How to make an electronic digital signature yourself? How is digital signature generated? Fig.8 Dialog box. User roles

Good afternoon, dear readers! This article is dedicated to business owners, regardless of its size and organizational form, and ordinary citizens of our country. It will be equally useful and interesting for both simple individual entrepreneurs and owners of large commercial enterprises. What do they have in common? The answer is simple - document flow and the need to interact with various government agencies! Therefore, let's talk about a tool that will significantly simplify the flow of documentation, both within the enterprise and outside it! Today we’ll take a closer look at how to get electronic signature(EDS)!

Let's start with the essence of an electronic signature and the mechanism of its functioning, then consider the scope and unconditional usefulness, after which we will discuss how to obtain it for individuals, individual entrepreneurs and legal entities, and also talk about the necessary documents. We have collected as much as possible full information about how to get an electronic digital signature! By the way, if necessary, you can use it to close an individual entrepreneur. The article describes how to do this!

What is an electronic digital signature: the simple essence of a complex concept!

Every document at the enterprise must be signed by an authorized person. The signature gives it legal force. Modern technologies transferred document flow to electronic format. Which turned out to be extremely convenient! Firstly, electronic documents have simplified and accelerated the exchange of data within an enterprise (especially with international cooperation). Secondly, the costs associated with their turnover have decreased. Thirdly, the security of commercial information has significantly increased. Despite the electronic format, each document must be signed, which is why an electronic digital signature was developed.

What is an electronic digital signature? This is an analogue of traditional painting in digital format, which is used to give legal force to documents on electronic media. The word “analogue” should be understood as a sequence of cryptographic symbols randomly generated using special software. It is stored on electronic media. Flash drives are commonly used.

There are two important concepts associated with electronic signature: certificate and key. A certificate is a document that certifies that an electronic signature belongs to a specific person. It can be regular or enhanced. The latter is issued only by some accredited certification centers or directly by the FSB.

The electronic signature key is the same sequence of characters. Keys are used in pairs. The first is the signature, and the second is the verification key that certifies its authenticity. For each new signed document, a new unique key is generated. It is important to understand that the information received on a flash drive at the certification center is not an electronic signature - it is just a means for creating it.

A signature in electronic format has the same legal weight and force as under a paper document. Of course, if there were no violations when applying this parameter. If any inconsistency or any deviations from the norm are detected, the document will not become valid. The use of digital signatures is regulated by the state through two laws, Federal Law No. 1 and Federal Law No. 63. They affect all areas of application of a signature: in civil law relations, when interacting with municipal and state bodies.

How the idea of ​​using EPC came about: let's remember the past!

In 1976, two American cryptographers, Diffie and Hellman, proposed that electronic digital signatures could be created. It was just a theory, but it resonated with the public. As a result, already in 1977 the RSA cryptographic algorithm saw the light of day, which made it possible to create the first electronic signatures. Compared to the real ones, they were very primitive, but it was at that moment that the foundation was laid for the future rapid development of the industry and the widespread spread of electronic document management.

The millennium brought significant changes. The United States passed a law according to which a signature on paper was equal in legal force to an electronic one. Thus, a new rapidly growing market segment has emerged, the volume of which, according to American analysts, will amount to $30 billion by 2020.

In Russia, the first electronic devices began to be used only in 1994. The first law that regulated their use was adopted in 2002. However, it was distinguished by extremely vague formulations and ambiguity in the interpretation of terms. The law did not give a clear answer to the question of how to obtain an electronic signature and use it.

In 2010, a large-scale project was developed to create a virtual environment for the provision of public services in electronic format, which in August of the same year was submitted for consideration to the President of the Russian Federation. One of the key areas of the project is the possibility of using digital signatures. The regions were obliged to create conditions for free access for individuals and legal entities to the possibilities of electronic document management so that everyone can receive an electronic document. Since then, the “electronic state” has been actively developing in Russia.

In 2011, the President obliged executive authorities to switch to electronic document management within their structures. By June of the same year, all officials were provided with digital signatures. The program was financed from the federal budget. In 2012, electronic document management began working in all executive authorities of the Russian Federation without exception.

After these transformations, two pressing issues arose. Firstly, the EP was not universal. For each goal it was necessary to obtain new signature. Secondly, some crypto providers were not compatible with others, which put their clients in a difficult situation. Therefore, since 2012, a global process of unification in the field of electronic document management began. Thanks to which we have modern universal signatures and software.

Digital signature: 5 advantages and 6 use cases!

Many entrepreneurs have not yet used EPC in their business activities. In many ways, the reason for this is elementary ignorance of all its capabilities and advantages. By using the electronic format to sign documents, business entities (individual entrepreneurs, legal entities) receive the following benefits:

  1. Documents are maximally protected from falsification.

Since the computer is very difficult to deceive. IN in this case The human factor is completely eliminated. After all, you may simply not notice that the signature under the document differs from the original one. It is impossible to forge an electronic signature. This requires very large computing power, which is almost impossible to implement at the current level of device development, and a lot of time.

  1. Optimization, acceleration and simplification of document flow.

Completely eliminates the possibility of data leakage or loss of important papers. Any copy certified by an electronic identifier is guaranteed to be received by the addressee in the sent form: no extraordinary circumstances can cause its damage.

  1. Reduce costs by eliminating paper media.

For small companies, maintaining paper documentation was not burdensome, but this cannot be said about large enterprises. Many of them had to rent separate premises and warehouses for storing documents for 5 years. In addition to the costs of paper, printers, ink, and office supplies, rent was also added! In addition, depending on the field of activity, some companies could reduce costs by reducing the number of employees who dealt with documents: receiving, processing, etc. The need to recycle paper also disappeared: for certain types of organizations whose activities are related to confidential information, even this line of expenses turned out to be significant. The process of destroying documents under digital signature is a few clicks of a computer mouse.

  1. The format of documents signed by electronic signatures fully complies with international requirements.
  2. There is no need to obtain a separate signature to participate in tenders or submit reports to regulatory authorities.

