that will allow you to sign and identify, as well as protect the security of your communications through encryption mechanisms.

Private keys will be used under the control of the web browsing software of the user's own, sending all public keys to the FNMT-RCM in order to integrate them into a certificate.

The signature private keys will always remain under the exclusive control of their holder, and saved on the corresponding media, not being copied by the FNMT-RCM.

The FNMT-RCM will ensure that the user, Holder of the certificate, can have sole control of the private keys corresponding to the public keys that are entered in the certificate, by obtaining the evidence appropriate possession, through the award of the unique identification number.

Public key file. -Users ' public keys will remain archived, in case their recovery is necessary, in secure files, both physically and logically, for a period of not less than 15 years.

Uniqueness of keys. -Private keys are unique to certificate holders and are personal and non-transferable.

Public keys are unique to certificate holders, regardless of physical media where they are stored and protected.

Key Refresh. -FNMT-RCM identifies a one-to-one relationship between a user's public key and its public key certificate, not previewing the use of different certificates for the same key. This is why the keys will be refreshed with the certificates when that renewal is covered by the applicable specific regulations.

User Registry

User Registry-The user registry is the procedure through which the applicant for an electronic certificate is identified, his personality is checked, and his effective will to have him issued is verified. "Basic Certificate" or "User Title" by the FNMT-RCM.

This register may be made by the FNMT-RCM itself or any other public administration and, where appropriate, by the other persons, entities or corporations empowered to this effect by the rules that apply. In any event, the registration shall be carried out in accordance with the provisions of the FNMT-RCM, in order to ensure that this registration is carried out in accordance with the applicable and homogeneous specific rules. Similarly, it will be the FNMT-RCM, who defines and provides the necessary means for the realization of this register.

In the event that the registration is made by a Public Administration, other than the FNMT-RCM, the person who is responsible for the registration activity must be personnel at the service of the Public Administration. In such cases the FNMT-RCM shall support the implementation of the different registration offices which are established where necessary, in the following terms:

a) Contribution of the logging application.

b) Contribution of the documentation relating to the installation and management of the application, as well as all those relating to the procedures and rules on registration.

(c) Registration and training of the registrant, which implies the issuance of a certificate issued by the FNMT-RCM for each registry officer, which will ensure the security of communications with the FNMT-RCM, including the electronic signature of the registration requests.

Identification of the applicants for the certificates, verification of their personality and confirmation of their will. -identification of the applicants of the certificates in the registry offices and the verification of their personality shall be made by the display of the National Identity, Passport or other means admitted in law.

In the act of registration, the staff in charge of the accreditation offices shall note that the applicant has the will to request that an electronic certificate be issued by the FNMT-RCM and that the FNMT-RCM meets the requirements required by the legal order.

If you request a certificate of legal person, the procedure for verification of the identity of the applicant and of verification of the data of the legal person and of the sufficiency shall apply. extension and validity of the powers of representation of the applicant as set out in Article 13 of Law 59/2003 of 19 December. The detail of the procedure is contained in the Declaration of Certification Practices: http://www.cert.fnmt.es/content/pages_std/docs/00034_cit_obtain_cert_0000000000%20-%20Declaracion%20de%20Practicas%20de%20Certificacion.pdf

Need to appear in person. -The registration procedure requires the interested party's physical presence to formalize the registration procedure in the accreditation office. However, they shall be valid and the course corresponding to the applications for the issuance of electronic certificates completed in accordance with the model carried out in Annex III to this Regulation shall be given provided that the signature of the data subject has been (a) a notaryly legitimated in the terms mentioned in the model.

Need to confirm the identity of the components by the FNMT-RCM. -If these are requests for electronic certificates to be downloaded on a server or other component, the FNMT-RCM will require the contribution of the documentation that you need to be responsible for that component and, where applicable, the property of the domain name or IP address. (Component certificate is not a recognized certificate or is included in Spanish legislation).

Incorporation of the email address of the holder to the certificate. -It is not mandatory to incorporate the email address of the holder to the certificate, although it will be stated in the case where the holder input that address at the time of registration.

This incorporation will be performed for the purposes of the certificate being able to support the S/MIME protocol in the event that the application used by the user requires it.

When the address of the certificate holder's email is contained in one of the extensions of the certificate itself, or the FNMT-RCM, as a signatory and responsible for the certificate, or the IMSERSO as the person in charge of the certificate users reply that this address is linked to the certificate holder.

Obtaining the "Basic Certificate" or "User Title". -For obtaining this certificate, as well as for revocation or suspension, the applicant shall observe the standards and procedures developed to this end by the FNMT-RCM in accordance with the applicable rules applicable.

Issue, revoke, and file public key certificates

Issuance of certificates. -Certificate issuance involves the generation of electronic documents that accredit the user's identity or other properties and their correspondence with the associated public key; issue of the certificates implies their subsequent submission to the directory in a way that is accessible by all the people interested in making use of their public keys.

The issuance of certificates by the FNMT-RCM can only be carried out by itself, with no other entity or body with the ability to issue these certificates.

The FNMT-RCM, by means of its electronic signature, will guarantee the certificates, as well as the verification of the identity and any other personal circumstances of its owners. On the other hand, in order to prevent the manipulation of the information contained in the certificates, the FNMT-RCM shall use cryptographic mechanisms to ensure the authenticity and integrity of that certificate.

The FNMT-RCM, once the certificate is issued, will publish it and maintain a relationship of certificates issued throughout the lifetime of the certificate in a telematic, universal, online and always available access service.

The FNMT-RCM ensures for a issued certificate:

a) That the user has the private key corresponding to the public key of the certificate, at the time of issue.

b) That the information included in the certificate is based on the information provided by the user.

c) That does not omit known facts that might affect the reliability of the certificate.