You can obtain an electronic signature, which will allow you to use it on all necessary sites.

Before we move on to the question of how to obtain an electronic signature, we list all the possible options for its use:

  1. Internal document flow. Involves the movement of commercial information, orders, instructions, etc. inside the company.
  2. External document flow. We are talking about the exchange of documents between two partner organizations in the B2B system or between an enterprise and a B2C client.
  3. Submitting reports to regulatory authorities:
  • Federal Tax Service,
  • Pension Fund,
  • Social Security Fund,
  • Customs service,
  • Rosalkogolregulirovanie,
  • Rosfinmonitoring and others.
  1. To gain access to the Client-Bank system.
  2. To participate in auctions and trades.
  3. To receive government services:
  • State Services website,
  • RosPatent,
  • Rosreestr.

How to get an electronic signature: step-by-step instructions!

Having assessed all the advantages of using an electronic signature, you decided to get one. And, of course, we were faced with a logical question: how to do this? We will answer this question with detailed step-by-step instructions that will help you quickly and easily obtain an electronic signature!

In total you will have to go through 6 steps.

Step 1. Selecting the type of electronic signature.

Step 2. Selecting a certification authority.

Step 3. Filling out the application.

Step 4. Payment of the invoice.

Step 5. Collecting a package of documents.

Step 6. Obtaining an electronic signature.

Now let's talk about each step in more detail!

Step 1. Choosing a type: everyone likes their own!

The first step to obtaining an electronic signature is choosing its type. According to federal laws, the following types of digital signatures are distinguished:

  1. Simple. It encodes information about the owner of the signature so that the recipient of the paper is convinced who the sender is. It does not protect against counterfeiting.
  2. Reinforced:
  • unqualified - confirms not only the identity of the sender, but also the fact that no changes were made to the document after signing.
  • qualified – the most secure signature, the legal force of which is 100% equivalent to that of an ordinary signature! It is issued only in those centers that are accredited by the FSB.

Recently, more and more customers want to receive an enhanced qualified signature, which is quite reasonable. As with any other “keys” that provide access to private information or financial transactions, scammers of various categories are hunting for digital signatures. Analysts believe that over the next 10 years the first two species will simply become obsolete. The choice depends on the use case for the digital signature. To make it easier to make a decision, we have compiled the data in a table; it will help you make a choice and settle on a specific necessary and sufficient form.

Scope of application Simple Unskilled Qualified
Internal document flow + + +
External document flow + + +
Arbitration court + + +
State Services website + - +
Supervisory authorities - - +
Electronic auctions - - +

If you are going to obtain an electronic digital signature for the convenience of filing reports, you will have to submit an application for a qualified one. If the goal is document flow at the enterprise, then it is enough to obtain a simple or unqualified signature.

Step 2. Certification center: TOP 7 largest and most reliable companies!

A certification center is an organization whose purpose is to generate and issue electronic digital signatures. A CA is a legal entity whose charter specifies the corresponding type of activity. Their functions include:

  • issuance of digital signature;
  • providing a public key to everyone;
  • blocking an electronic signature if there is a suspicion of its unreliability;
  • confirmation of the authenticity of the signature;
  • mediation in case of conflict situations;
  • supplying clients with all necessary software;
  • technical support.

On this moment in the territory Russian Federation There are about a hundred such centers operating. But there are only seven industry leaders:

  1. EETP – market leader electronic trading RF. The company's activities are highly diversified, which does not prevent it from occupying leading positions in each segment. In addition to organizing and conducting auctions, she is engaged in the sale of property that is not selling well, teaches the specifics of participating in auctions, and generates and sells digital signatures.
  2. Electronic Express is the official operator of electronic document management of the Federal Tax Service. Has a full set of licenses (including the FSB license).
  3. Taxnet – develops software for electronic document management. Including the creation and implementation of digital signatures.
  4. Sertum-Pro Kontur is a company that deals with electronic signature certificates. In addition, it offers many convenient additional services for their clients, which will significantly expand the capabilities of digital signatures.
  5. Taxkom - the company specializes in external and internal document flow of companies and reporting to various regulatory authorities. For this purpose, appropriate software is developed and electronic signatures are created. It is on the list of official data operators for cash register equipment.
  6. The Tensor company is a giant in the world of document flow over telecommunication networks. Provides a full range of services: from the development of complexes for automating the workflow at enterprises to the creation and implementation of electronic signatures.
  7. National Certification Center - develops and sells various digital signature certificates, offers clients software for generating and submitting reports to all government bodies.

Choose a CA depending on your capabilities and location. It is important to check whether there is a point for issuing ready-made electronic signatures in your city. This is quite easy to find out by visiting the official websites of the companies.

If for some reason you are not satisfied with the centers from our TOP-7 list, then you can use the services of other companies. Full list accredited CAs can be found on the website www.minsvyaz.ru in the “Important” section.

Step 3. How to get an electronic signature: fill out the application!

The choice has been made, now you know exactly what you want, so it’s time to submit an application to the certification center. This can be done in two ways: by visiting the company’s office or filling out an application on its website.

Remote submission of an application will save you from a personal visit. The application contains a minimum of information: full name, contact number and email. Within an hour after sending, a CA employee will call you back and clarify the necessary information. In addition, he will answer all the questions that interest you and advise you on what type of digital signature to choose for your case.

Step 4. Pay the bill: money up front!

You will have to pay for the service before receiving it. That is, immediately after accepting the application and agreeing on the details with the client, an invoice will be issued in his name. The cost of digital signature varies depending on the company you contacted, region of residence and type of signature. It includes:

  • generating a signature key certificate,
  • software necessary for creating, signing and sending documents,
  • technical customer support.

The minimum price is about 1500 rubles. Average 5,000 – 7,000 rubles. The cost of one electronic signature may be less than 1,500 rubles, only if signatures are ordered for large quantity employees of one enterprise.

Step 5. Documents for obtaining digital signature: we create a package!