Acceptance of certificates. -For a certificate to be published by the FNMT-RCM, it will check previously:

a) That the signatory is the person identified in the certificate.

b) That the signatory has a unique identifier.

c) That the signatory has the private key.

The IMSERSO will ensure that, when you request an electronic certificate, your holder accepts that:

a) The private key with which the electronic signature is generated corresponds to the public key of the certificate.

b) Only the certificate holder has access to its private key.

c) All information provided during registration by the holder is accurate.

d) The certificate shall be used exclusively for legal and authorized purposes and in accordance with the provisions of the FNMT-RCM.

e) The end user of the certificate is not a Certification Services Prester and will not use its private key associated with the public key that appears on the certificate to sign other certificates (or other formats of public key certificates), or certificate listings, as a Certification Services Prestor or otherwise.

The IMSERSO will ensure that, when you request an electronic certificate, your holder assumes the following obligations on your private key:

a) Keep your control.

b) To take sufficient precautions to prevent your loss, disclosure, modification or unauthorized use.

When applying for the certificate, the holder shall provide his/her compliance with the terms and conditions of his/her regime and use.

Revocation and suspension of electronic certificates. -The National Currency and Timbre Factory-Real Casa de la Moneda, will leave without effect the electronic certificates granted to users when one of the following is present circumstances:

a) Request for revocation of the user, by the natural or legal person represented by the user or by an authorized third party.

b) Judicial or administrative resolution ordering it.

c) Death or extinction of the user's personality or inability to come over.

d) Completion of the term of the certificate.

e) Loss or Inuse for damage to certificate support.

f) Misuse by a third party.

g) Serious inaccuracies in the data contributed by the user to obtain the certificate.

h) Any other provided in the current regulations.

The extinction of the effectiveness of a certificate will produce effects from the date the National Mint and Timbre-Real Casa de la Moneda became aware of any of the facts of the extinction. provided for in the previous paragraph, and shall record it in the Register of certificates. In the event of expiry of the period of validity of the certificate, the extinction shall take effect from the end of the period of validity.

The National Currency and Currency Factory-Real Casa de la Moneda will be able to temporarily suspend the effectiveness of the certificates if requested by the user or is ordered by a judicial or administrative authority, or when there are doubts reasonable, on the part of any public user, on the validity of the declared data and its verification requires the physical presence of the data subject. In this case, the FNMT-RCM may require, in a reasoned manner, its appearance before the accreditation office where the identification activity was carried out prior to obtaining the certificate or, exceptionally, before another accreditation office the effect of the practice of the checks carried out. Failure to comply with this requirement for a period of 10 days may result in the revocation of the certificate.

The suspension of the certificates will have an effect in the way they are expected to expire.

The extinction of the status of public user shall be governed by the provisions of this Encomienda or whatever is determined, where appropriate, by the rules in force or by judicial or administrative decision.

Communication and publication in the Register of Certificates of Circumstances determining the suspension and termination of the validity of an already issued certificate. -FNMT-RCM will supply the IMSERSO with the mechanisms of the transmission For the purpose of establishing a continuous and uninterrupted communication service between the two in order to ensure that, by means of telematic means or through a call centre to users, it is immediately brought to the attention of the FNMT-RCM any circumstances of which he is aware and which is decisive for the suspension; revocation or termination of the validity of the certificates already issued, in order to allow the immediate publication of this fact in the updated directory of certificates referred to in Article 18 of Law 59/2003, 19 of December, electronic signature.

The FNMT-RCM shall make available to the holders of the certificates a user service centre which will enable any doubt or impact on the validity or use of the certificates to be resolved.

In addition, the above mentioned attention center will allow to resolve any doubts or incidences regarding the validity or use of the certificates.

The IMSERSO and the FNMT-RCM will respond to the damages caused by any delay that is attributable to them in the communication and publication in the Register of Certificates, respectively, of the circumstances of the knowledge and which are determining the suspension, revocation or extinction of a certificate issued.

Publishing certificates of public key and certificate registration

Publication of public key certificates. -The FNMT-RCM will publish the certificates issued in a secure directory.

When the certificate is revoked, temporarily or definitively, it shall be published in the Register of certificates, which shall include a list of revoked certificates, comprehensive of the certificates issued by the FNMT-RCM has been extinguished or suspended for at least one year after its expiry date.

This publication can be:

a) Direct publication by the FNMT-RCM.-This operation is performed by the FNMT-RCM through the publication in a directory of its own in which it offers access to:

Revoked certificate lists. The update to the secure directory of the certificates will be done as follows:

Revoked certificates, at the time of effect revocation. -The update to the safe directory of revocation lists will be performed on an ongoing basis.

The query for this directory will be done online, by direct access of the user. This service enables the continuous availability and integrity of the information stored in the directory.

Both certificates and revocation lists will be signed with the FNMT-RCM's signature private key.

b) Publication in external directories. -FNMT-RCM may publish externally, in public directories offered by other entities or organizations, by periodic or online replication, both certified and revoked certificates. These lists, as well as those published internally, will be signed with the FNMT-RCM's signature private key.

Frequency of publication in external directories.-publication in directories external to the FNMT-RCM may be carried out periodically or online, depending on the requirements of the entity or body that offers the directory.

Access Control. -In the direct publication by the FNMT-RCM, the directory access will be performed according to the type of user, so that:

(a) The organs of the General Administration of the State, as well as the public bodies linked or dependent on it, shall have access to all the certificates without any restriction as to the information contained in the directory. Access will be performed with prior authentication. This access will be restricted to read-only and search, and any information contained in a user's entry can be used as a search key.

(b) The Autonomous Communities, the Local Entities, as well as the Public Bodies linked to or dependent on them, shall also have access to all certificates without any restriction on the information contained therein. in the directory. Access will be performed with prior authentication. This access will be restricted to read-only and search, and any information contained in a user's entry can be used as a search key.

c) The operators and administrators of the infrastructure and the internal modules, will have access to all the information in the directory, being able to perform all types of operations according to the previously defined profile for the Comprehensive Security Plan. This access will be performed with prior authentication.

(d) Other users shall have restricted access to their own certificate, and to those of the organs of the General Administration of the State, and public bodies linked or dependent on it, and to those of the Communities Autonomous, local authorities and public law entities linked to them. Access will be read only, not being able to perform operations to add, delete, modify, or make entry listings in the directory.

As for revocation lists, both internally and externally published, access will be public and universal, to verify this fact.

Register of significant events

Types of events recorded. -FNMT-RCM will register all those events related to its services that may be relevant in order to verify that all internal procedures necessary for the development of the activities are carried out in accordance with applicable legal regulations and as set out in the Internal Security Plan, and allow the detection of the causes of a detected anomaly.

All registered events are likely to be audited by an internal or external audit.

Frequency and file period of an event record. The frequency of recording operations will depend on the importance and characteristics of the events recorded (either to safeguard security) the system or procedures), always ensuring the preservation of all relevant data for the verification of the proper functioning of the services.

The archiving period of the data for each record will also depend on the importance of the events recorded.

An event log file. -The FNMT-RCM will perform a secure and constant recording of all relevant events from the security and audit point of view (performed operations) that you are performing, for the purpose of reduce the risks of violation, mitigate any damage caused by a breach of security and detect possible attacks.

This file is provided with a high level of integrity, confidentiality, and availability to prevent attempts to manipulate certificates and stored events.

The FNMT-RCM will keep all the most important recorded events archived, maintaining their accessibility, for a period of never less than fifteen years.

In the case of the history file of the certificates, they will remain archived for at least fifteen years.

Relevant data to be recorded. -The following relevant events will be recorded:

a) The issue and revocation and other relevant events related to the certificates.

b) All operations concerning the signature of certificates by the FNMT-RCM.

c) Signatures and other relevant events related to Revocated Certificate Lists.

d) All access operations to the certificate file.

e) Relevant key generation events.

f) All key file service operations and access to the expired own key file.

g) All key recovery related operations.

The management and operation functions of the event archiving and audit systems will always be entrusted to specialized staff of the FNMT-RCM.

Protection of an Activity Record. -Once the activity of the systems has been recorded, the records may not be modified, nor deleted, remaining archived under the original conditions during the period indicated.

This record will have read access only, being restricted to people authorized by the FNMT-RCM.

The recording of the record, in order that no data can be manipulated, shall be performed automatically by a specific software that to this effect the FNMT-RCM deems appropriate.

The audited record, in addition to the security measures set forth in your recording and subsequent verification, will be protected from any contingency, modification, loss and disclosure of your data during your recording in external media, changing this media and storing them.

The FNMT-RCM ensures the existence of backups of all audited records.

CHAPTER II

Advanced Services

Digital Dated Service

Introduction

Time Sealing is a method for testing a data set ("datum") existed before a given moment and furthermore that no bits of this data have been modified since then.

In addition, time sealing provides added value to the use of digital signature as it alone does not provide any information about the time of signature creation. Digital certificates used by the digital signature algorithm have a period of validity and therefore, the signature without the digital datelage, passed the validity of the certificate, can always be repudiated.

To associate data with a specific time of time you need to use a Sellado Authority (TSA-Time Stamp Authority) as a third party of trust.

Protocol

The TSA centralizes the issue of temporary certificates. The role of this entity will be to produce, store, verify and renew the temporary certificates. The TSA will be a third party of trust (TTP), being your signature on the temporary certificate sufficient to prove the validity of this.

This protocol allows the time stamp of any type of digital information, and protects the confidentiality of dated data.

The time stamp service user must be a holder of a certificate issued by the Certification Authority of this FNMT and must be requested by the authorized user or party.

The TSA makes use of a certificate exclusively issued for time-sealing tasks, that is, the "extendedKeyUsage" extension, whose value is id-kp-timestamping, is critically present on its certificate.

Time Stamp Request. -Once the user has an X.509 certificate and their corresponding private key will be able to make time stamp requests. The process for performing a sealing request is as follows:

1. The user selects the electronic file from which the TSA will be requested to be sealed.

2. The client application consists of a summary of the contents of that file.

3. The user selects the service policy that you want, the reference number, the version, ...

4. The client application composes a digital datelage request and sends it via HTTPS.

Time Stamp Response. -Once the TSA has received the seal request and accepted it, it will return the client application to the sealing response or Response via HTTPS. This Response is an object that contains a required field that is the status of the operation and if it was successful it also contains a CMS SignedData object, which is the signature of the object that contains all of the information in the certificate of time. The customer may choose to store that Response directly, validating it in advance or may also choose to perform the verification of the response, in case there have been no errors. To do this:

1. The client application recompiles the Response object, extracting the status of the operation, and if this is GRANTED the CMS SignedData object can also be extracted.

2. The client application recompiles the CMS SignedData object, extracting the signed data and verifying that the signature is correct, making use of the TSA certificate included in the CMS object.

3. The certificates included in the CMS object are obtained and "path validation" is made.

4. If the client has selected it, the certificates are checked for OCSP (On-line Certificate Status Protocol) to check the revocation status of those certificates.