When preparing a package of documents, it is essential which subject of civil law acts as the customer: an individual, a legal entity or an individual entrepreneur. Therefore, we will consider documents for obtaining an electronic signature separately for each category.

Individuals must provide:

  • statement,
  • passport plus copies,
  • individual taxpayer number,
  • SNILS.
  • Receipt of payment.

An authorized representative of the recipient of the electronic signature can submit documents to the CA. To do this you need to issue a power of attorney.

To obtain an electronic signature, a legal entity will have to prepare:

  1. Statement.
  2. Two certificates of state registration: with OGRN and TIN.
  3. Extract from the register of legal entities. Important! The extract must be “fresh”. Each certification authority has its own requirements in this regard.
  4. Passport plus a copy of the person who will use the electronic signature.
  5. SNILS of the employee who will use the digital signature.
  6. If the signature is issued for the director, then an order of appointment must be attached.
  7. For employees who are lower in the company's hierarchical ladder, you will have to issue a power of attorney for the right to use the electronic signature.
  8. Receipt of payment.

Documents for obtaining digital signature by individual entrepreneurs:

  1. Statement.
  2. Certificate of registration with OGRNIP number.
  3. Certificate with TIN.
  4. An extract from the register of entrepreneurs, issued no earlier than 6 months ago, or a copy certified by a notary.
  5. Passport.
  6. SNILS.
  7. Receipt of payment.

An authorized representative of an individual entrepreneur can pick up an electronic digital signature if you have a power of attorney and passport. When submitting an application electronically, documents are sent to the CA by mail, and when visiting in person, they are submitted simultaneously with the application.

Step 6. Getting a digital signature: the finish line!

You can obtain documents at numerous issuing points located throughout the country. Information about them can be found on the official website of the CA. Typically, the time frame for receiving a signature does not exceed two to three days.

Delay is possible only on the part of the customer who did not pay for the services of the certification center on time or did not collect all the necessary documents. Please note that you need to receive an extract from the unified state register of individual entrepreneurs or legal entities on time, as this process takes 5 working days! Some CAs provide the service of urgent issuance of digital signatures. Then the whole procedure takes about one hour. Now you know how to get an electronic signature.

Important! The electronic signature is valid for one year from the date of its receipt. After this period, you will need to renew it or get a new one.

Do-it-yourself digital signature: the impossible is possible!

In fact, creating an electronic signature yourself is quite possible. If you have the appropriate education, thoroughly understand what an electronic digital signature is and have invincible enthusiasm. However, do not forget that you will not only have to generate a cryptographic sequence, you also need to develop and write the corresponding software. A natural question arises: why do this? Moreover, the market is replete with ready-made solutions! For large companies, it is also not profitable to “tinker” with the independent development of electronic signatures, since they will have to hire new employees in the IT department. And in the article

Instructions for generating an electronic signature key

(version dated November 21, 2017)

List of abbreviations used:


AWS

Automated workstation

ASFC

Automated system Federal Treasury

GAS

State automated system

GMU

State municipal institution

PPO

Application software

PC

Personal electronic computer

CIPF

Cryptographic information protection tool

SUFD

Remote system financial document flow

TOFK

Territorial body Federal Treasury

FC

Federal Treasury

  1. Before you begin, make sure that the following is installed on your workstation:

  • CIPF “Crypto PRO CSP” (version 4.0 (4.0.98.42));

  • Key Generation Workstation ( current version AWP Key Generation programs can be downloaded at ftp://ftp.ufk39.ru/RCR/Distrib/ or if CIPF “Continent AP” is connected to home page SUFD portal ( http://10.39.4.123). Attention, if you install the “Key Generation Workstation” on a workstation designed to work in the SUFD software, you must use the instructions for setting up an additional workstation.
ATTENTION!!! Key generation must be carried out in the Key Generation Workstation no lower than version 1.0.0.44 n. Before installing the specified version, it is recommended to remove the previous one.
Connect a blank formatted key media (flash drive, floppy disk, Ru-token, etc.) to system unit PC.

The medium must be taken into account in the “Logbook of computer storage media” (form approved by FAPSI order No. 152 dated June 13, 2001), the form with an example of filling can be found .


  1. In the Key Generation Workstation, click the “Create a certificate request” button (see Fig. 1).

Fig.1 Key Generation Workstation


  1. Select the request type (see Fig. 2).
To create a request for an individual – “Request for Applicant’s Certificate”

Fig.2 Dialog box with selection of request type for key generation


  1. In case you already have there is a certificate with dataTIN of an individual, then select “Generate a certificate request based on an existing certificate” (see Fig. 3) and click “Next”.
When lack of certificate, select the required option, and click “Next”, then proceed to paragraph 7 of these Instructions.

IMPORTANT if your previous certificate contained the TIN of a Legal Entity, and you need a certificate for an individual, then NOT select the type “Generate a certificate request based on an existing certificate” because in this case, only a certificate will be created for the Legal Entity; in this case, you need to select the “Request for Applicant Certificate” item and fill in all the parameters manually.

Fig.3 Dialog box with selection of request type for key generation


  1. In the window that appears, click the “Find” button (see Fig. 4) and select previous file certificate (with the extension CER) or a request file (with the extension REQ) (see Fig. 5, Fig. 6, Fig. 7) and click the “Next” button.

Fig.4 Dialog box for selecting a file

Fig.5 Dialog box for selecting a file

Fig.6 Dialog box for selecting a file

Fig.7 Dialog box with selection of request type for key generation


  1. In the window that appears, specify the required user roles (see Fig. 8). IMPORTANT: for certificate Legal entity Only the Client Authentication role is required, which is mandatory for all types of certificates. Examples of selecting roles for common information systems are given in Appendix 1 to these Instructions.
IMPORTANT: for clients, working in SUFD: if an employee needs to work (for example, create documents) in the SUFD, but is not included in the “Sample Signature Card”, then such an employee needs to obtain a certificate for himself without the right to sign, with the following powers: “Client Authentication” and “ASFC” (only external tick see Appendix 1, Fig. 2).