5. The client application will get the "token" stamp data.

Applicable Standards

The Time Selside service definition is based on the specifications of the IETF-PKIX RFC-3161-"Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP)" and the corresponding ISO 18014-2 standard, in the which the FNMT-RCM has participated as processors of the same.

Below are briefly described some of the points in the above standard that have the greatest impact on the definition of the final service solution.

The RFC3161 standard defines among others, the format of the time stamp request and the response generated by the TSA. It also sets out the different security requirements a TSA should meet.

One of these requirements is that all the time-stamped TSA generated must be digitally signed by the TSA with the private key of a valid digital certificate issued especially for this purpose.

On the other hand the mentioned standard specifies that time-stamped ("tokens") generated by the TSA cannot include any identification of the client that requested the operation. As a result, it is not necessary for the time stamp request messages received by the TSA to contain some type of client authentication.

The standard lists different transport mechanisms for TSA messages. None of these methods is mandatory; all of them are optional and even consider the possibility of supporting new mechanisms in the future. The mechanisms that specify the RFC3161 document are:

Protocol using email.

Protocol based on using FTP.

Socket-based protocol using IP port 318.

Protocol via http/ssl.

It should also be noted that the standard only defines the time stamp request operation and the corresponding response, leaving other types of operations, such as sealing validation, without any specification, although the implementation of this type of operations should be performed.

The RFC 2630 standard defines the format used for the encapsulation of signed, encrypted, summarized data, or for authentication of arbitrary messages. RFC 2630 derives from PKCS#7 version 1.5 (RFC 2315).

Within the EESSI initiative the previous legislation has been collected through ETSI TS 101 861, as it has been extracted in this text.

Data structures

The data structures used in the protocol are as follows:

TimeStampRequest ::= SEQUENCE {

integer version {v1 (1)},

messageImprint MessageImprint,

reqPolicy PolicyInformation OPTIONAL,

nonce Integer OPTIONAL,

certReq BOOLEAN DEFAULT FALSE,

extensions [0] IMPLICIT EXTENSIONS OPTION}

TimeStampResp ::= SEQUENCE {

status PKIStatusInfo,

timeStampToken TimeStampToken OPTIONAL}

TSTInfo ::= SEQUENCE {

INTEGER version {v1 (1)},

policy TSAPolicyId,

messageImprint MessageImprint,

serialNumber INTEGER

genTime GeneralizedTime,

Accuracy Accuracy OPTIONAL,

ordering BOOLEAN DEFAULT FALSE,

nonce INTEGER OPTIONAL,

tsa [0] GeneralName OPTIONAL,

extensions [1] IMPLICIT EXTENSIONS OPTION}

Time Source

The secure time source is a service that provides the exact instant at the time the request is made.

The time sources used by the Digital Fetch Authority is the ROA.

Once received the time source distributes the temporary reference to the Digital Fetch Authority by making use of the Network Time Protocol (NTP) with a precision of between one (1) and ten (10) milliseconds.

Technology Update

The FNMT will submit the service to the constant technological update that allows the availability of the service and the access to it to meet at all times the initial technical criteria as well as those that fruit of the technological advances or regulatory development, be applicable to you.

This update will be performed, trying to avoid as far as possible the change in the procedures followed to the date of the update by the headlines.

The FNMT shall notify the holders 2 months in advance of any updates that may cause modifications to the procedures for access to the address or query of the deposited content.

Service Practices

The detailed statement of service practices will be published in the electronic address of the FNMT and may be varied without notice. The variation will not limit the service.

CHAPTER III

APE Services (Law 11/2007)

CA Certificate Validation Service APE. -To check the validity of the certificate of the APE Certification Authority, two mechanisms have been provided for the discharge of the CRL associated with that certificate. Both are available in the CA's own certificate, such as CRLDistributionPoints and are, by this order:

LDAP. -Localization of the ldap service for the CRL download of the root AC of the FNMT-RCM:

ldap://ldapfnmt.cert.fnmt.es/CN=CRL,OU=AC root FNMT-RCM, O=FNMT-RCM, C=ES?authorityRevocationList?base?objectclass=cRLDistributionPoint

This ldap service will be rendered in its version 3, in binary mode, being available in the standard port for the ldap service (389), and without requiring any authentication.

The provision of the service will be universal, free of charge, and without access control, having only the restriction of being able to download a single crl on every connection made that in this case there is only one CRL, the ARL.

Access to this service will be available through the Internet as well as through the SARA Network.

The CRL issued for this infrastructure will have a validity period of 3 months and will be published 10 days before its expiration and, in any case, whenever any certificate issued by the root AC of the FNMT-RCM is revoked.

The FNMT-RCM reserves the right to block access to those Ip addresses for which improper or abusive use of this service is observed.

HTTP. -Localization of the http service for the CRL download of the root AC of the FNMT-RCM:

http://www.cert.fnmt.es/crls/ARLFNMTRCM.crl

The CRL issued for this infrastructure will have a validity period of 3 months and will be published 10 days before its expiration and, in any case, whenever any certificate issued by the root AC of the FNMT-RCM is revoked.

The service delivery will be universal, free of charge, and without access control, with only the restriction of being able to download a single crl on each connection made.

Access to this service will be available through the Internet as well as through the SARA Network.

The FNMT-RCM reserves the right to block access to those IP addresses for which improper or abusive use of this service is observed.

End Entity Certificate Validation Service for APE.-The Certificate Validation service for the APE framework will be provided through the following services:

APE CI CRLs Download Service using LDAP protocol.

APE CI CRLs Download Service using http protocol.

The availability of multiple services for certificate validation provides full compatibility with the different needs of applications where the issued Final Entity certificates will need to be integrated for the APE infrastructure.