Fig.8 Dialog box. User roles


  1. In the window that appears, fill in all the required open to record a field (see Fig. 9).

Fig.9 Dialog box with the Applicant’s data
Rules for filling out the fields (read for everyone):


    1. “Last Name” - fill in the Applicant’s Last Name.

    2. “Name and Patronymic” - fill in the Applicant’s First and Patronymic (if available), as indicated in the identity document.

    3. “E-mail” - fill in the address Email The applicant, on given address personal information will be sent, for example, login and password for the first login to the information system.

    4. “Position” - to be filled in only for a request for a Legal Entity certificate. When filling out this field for the heads of the organization, it is necessary to take into account the data of the Unified State Register of Legal Entities; for other employees of the organization, it is necessary to be guided by the staffing table.

    5. “Formalized position” - the field becomes active when selecting roles from the “ASFC” group. You must select from 2: “ Supervisor" (if the right of first signature) or " Chief Accountant“(if the right of the second signature), the right of the first or second signature is defined in the document “Card of Sample Signatures” submitted by your organization to the Federal Treasury Department for the Kemerovo Region at the place of service of your account. The only exception is when an employee turned off to the “Sample Signature Card”, but he Signing of separate documents required(non-settlement) in terms of cash services – you must select “ Operator».

    6. “Last name First name Patronymic” - the field is filled in automatically.

    7. “Organization” - fill in only FULL name of company, the name must character by character coincide with information from the Unified State Register of Legal Entities. THE EXCEPTION IS THE NAME OF THE ORGANIZATION ONLY for certificate Legal entity , you need to fill in a short name, provided that the full name is longer 164 characters, in other cases, the full name is filled in if it does not exceed 164 characters. For individual entrepreneurs This field indicates the Last Name, First Name, and Patronymic of the individual entrepreneur.

    8. “1st level division” - to be filled in only when generating a certificate Legal entity.

    9. “2nd level division” - to be filled in only when generating a certificate Legal entity. This field is filled in only if the organization (Legal entity) has separate divisions, for example, Kemerovo State University(The full name is filled in the “Organization” field) has a branch in the city of Belovo (the name of the branch is filled in the “1st level division” field) which has structural divisions “Accounting” (filled in the “2nd level division”) (see Fig. . 10).

    10. “Name of the locality” - fill in the name of the locality where the applicant Organization is located, for example, “Tashtagol”.

    11. Address (street, house) – to be filled in only when generating a certificate Legal entity. This field indicates the address of the location of the Legal Entity of the applicant Organization.

    12. “Country” - fill in with the value “RU”.

    13. “Name of the subject” - select “Kemerovo region” from the list.

    14. “TIN” - for a certificate of an individual, individual entrepreneur, fill in with the TIN (12 characters) of the Applicant; for a certificate of a Legal Entity, fill in with the TIN (10 characters, with 2 zeros in front, for example, 004205654585) of the Legal Entity.

    15. “OGRN” – to be filled in only when generating a certificate Legal entity. The value of the OGRN of the Legal entity is indicated.

    16. “SNILS” - the value of the Applicant’s SNILS is indicated.

    17. “UIS/SPZ organization account number” – the field becomes active only when generating a request based on an existing certificate, if the “Working with UIS” section was filled out during the previous generation. IMPORTANT!!! To work on the EIS website ( http :// www . zakupki . gov . ru ) separate permissions are no longer required; all necessary roles for users are set by the organization administrator when registering a certificate in the UIS. In this regard, when generating a request based on an existing certificate, if during the previous generation the “working with UIS” section was filled in, you should return to the stage of specifying authority by clicking the “Back” button and clear the “Working with UIS” section.

    18. “GMU account number” - the field becomes active when selected in the previous step when selecting roles from the “working with GMU” section. The field is filled in with the value of the GMU account number of the applicant organization; this value can be viewed on the website http :// www . bus . gov . ru in information about the organization “PSU Code” (see Fig. 11) or “Registration number in the list of State Medical University” (see Fig. 12).

    19. “Protection class” - select the value “KS1” if at your workplace (computer) NOT hardware protection systems “Sobol”, “Accord”, etc. were installed. (hardware protection with a random number sensor), “KS2” - if the specified protection is installed.

    20. “Exported private key” - always set to “Yes”.
Obtaining an electronic signature certificate for certain types of legal entities

In accordance with the clarifications of the Federal Treasury ( letter of the Federal Treasury dated July 21, 2016 No. 07-04-05/12-529), representatives the following legal entities due to the failure to place the procurement regulations in accordance with the Federal Law of July 18, 2011 No. 223-FZ, it is necessary in the field “ UIS organization registration number» specify the value « 00000000000 »:


  1. Electronic platform operator

  2. Information system operator

  3. An organization that provides services for UIS users

  4. Legal entity carrying out procurement in accordance with Part 4 of Article 5 Federal Law dated December 30, 2008 N 307-FZ “On auditing activities”
After filling out and verifying all fields, click the “Next” button.

Fig. 10. Example of filling out data for a Legal Entity

Fig. 11 Dialog box from the site www. bus. gov. ru. Register of organizations

Fig.12 Dialog box from the site www. bus. gov. ru. Organization registration details


  1. In the window that appears, click “Run” (see Fig. 13)

Fig. 13 Dialogue window for key generation workstation


  1. In the next step, you need to select the media type, depending on the media prepared in the first step, see step 1.
IMPORTANT:PROHIBITED write the private key to " Registry».

  1. In the next window (see Fig. 14) enter the password and its confirmation. ATTENTION! Remember the entered password; if you lose it, it cannot be restored. These fields can be left blank, then a password will not be requested when signing with an electronic signature.

Fig. 14 Entering a password for the created private key


  1. The next step is that the system will offer to save the certificate request file (see Fig. 15).

Fig.15 Dialog box. Saving a certificate request to a file
This request file must be brought to removable media information (flash drive, floppy disk, etc.), not containing key containers(private keys) of users , to the registration point of the Certification Center of the Federal Treasury, according to the territorial location of your organization.

Both copies of the application must be completed and submitted to the Certification Center of the Federal Treasury, according to the territorial location of your organization.

Fig. 16. Printed application form

Samples of certification documents are posted on the information resource on the Internet ftp://ftp.ufk39.ru/RCR/Shablon/, information portal by the address http://10.39.4.123(in a secure network segment, section Certification Authority), on the official website of the Federal Treasury Department for the Kemerovo Region http://kemerovskaya.roskazna.ru. (section GIS - Certification Authority)

Contact details of the Department of Privacy and Information Security

Federal Treasury Department for the Kemerovo Region:
Head of Department: Opalev Kirill Nikolaevich (384-2) 719-005, e-mail: opalevkn@ ufk39. ru

Deputy Head of Department: Rodionov Stanislav Nikolaevich (384-2) 719-022,

specialists in issuing certificates: (384-2) 719-034,719-164, 719-163,

specialists in working with ES and CIPF tools: (384-2) 719-161, 719-162, 719-022.

e-mail: uuc@ ufk39. ru
Contact details of operators of remote regional registration centers are posted on the Department’s website on the Internet in the GIS–Certification Center–Contacts section

Annex 1

Common examples of distribution of roles for working in various information systems
For all certificates, the Client Authentication role is required. The specified role is the only one for certificate Legal entity.

IMPORTANT!!! To work on the site http :// www . zakupki . gov . ru separate permissions are not required; all necessary roles are set by the organization administrator when registering the certificate in the UIS.

Please note that the previously required roles are “Email Protection” and “Server Authentication” are not mandatory roles.

Rice. 1. Mandatory user roles for working in the SUFD with signature rights

Rice. 2. Mandatory user roles for working in the SUFD WITHOUT signature rights

Rice. 3. Possible user roles for working on the site http:// www. bus. gov. ru

Rice. 4. Mandatory role of users to work in GIIS " Electronic budget", Onlinehttp :// www . zakupki . gov . ru
Change registration sheet

BASIC CONCEPTS

KSKPEP – qualified electronic signature verification key certificate.
CEP– qualified electronic signature.

Crypto provider a means of protecting cryptographic information security. A program with the help of which the closed part of an electronic signature is generated and which allows you to work with an electronic signature. This checkbox is checked automatically.

Exported key the ability to copy an electronic signature to another medium. If there is no checkmark, copying an electronic signature will not be possible.

LMB– left mouse button.

RMBright button mice.

CRM-AGENT– an application developed by CA specialists to simplify the procedure for generating a key pair, creating a request and recording a certificate.

Before generation starts

After visiting the certification center and going through the identity verification procedure, the CA sent a letter containing a link to generate it to the email address you specified in the application. If you have not received the letter, contact your manager or the Technical Support Center using the contact number in this guide.

Open the link to generate from the letter in one of the recommended browsers:Google Chrome, Mozilla Firefox, Yandex.Browser. If you are already in one of the above browsers, click on the link LMB or RMB> “Open link in new tab.” The generation page (Fig. 1) will open in a new window.

When you open the link, an initial warning will appear. Familiarize yourself with it if you use media to store CEPsJacarta LT . Read more about media atbelow. If you are using a different media, click the button "Close".

Fig. 1 – Generation page

Installing the application

Click on the link"Download the application" to start downloading. If nothing happens after clicking, click on the link RMB > "Open link in new tab". After downloading the application, run the installation.

It is recommended to disable antivirus software before downloading the program !

During the application installation process « crm - agent » a message requesting access will appear (Fig. 2).

Fig. 2 - Access request


Click the button "Yes".

Providing access

After installing the application, return to the generation page. A message about “Granting access” will appear (Fig. 3).

Fig.3 - Access to the certificate store


Click "Continue" and, in the window that appears, "Grant access"(Fig.4).

Fig.4 – Access to certificate store 2


If the button does not appear "Continue"

If after installing the application « crm - agent » , the link to download the application has not disappeared, the reason may be that the connection is blocked by your security system.

To resolve the situation you must:

Disable the antivirus installed on your computer;

Open new tab in the browser;

Enter in address bar browser address without spaces - 127.0.0.1:90 – and go (pressEnter on keyboard);

When a browser message appears "Your connection is not secure", add the page to browser exceptions. For example,Chrome: "Additional" - “Go to the site anyway”. For other browsers, use the appropriate developer instructions.

After the error message appears, return to the generation page and repeat Point 2 this instruction.

Installation of CryptoPRO CSP

If you do not have pre-installed crypto providers, after the access stage, links to download CryptoPRO will appear (Fig. 5).


It is important: application « crm - agent » detects any crypto providers on your computer, and if you have a different one installed CryptoPRO CSP program (for example,VipNET CSP ), contact specialists technical support CA for consultation.

Click on the link "CryptoPRO 4.0" on the generation page or a similar link below to download the CryptoPRO installation file to your computer.

CryptoPro CSP 4.0 – version for OS Win 7 / 8 / 10

After downloading is complete, openzip-archive using an appropriate archiver program (for example,Win - RAR ). Inside there will be the CryptoPRO installation file itself. Run it and install with default settings. During the installation process, you may see the following window:

Fig.5 – Installation of CryptoPRO

Skip the window by clicking "Further". The installation of CryptoPRO is complete.

Installing the driver for the token

Signatures can be stored in the computer registry, on regular flash drives and on specialusb-tokens. The list of tokens, pin codes and links to software are presented in the table below (Table 1).

Table 1 - Drivers for secure media


Change date

USB media type

Appearance of USB drive

Driver download link

PIN code

ruToken

Instructions for generating an electronic signature key

(version dated September 20, 2016)

Came into force on September 1, 2016 a new version regulations of the Certification Center of the Federal Treasury, approved by order No. 280 dated July 25, 2016. Please familiarize yourself with the updated stages of obtaining certificates
19.09.2016 released a new version 1 Key generation workstation 10.0.0.44 n, it needs to be installed, after uninstalling the previous version.