AC APE CRLs Download Service using LDAP protocol. -This service will be universal, anonymous, free of charge, and if no authentication, such that any customer can download the CRL for power validate a Final Entity certificate issued by the APE CI.

This service will be provided from the following URL on the standard ldap 389 port:

ldap://ldappape.cert.fnmt.es/CN=CRLnnn,OU=AC APE, O=FNMT-RCM, C=ES?certificateRevocationList?base?objectclass=cRLDistributionPoint

This CRLs distribution point will be inserted into all the End Entity certificates issued by the APE CI, with each CRLnnn case being the CRL number that corresponds to that certificate.

Access to this service will be available through the Internet as well as through the SARA Network.

The FNMT-RCM reserves the right to block access to those Ip addresses for which improper or abusive use of this service is observed.

AC APE CRLs Download Service via HTTP protocol. -This service will be universal, anonymous, free of charge, and if no authentication is available, so that any client can download the CRL for power validate a Final Entity certificate issued by the APE CI.

This service will be provided from the following URL on the standard http port 80:

http://www.cert.fnmt.es/crlsape/CRLnnn.crl

This CRLs distribution point will be inserted into all the End Entity certificates issued by the APE CI, where in each case CRLnnn is the CRL number that corresponds to that certificate just like the previously described.

Access to this service will be available through the Internet as well as through the SARA Network.

The FNMT-RCM reserves the right to block access to those Ip addresses for which improper or abusive use of this service is observed.

Digital Fetch Authority (TSA) Service for APE.-The Time Selside service will be provided through the URL:

http://tsaape.cert.fnmt.es/ TSS/HttpTspServer.

This service will NOT require client authentication, but if it will be necessary for the body that wants to use it, you will provide the IP with which you will access that service to have control of your activity and you will need your authorization by the FNMT-RCM before you can make requests.

This service is an IETF RFC 3161 compliant Digital Fetch Authority, and the requests made will be of the type "application/timestamp-query" using the POST method.

The temporary reference used as the time source of said Digital Fecto Authority is based on the Royal Syncism System of the Navy installed in the CPD of the National Mint. This system aims to provide a temporary reference source traceable to the UTC time scale (ROA).

The responses of the Digital Fetch Authority, of the type "application/timestamp-reply", will be signed with a certificate issued by the APE framework, with an RSA key size of 2048 and signature algorithm SHA-256.

The certificate of signature of the Digital Fecto Authority's responses may be validated by any of the methods set out in the previous paragraph.

The service is based on the "appliance" Time Stamp Server in the nCipher company.

Access to this service will be universal and will have visibility over the Internet as well as through the SARA Network with the only commented restriction of IP address control.

The FNMT-RCM reserves the right to block access to those Ip addresses for which improper or abusive use of this service is observed.

Certificate of Electronic Signature of Personnel at the Service of Public Administrations

FNMT-RCM does not regulate the use of this certificate, as it is established in Law 11/2007, of 22 June, of electronic access of citizens to Public Services and other applicable legislation, limiting itself to creating a technical infrastructure at the disposal of the relevant public administration, body or entity. Also, all those circumstances and requirements concerning the users, by the very nature of the certificates of public employee, will be controlled exclusively by the Administration, informing the FNMT-RCM of its alteration or modification; all of this, through the Registry Offices authorized by the Administrations, Agencies and Public Entities.

The FNMT-RCM certification and electronic signature services infrastructure allows for different uses and functionalities:

1) Main use. The main use of the certificate of public employee is the electronic identification and joint authentication of the Administration, Agency or Public Entity acting in the exercise of its powers and the identity, position or employment of the staff your service. This certificate is the electronic certification issued by the FNMT-RCM that binds its holder (the Administration, the Authority, the Agency or the Public Entity) with signature verification data and confirms: (1) the identity of the signatory and custodian of the keys (personnel serving the Public Administrations that perform electronic signatures using the certificate on behalf of the Acting Administration), their personal identification number, position, job position and/or authorized status, and (2) the holder of the certificate, which is the Authority, Body or Entity of the Administration public, either this General, Autonomic, Local or Institutional.

2) Other uses. This certificate may be used by the staff (firmante/custodian) for official, administrative or work activities related to the different rights and obligations of the staff in the service of the Public Administrations in the the scope of its Administration, Agency or public entity of dependency or, where appropriate, with the rest of the Public Sector.

3) Unauthorized use. User personnel are not authorized to use these certificates for uses other than those set out in paragraphs 1) and 2) above.

4) Legislative framework. The use of the public employee certificate will be carried out in the field of Law 11/2007, of June 22, of electronic access of citizens to the Public Services and in accordance with the competences of the Administration, Agency or Entity acting and of the powers conferred on its staff (irrespective of their status: civil servants, employment, statutory, etc.) by virtue of their appointment, appointment, contract or legal instrument governing their relationship with such staff. Administrations.

The certificate profile is the one described in the certification practice declarations.

Electronic stamp of public administrations

FNMT-RCM does not regulate the use of this certificate, as it is established in Law 11/2007, of 22 June, of electronic access of citizens to Public Services and other applicable legislation, limiting itself to creating a technical infrastructure at the disposal of the users and custodians of the Administration, the Agency or the public entity holder of the certificate, owner or person responsible for the administrative unit and the relevant IT component. Likewise, all those circumstances and requirements concerning the users and custodians, by the very nature of the electronic Sello certificates of the AA.PP., will be controlled exclusively by the Administration, informing the FNMT-RCM of its alteration or modification; all of this, through the Registry Offices authorized by the Administrations, Organisms and Public Entities.