List of abbreviations used:


AWS

Automated workstation

ASFC

Automated system of the Federal Treasury

GAS

State automated system

GMU

State municipal institution

PPO

Application software

PC

Personal electronic computer

CIPF

Cryptographic information protection tool

SUFD

Remote financial document management system

TOFK

Territorial body of the Federal Treasury

FC

Federal Treasury

  1. Before you begin, make sure that the following is installed on your workstation:

  • CIPF “Crypto PRO CSP” (version 3.6 or later);

  • Key Generation Workstation (the current version of the Key Generation Workstation program can be downloaded at ftp://ftp.ufk39.ru/RCR/Distrib/ or with the CIPF “Continent AP” connected on the start page of the SUFD portal ( http://10.39.4.123). Attention, if you install the “Key Generation Workstation” on a workstation designed to work in the SUFD software, you must use the instructions for setting up an additional workstation.
ATTENTION!!! Key generation must be carried out in the Key Generation Workstation no lower than version 1.0.0.44 n. Before installing the specified version, it is recommended to remove the previous one.
Skilled the certificate is required to work in all systems (SUFD, CIKZ Continent AP, Procurement website within the framework of 223-FZ, UIS (unified information system in the field of procurement) within the framework of 44-FZ, State Medical University, State Automated Information System "Management", GIIS "Electronic Budget", portal “State Services”, etc.).

Connect a blank formatted key media (flash drive, floppy disk, Ru-token, etc.) to the PC system unit.

The medium must be taken into account in the “Logbook of computer storage media” (form approved by FAPSI order No. 152 dated June 13, 2001), the form with an example of filling out can be downloaded from the Department’s website.


  1. In the Key Generation Workstation, click the “Create a certificate request” button (see Fig. 1).

Fig.1 Key Generation Workstation


  1. Select the request type (see Fig. 2).
To create a request for an individual – “Request for Applicant’s Certificate”

Fig.2 Dialog box with selection of request type for key generation


  1. In case you already have there is a certificate with dataTIN of an individual, then select “Generate a certificate request based on an existing certificate” (see Fig. 3) and click “Next”.
When lack of certificate, select the required option, and click “Next”, then proceed to paragraph 7 of these Instructions.

IMPORTANT if your previous certificate contained the TIN of a Legal Entity, and you need a certificate for an individual, then NOT select the type “Generate a certificate request based on an existing certificate” because in this case, only a certificate will be created for the Legal Entity; in this case, you need to select the “Request for Applicant Certificate” item and fill in all the parameters manually.

Fig.3 Dialog box with selection of request type for key generation


  1. In the window that appears, click the “Find” button (see Fig. 4) and select the previous certificate file (with the CER extension) or request file (with the REQ extension) (see Fig. 5, Fig. 6, Fig. 7) and click "Next" button.

Fig.4 Dialog box for selecting a file

Fig.5 Dialog box for selecting a file

Fig.6 Dialog box for selecting a file

Fig.7 Dialog box with selection of request type for key generation


  1. In the window that appears, specify the required user roles (see Fig. 8). If an organization has several powers in the field of placing orders (for example, the Customer and the Financial Authority), for each such power it is necessary to generate SEPARATE KEY . IMPORTANT: for certificate Legal entity Only the Client Authentication role is required, which is mandatory for all types of certificates. Examples of choosing roles for common information systems are given in Appendix 1 to this Instruction.
IMPORTANT: for clients, working in SUFD: if an employee needs to work (for example, create documents) in the SUFD, but is not included in the “Sample Signature Card”, then such an employee needs to obtain a certificate for himself without the right to sign, with the following powers: “Client Authentication” and “ASFC” (only external tick see Appendix 1, Fig. 2).

Fig.8 Dialog box. User roles


  1. In the window that appears, fill in all the required open to record a field (see Fig. 9).

Fig.9 Dialog box with the Applicant’s data


  1. “Last Name” - fill in the Applicant’s Last Name.

  2. “Name and Patronymic” - fill in the Applicant’s First and Patronymic (if available), as indicated in the identity document.

  3. “E-mail” - fill in the Applicant’s email address; personal information will be sent to this address, for example, login and password for the first login to the information system.

  4. “Position” - to be filled in only for a request for a Legal Entity certificate. When filling out this field for the heads of the organization, it is necessary to take into account the data of the Unified State Register of Legal Entities; for other employees of the organization, it is necessary to be guided by the staffing table.

  5. “Formalized position” - the field becomes active when selecting roles from the “ASFC” group. You must select from 2: “ Supervisor" (if the right of first signature) or " Chief Accountant“(if the right of the second signature), the right of the first or second signature is defined in the document “Card of Sample Signatures” submitted by your organization to the Federal Treasury Department for the Kemerovo Region at the place of service of your account. The only exception is when an employee turned off to the “Sample Signature Card”, but he Signing of separate documents required(non-settlement) in terms of cash services – you must select “ Operator».

  6. “Last name First name Patronymic” - the field is filled in automatically.

  7. “Organization” - fill in only FULL name of company, the name must character by character coincide with information from the Unified State Register of Legal Entities. THE EXCEPTION IS THE NAME OF THE ORGANIZATION ONLY for certificate Legal entity , you need to fill in a short name, provided that the full name is longer 164 characters, in other cases, the full name is filled in if it does not exceed 164 characters.

  8. “1st level division” - to be filled in only when generating a certificate Legal entity.

  9. “2nd level division” - to be filled in only when generating a certificate Legal entity. This field is filled in only if an organization (Legal entity) has separate divisions, for example, Kemerovo State University (Full name is filled in the “Organization” field) has a branch in the city of Belovo (the name of the branch is filled in the “1st level division” field) which has structural divisions “Accounting” (to be filled out in the “2nd level division”) (see Fig. 10).

  10. “Name of the locality” - fill in the name of the locality where the applicant Organization is located, for example, “Tashtagol”.