The FNMT-RCM certification and electronic signature services infrastructure allows for different uses and functionalities:

1) Main use. The main use of the AA.PP electronic Seal certificate is the identification and authentication of the exercise of the competence in the automated administrative action and the authentication of documents and actions of the Administration, Body or public entity holding the same. The electronic Seal certificates of the AA.PP. are those certificates issued by the FNMT-RCM that link signature verification data to the identification and authentication data of certain Administration, Agency or Entity public and their respective organisational units (unit which performs automated administrative action through computer components-area, section, department) and links the natural person responsible for the Registration Office and/or Representative of the Administration, Body or Entity holder of the certificate in which the delegate and who will act as custodians of the certificate and its keys.

2) Unauthorized use. The user and/or custodian is not authorised to use these certificates for uses other than those set out in paragraph 1 above.

3) Legislative framework. The use of the AA.PP electronic Seal certificate will be carried out in the field of Law 11/2007, of June 22, of electronic access of citizens to the Public Services and in accordance with the competences of the unit belonging to the Administration, Agency or public entity holder of the same and of the infrastructure hosting the AA.PP electronic Seal certificate.

The certificate profile is the one described in the certification practice declarations.

Electronic administrations of electronic administrations

FNMT-RCM does not regulate the use of this certificate, as it is established in Law 11/2007, of 22 June, of electronic access of citizens to Public Services and other applicable legislation, limiting itself to creating a technical infrastructure at the disposal of the users and custodians of the Administration, Agency or Public Entity of the corresponding electronic headquarters. Likewise, all those circumstances and requirements concerning the users and custodians, by the very nature of the certificates for the identification of electronic Sedes, will be controlled exclusively by the Administration, informing the FNMT-RCM of its alteration or modification; all of this, through the Registry Offices authorized by the Administrations, Organisms and Public Entities.

The FNMT-RCM certification and electronic signature services infrastructure allows for different uses and functionalities:

1) Main use. The main use of the certificate is the identification of electronic Sedes and the establishment of secure communications with these Sedes. Certificates for the identification of electronic Sedes are those certificates issued by the FNMT-RCM and which link signature verification data to (1) the identifying data of an electronic headquarters in which a person exists a physical person acting as a custodian of the certificate and his/her keys and (2) the holder of the certificate which is the Administration, Body or Public Entity to which he belongs and which is, in addition, the holder of the electronic address, domain and infrastructure of which the Electronic Headquarters is accessed.

2) Unauthorized use. The user and/or custodian is not authorised to use these certificates for uses other than those set out in paragraph 1 above.

3) Legislative framework. The use of the certificate for the identification of electronic Sedes, will be carried out in the field of Law 11/2007, of June 22, of electronic access of the citizens to the Public Services and in accordance with the competences of the Administration, Public body or entity that holds the domain and the infrastructure that hosts the electronic headquarters.

The certificate profile is the one described in the certification practice declarations.

Note about service delivery:

The services referred to in this Annex I, which is provided by the National Currency and Currency Factory-Royal Mint, shall be carried out in accordance with the provisions of the legislation applicable to them and the agreements, in the case of contracts or contracts concluded by the FNMT-RCM with the different public authorities or with private persons or entities.

ANNEX II

Registration and Accreditation Offices

Chapter I. Log Procedures (Registration Area URL).

Chapter II. Listing of the registry offices.

With specific expression of the Accreditation Offices, their relationship, their denomination, the corresponding postal address, the IP address.

Registration Office at:

IMSERSO

Pz. /C

I.P. Address:

ANNEX III

Forms and Terms of Use

Chapter I. Forms and Class 2 Conditions.

Chapter II. APE forms and conditions.

ANNEX IV

Pricing and Deployment Plan

CHAPTER I

EIT Services

1. Annual price of services. -A fixed price for the EIT services, including taxes, of 86,823,00 €/year, which will be passed on annually to the variation by impact of 85% of the annual CPI.

A fixed price is established for services in the scope of Law 11/2007, including taxes, of € 11,600,00/year, which will be passed on annually to the variation by impact of 85% of the annual CPI.

This amount does not include the extension of the service from the scope of Law 11/2007 to the Organisms that adhere to the present Management Committee.

2. Establishment of the accreditation offices for the EIT services. -It may be possible to establish how many accreditation offices are deemed suitable by the IMSERSO, which must be made public, indicating their postal address and hours of care to the public, at www. _____

The price for setting up additional accreditation offices to the central office is set out in:

32.75 euros per accreditation post. This price includes the accreditation software.

41.06 euros each person in charge of accredited accreditation. This price includes the issue of a card for each person and their training in the facilities of the FNMT-RCM.

In the case where the training is provided at the premises of the agreement, the above rate will be added to the expenses resulting from the stay set at 204.38 euros/day per person, plus the derivatives of the offset.

In the event that it is the staff of the FNMT-RCM who will be responsible for the registration, it would be necessary to assess the necessary resources, according to the requirements of the applicant Agency.

3. Technical Support. The cost of technical support performed by staff of the FNMT-RCM will be 122.64 euros/hour.

In the case where the technical support is provided in the premises of the customer, the above rate will be added to the expenses resulting from the stay set at 204.38 euros/day per person, plus the derivatives of the displacement and overnight.

4. Replica of Directory for the EIT services. -A price of 20,539.66 €/year is established for the daily replication of the lists of certificates revoked from the FNMT-RCM to the premises of the public network.

This price includes the license to use the Critical Path X.500 InJoin Directory Server directory on the client's own facilities.

This service does not include installation or maintenance, which will be on behalf of the customer.

The directory and its contents may not be transferred to third parties under any circumstances, and must be protected against any access by entities outside the agreement, including access to consultation.

5. Conditions.-All previously exposed amounts involving annual fixed payments will be increased from the first annuity, applying the CPI variation published in the previous twelve months, according to the index approved by the I.N.E., taking as the reference of the year of the signature of the Management Encomienda.

All the amounts set out above in this Chapter I include the legally established VAT.

CHAPTER II

Advanced Services

1. Certificates for server or component and code signature.-The annual price of the essential services set out in Chapter I, paragraph 1, of this Price Annex includes 4 server or component certificates and 1 code signature.

The price of the additional certificates will be 875.11 euros for each year of server or component certificate and code signing certificate being issued all for four years.

Server certificate is the one that allows you to identify a web server or URL.

Code signing certificate is the one that allows you to sign executable code as Java applets.

2. Digital dating for the EIT services.-The annual price of the essential services set out in Chapter I, paragraph 1, of this Annex of Prices includes the discharge and maintenance of this service in the terms exactly indicated in the following paragraph and the realization of all the time-stamped during the first year of validity of the Management Encomienda, after which, without having made use of the same, partially or in full, its validation shall not be possible for successive annual periods.

The price of this service, acquired independently, will be billed for two concepts:

a) By high and system maintenance: This concept is 5,000 euros. This price includes the bookshops necessary for the use of the application (and the maintenance of the same), but not the possible developments to be carried out and 50,000 annual seals which are to be consumed within the maximum period of time. annuity what, if not, does not make them accumulate for the years after. Your credit is annual.

(b) For a variable cost that is set by the number of the seals made within the period of an annuity whose cumulative figure exceeds the amount of 50,000, without a higher limit, at a rate of € 0.05 /sealing.

3. Cryptographic cards. -In the event that the certificate requested requires the support of the certificate to be a cryptographic card, the cost of the cards will be 15.88 euros for each one of them. This cost may vary depending on the characteristics of the same and the number of them requested. The estimated cost includes the plastic in its standard format and defined by the FNMT-RCM, the customization of the same and its submission to the holder of the certificate. For these variations of format or quantity refer to the following table.

From 1,000 units you can request variations on the original model designed by the FNMT-RCM. For these format or quantity variations, refer to the following table:

An image appears in the original. See the official and authentic PDF document.

4. Conditions.-All previously exposed amounts involving annual fixed payments will be increased from the first annuity, applying the CPI variation published in the previous twelve months, according to the index approved by the I.N.E., taking as the reference of the year of the signature of the Management Committee.

All the amounts set out in this Chapter II except those of paragraph 1 shall be added to the legally established VAT.

CHAPTER III

APE Services (Law 11/2007)

1. Electronic and electronic seal certificates for automated actions for services in the field of Law No 11. The annual price of services falling within the scope of Law 11/2007 provided for in Chapter I (1) of this Regulation Annex IV of Prices includes 1 seat certificate and 3 stamp certificates.

The price of the additional certificates of both seat and stamp will be 900,00 euros for each unit and year of certificate being issued all for three years.

2. Digital dated authority (TSA) service for APE.-The annual price of services in the scope of Law 11/2007 set out in Chapter I, paragraph 1, of this Annex IV of Prices includes the service of digital datelage authority (TSA) for APE, together with an electronic signature certificate (issued for three years) required for the subscription of the sealed requests. The FNMT-RCM shall not accept electronic signature certificates from Certification Service Prestors not recognized by the FNMT-RCM itself.

3. Conditions.-All previously exposed amounts involving annual fixed payments will be increased from the first annuity, applying the CPI variation published in the previous twelve months, according to the index approved by the  INE, taking as reference the year of the signature of the Management Encomienda.

All the amounts set out in Chapter III of this Annex shall be added to the legally established VAT.

ANNEX V

Membership Protocol Model

ACCESSION PROTOCOL OF ____ (DEPARTMENT, ORGAN, BODY OR ENTITY) ____ TO THE ENCOMENDON SUBSCRIBED TO THE __ (DATE) __ BETWEEN __________ AND THE NATIONAL CURRENCY AND STAMP FACTORY-REAL HOUSE OF THE CURRENCY, FOR THE PROVISION OF SERVICES, TECHNICAL AND SECURITY, APPLICABLE TO CERTIFICATION AND ELECTRONIC SIGNATURE IN THE FIELD OF ELECTRONIC ADMINISTRATION.

In Madrid, a ____ of _______________ of ______

UNITED

On the one hand, don/donate _______________, in his capacity as _________________, in the name and representation of ________________________, by virtue of the powers conferred by _______________________________.

And from another, Don Ángel Esteban Paul, Director General of the National Mint and Timbre-Real Casa de la Moneda (FNMT-RCM), acting on behalf of this Enterprise Public Entity, by virtue of the powers that attributes Article 19 of the Statute of the Entity, approved by Royal Decree 1114/1999 of 25 June (BOE of 7 July), and of its appointment, carried out by Royal Decree 1869/2008 of 8 November 2008 ("BOE" of 11 November).

Both parties, recognizing competence and legal capacity necessary to formalize this Protocol of Accession,

EXPOSE

First.-The ________________ and the FNMT-RCM signed, with date ___________, an Encomienda de Gestion for the provision, by this, of certification services and electronic signature as stipulated in the clauses of The Management Encomienda and its Annexes and which, in accordance with its object, are: (1) technical, administrative and security services to ensure the validity and effectiveness in the issuance and receipt of communications and documents produced through the Technical and technical resources in the field of action of this IMSERSO and in that of the administrations that (2) the provision of services relating to the electronic identification of the Public Administrations and authentication of the exercise of their competence, in accordance with Law 11/2007, of 22 June, for Electronic Citizens ' Access to Public Services.