  11. Address (street, house) – to be filled in only when generating a certificate Legal entity. This field indicates the address of the location of the Legal Entity of the applicant Organization.

  12. “Country” - fill in with the value “RU”.

  13. “Name of the subject” - select “Kemerovo region” from the list.

  14. “TIN” - for a certificate of an individual, fill in with the TIN (12 characters) of the Applicant; for a certificate of a Legal Entity, fill in with the TIN (10 characters, with 2 zeros in front, for example, 004205654585) of the Legal Entity.

  15. “OGRN” – to be filled in only when generating a certificate Legal entity. The value of the OGRN of the Legal entity is indicated.

  16. “SNILS” - the value of the Applicant’s SNILS is indicated.

  17. “UIS organization account number” – the field becomes active only when selected in the previous step when selecting roles from the “working with UIS” section. The field is filled in with the value of the SDR code (customer summary list code), this value can be viewed on the website http:// www. zakupki. gov. ru to search for YOUR organization, in the register of organizations: tab “ Additional Information" - the value "Unique account number of the organization" (11 digits), if there is no specified tab, then in the information "Registration data of the organization" the value is: "SPZ code" (11 digits). (see Fig.11 or Fig.12)

  18. “GMU account number” - the field becomes active when selected in the previous step when selecting roles from the “working with GMU” section. The field is filled in with the value of the GMU account number of the applicant organization; this value can be viewed on the website http:// www. bus. gov. ru in information about the organization “PSU Code” (see Fig. 13) or “Registration number in the list of State Medical University” (see Fig. 14).

  19. “Protection class” - select the value “KS1” if at your workplace (computer) NOT hardware protection systems “Sobol”, “Accord”, etc. were installed. (hardware protection with a random number sensor), “KS2” - if the specified protection is installed.

  20. “Exported private key” - always set to “Yes”.
Obtaining an electronic signature certificate for certain types of legal entities

In accordance with the clarifications of the Federal Treasury ( letter of the Federal Treasury dated July 21, 2016 No. 07-04-05/12-529), representatives the following legal entities due to the failure to place the procurement regulations in accordance with the Federal Law of July 18, 2011 No. 223-FZ, it is necessary in the field “ UIS organization registration number» specify the value « 00000000000 »:


  1. Electronic platform operator

  2. Information system operator

  3. An organization that provides services for UIS users

  4. A legal entity carrying out procurement in accordance with Part 4 of Article 5 of the Federal Law of December 30, 2008 N 307-FZ “On Auditing Activities”
After filling out and verifying all fields, click the “Next” button.

Fig. 10. Example of filling out data for a Legal Entity

Fig.11 Dialog box from the site http:// www. zakupki. gov. ru

Fig.12 Dialog box from the site http:// www. zakupki. gov. ru

Fig. 13 Dialog box from the site www. bus. gov. ru. Register of organizations

Fig.14 Dialog box from the site www. bus. gov. ru. Organization registration details


  1. In the window that appears, click “Run” (see Fig. 15)

Fig. 15 Dialog window for key generation workstation


  1. In the next step, you need to select the media type, depending on the media prepared in the first step, see step 1.
IMPORTANT:PROHIBITED write the private key to " Registry».

  1. In the next window (see Fig. 16) enter the password and its confirmation. ATTENTION! Remember the entered password; if you lose it, it cannot be restored. These fields can be left blank, then a password will not be requested when signing with an electronic signature.

Fig. 16 Entering a password for the created private key


  1. The next step is that the system will prompt you to save the certificate request file (see Fig. 17).

Fig.17 Dialog box. Saving a certificate request to a file
This request file must be brought on a removable storage medium (flash drive, floppy disk, etc.), not containing key containers (private keys) of users , to the registration point of the Certification Center of the Federal Treasury, according to the territorial location of your organization.

Both copies of the application must be completed and submitted to the Certification Center of the Federal Treasury, according to the territorial location of your organization.

Fig. 18. Printed application form

Samples of certification documents are posted on the information resource on the Internet ftp:// ftp. ufk39. ru, information portal at http://10.39.4.123(in a secure network segment, section Certification Authority), on the official website of the Federal Treasury Department for the Kemerovo Region http://kemerovskaya.roskazna.ru. (section GIS - Certification Authority)

Contact details of the Department of Privacy and Information Security

Federal Treasury Department for the Kemerovo Region:
Head of Department: Opalev Kirill Nikolaevich (384-2) 719-005, e-mail: opalevkn@ ufk39. ru

Deputy Head of Department: Rodionov Stanislav Nikolaevich (384-2) 719-022,

specialists in issuing certificates: (384-2) 719-034,719-164, 719-163,

specialists in working with ES and CIPF tools: (384-2) 719-161, 719-162, 719-022.

e-mail: uuc@ ufk39. ru
Contact details of operators of remote regional registration centers are posted on the Department’s website on the Internet in the GIS–Certification Center–Contacts section

Annex 1

Common examples of distribution of roles for working in various information systems
For all certificates, the Client Authentication role is required. The specified role is the only one for certificate Legal entity.

IMPORTANT only for the section “Working with EIS”!!! for one certificate, only one group of roles from the “Working with UIS” section can be used, for example, “Customer” or “Financial authority” or etc.

Please note that the previously required roles are “Email Protection” and “Server Authentication” are not mandatory roles.

Rice. 1. Mandatory user roles for working in the SUFD with signature rights

Rice. 2. Mandatory user roles for working in the SUFD WITHOUT signature rights

Rice. 3. Possible user roles for working on the site http:// www. bus. gov. ru

Rice. 4. Possible user roles for working on the site http:// www. zakupki. gov. ru within the framework of work under Federal Law No. 44. Personal Area- Customer.

Rice. 5. Possible user roles for working on the site http:// www. zakupki. gov. ru within the framework of work under Federal Law No. 44. Personal account - Financial authority.