Second. -The eighth clause of the aforementioned Encomienda de Gestion expresses that the FNMT-RCM will provide the services referred to in it to any ministerial departments, organs, agencies and public entities, linked or dependent on the General Administration of the State, using the Protocol of Accession annexed to the Management Committee. What comes to be executed in this act.

Third. -A the effects foreseen in the previous exhibition, the ___ (department, organ, body or entity) ____ has considered, after approval of the competent body, to adhere to the referred management committee expressed in the First, for which you subscribe, in conjunction with the National Mint and Currency Factory-Royal Mint, this Protocol of Accession, according to the following

CLAUSES

First. Through this Protocol and in accordance with the above, ____ (department, organ, body or entity) ____ adheres to the "Management Encomienda between the __________ and the National Currency Factory". and Timbre-Real Casa de la Moneda, for the provision of technical and security services applicable to the certification and electronic signature in the field of the Electronic Administration ", subscribed by date ______, expressing that it knows and accepts in all its extension. A copy of it is incorporated into this Protocol as an attachment.

As from the entry into force of this Protocol, ____ (department, organ, body or entity) ____ is considered to be part of the Management Board referred to in the preceding paragraph, as the recipient of the services and assumes the rights and obligations contained therein, being, the FNMT-RCM, the provider of the services and activities contained in the aforementioned Management Encomienda. Accordingly, ____ (department, organ, body or entity) ____ accepts the same rights and obligations as, in this Management Encomienda, holds the __________.

Second. -This accession is carried out on the basis of the provisions of the eighth clause of the Management Encomienda, which is brought about by this Protocol.

Third.-The maximum total price that ____ (department, organ, body or entity) ____ shall pay to the FNMT-RCM for the services and other activities expressed in the Management Committee since the entry into force of this accession, Until December 31, _______, amounts to the amount of _______ euros (_________€), including taxes.

(This price is obtained from prorate, since the duration of this adhesion is less than one year, the maximum total price per year, amounting to _______ euros per year (________€/year), including taxes).

The formation of the current and future price, as well as the fixing or updating of prices for annuities, in case of an extension of the accession, and the other economic questions of the relations between the FNMT-RCM and ____ (department, organ, body or entity) ____ shall be governed by the provisions set out in the Economic Annex to this Protocol and, wholly and wholly subsidiary, by Annex V of the Management Committee (Prices and Implementation Plan), until no later than the tariffs are approved by the Secretariat for Economic and Financial Affairs as the body of the FNMT-RCM (8th clause of the Management Encomienda).

There is a budgetary consignment (n. º ___________) for the consideration of the services performed by the FNMT-RCM. In the event of any extension, the ____ (department, body, body or entity) shall be obliged to make the corresponding budgetary appropriations.

Fourth. The establishment of Registration and Accreditation Offices, by ___ (department, organ, body or entity) ___, shall be carried out in accordance with the provisions of the Management Committee and its Annexes, parties, inform each other of the creation of the same and their identifying data, for the purposes of the necessary administrative coordination.

Fifth.-Information about the accessions produced and the administrative relations between the administrations that are part of the Management Encomienda will be governed by the provisions of the 14th clause of the Encomienda (i) management, by specific legislation applicable to the electronic administration and by the other rules applicable to it. The FNMT-RCM shall inform, through its Board of Directors, the __________ of the accessions that occur.

Sixth. -There remain and without any alteration the conditions that make up the Management Encomienda between the __________ and the FNMT-RCM with date _____, with the exception of the expressly collected in the present instrument.

Seventh. -This Protocol shall enter into force on the day of its signature and shall extend until 31 December of ______, applying the period of grace referred to in the sixth clause of the Management Committee of which it brings adherence.

And, in proof of compliance, both parties subscribe to this document, in duplicate, at the place and date indicated in the heading.

NATIONAL CURRENCY AND STAMP FACTORY-REAL HOUSE OF THE CURRENCY, Fdo.: Angel Esteban Paul; ____ (DEPARTMENT, ORGAN, BODY OR ENTITY) ____, Fdo.: __________________

ANNEX TO THE ACCESSION PROTOCOL

COPY OF THE MANDATE BETWEEN __________ AND THE NATIONAL CURRENCY AND STAMP FACTORY-REAL HOUSE OF THE CURRENCY, FOR THE PROVISION OF TECHNICAL AND SECURITY SERVICES APPLICABLE TO THE CERTIFICATION AND ELECTRONIC SIGNATURE IN THE FIELD OF THE MANAGEMENT ADMINISTRATION.

ECONOMIC ANNEX TO THE ACCESSION PROTOCOL

Implementation Plan (tentative)

Delivery of documentation and products.

Contribution of product usage and installation manuals.

Software input and technical documentation, including application examples.

Contribution of the revocation list verification software.

Contribution of the signature software.

Accreditation of credit managers.

Relationship of accreditation offices, including their name and full postal address and IP address.

Relationship of number of positions per accreditation office.

Selection of the accredit managers.

Crediting by post relationship, including your first and last name, NIF, and full postal address.

Implementation schedule for accreditation offices.

Training for accrediting managers.

Accreditation of credit managers, card delivery, software, readers, and manuals.

Constitution of the offices and commencement of user accreditation.

Implementation of applications.

Contribution of the documentation required for the issue of the server or component certificates and the keys to be signed.

Issue of required code and server signing certificates or component, Definition of services to be provided.

Start-up calendar for applications.

Technical support for implementation by the FNMT.

Assessment of compliance compliance with point 1.2 regarding extension of services.

Communication to users of new services.

Sending email, communicating new available services, to active users with email address.

Joint drafting of press release and submission to the media.

Publishing services in the FNMT Web Collaborations section.