Rice. 6. Mandatory role of users to work in GIIS “Electronic Budget”
Change registration sheet


Change date

How to create an electronic signature

How to create an electronic signature

Many Internet users know firsthand about the convenience of exchanging information electronically. Nowadays, to save time and natural resources, authorities and private companies are switching to sending documents via Internet communications, which makes it necessary to create the new kind signatures. It will take very little effort to complete it, but this step will help to significantly simplify the paperwork. The time required to prepare documentation electronically is greatly reduced, the process of preparing such documents is faster, the digital signature is easy to use, and no special knowledge is required to work with it. How to create an electronic signature and what are the features of this procedure?

Who needs to create an electronic signature and why?

Law No. 63-FZ of 04/06/11 “On Electronic Signature” contains a definition of the concept of electronic signature (ES). Section 2 of the Law states that it is information contained in electronic form, which is attached to other information in the same form, the first signing or otherwise relating to the second, and also authenticating the signatory. This law regulates in detail the procedure and cases of using electronic signatures in the business sector, when receiving services from various departments and in other situations provided for by law.

The main task of an electronic signature, like any other, becomes a confirmation:

    Completeness and absence of distortion of information in the document;

    The integrity and integrity of the document.

The idea of ​​creating an electronic signature arose due to the rapid development of Internet communications. Now, with the help of the global network, you can solve many problems much faster and interact with each other remotely. Given the accelerating pace of life, this is an important achievement.

If you operate in a business environment, then sooner or later you will be faced with the task of creating an electronic signature. E electronic signature is an expression of a set of interrelated concepts such as software, key certificate operation, and certificate storage. Storage is a material data storage device on which the electronic signature verification key certificate is recorded (flash drive, memory card). Such certificates are issued only by special organizations called certification authorities (CA).

The ES verification key certificate contains:

    Information about the owner of the electronic signature;

    Individual number;

    Validity period (issued for a year);

    Information about the CA, which was authorized to create the electronic signature and which issued it to the owner.

When the certificate expires, do not forget to contact the CA in advance so that a new copy can be prepared for you.

If there can only be one handwritten signature, then the number of electronic signatures that can be issued to one person is unlimited.

The task of creating an electronic signature involves studying new information. For example, that there are different types EP.

What kind of electronic signature do you need to create?

The above law provides three types electronic signature:

Simple electronic signature (SES)

Its purpose is limited only to confirming the authorship of the signatory. At the same time, the PEP does not guarantee either the integrity or immutability of documentary information after signing. Therefore, this type is not suitable for legally relevant documentation. It is only needed to access any information resource (such as a government services portal).

Enhanced unqualified electronic signature (NEP)

This type of electronic signature not only allows you to certify the authorship of its owner, but also indicates the immutability of the document after signing. All this is done using cryptographic programs to protect electronic data. An enhanced unqualified electronic signature serves as a means of exchanging documents within an organization and when interacting with other legal entities on the basis of an agreement on the use of electronic signatures by the parties. This type of signature is required to participate in electronic trading.

Enhanced Qualified Electronic Signature (CES)

A qualified electronic signature differs from an unqualified one in that it guarantees the confidentiality and legal significance of the information it confirms. To create such a signature you need special software, certified by the Federal Security Service, and it is issued only by a training center accredited by the Ministry of Communications and Mass Media of the Russian Federation. Reporting forms, sealed by the EPC, can be sent to government agencies. This type of electronic signature is also suitable for participation in electronic trading.

Recently, the first two types of digital signature have been replaced by the most secure and more powerful enhanced qualified signature. Depending on the purpose of use, everyone decides for themselves whether they need to create a simple electronic signature or a strengthened one. .

To use EPC two keys are issued: private (256 bits) and public (1024 bits), which have no effect separately.

Public key is necessary in order to transfer documents electronically using a special certificate identifying the person in whose name the key was issued. A copy of the public key is sent to the library of the certification center in case of forgery or loss of information. Private key needed so that its owner can directly confirm the information with a signature and send the certificate. It also functions for a year; in the future it is necessary to purchase a new product.

Forgery of digital signature of any of the three types is impossible, because the software used to create them allows you to securely encrypt information. Even high level Modern software computing tools do not allow you to crack the code without applying enormous effort. However, it is possible to insure EP.

How to create an electronic signature depending on the scope of application

Electronic document management

Electronic document management (EDF) is one of the ways to exchange documents through programmable processes implemented using the Internet. This system is being implemented everywhere, it is very convenient and effective. It is used by various organizations both within their own structure and in matters of interaction with counterparties, as well as individuals. Using an electronic signature, they send each other agreements, financial documents, letters, etc. The type of electronic means purchased at the CA is determined by the goals and objectives facing the buyer in the world of Internet information exchange.

Electronic reporting

With the advent of electronic signature, the unpleasant procedure of waiting in line for many hours in a room full of people in order to transmit reports to government agencies has become obsolete. Now this process has become much easier. Reporting can be provided using electronic document management to the tax office, Pension Fund and other organs. To do this, you just need to fill out the electronic form and sign it with an electronic signature. Information is sent via the global network. You don’t have to worry about its safety and confidentiality, because there are reliable software tools to protect the transmitted data. The ability to send reports electronically allows you to save working time, scan a document for errors, and the main thing is to sign the electronic CEP report.

Electronic trading

Electronic trading is a system of relationships between participants in trade carried out on the Internet on electronic platforms specially created for this purpose. Participants with access to such platforms are aimed at concluding civil transactions for the sale of goods, works and services.

Both legal entities and individuals can purchase an electronic signature to participate in tenders. This signature allows you not only to gain access to the trading platform, but also to certify documents for the competition and sign a contract based on its results. The type of digital signature depends on the requirements of the trading platform.

Government services

How to create an electronic signature for government services? This is not difficult to do; this opportunity is available to any citizen of the Russian Federation. An electronic signature for the government services portal allows its owner to certify documents sent through special programs via telecommunication channels, as well as receive letters and notifications about the status of an application submitted to the authorities.

Arbitration court

Judicial bodies have also switched to electronic document management. Participants in the proceedings now have the right to submit evidence and other documents during the trial in electronic form. Arbitration procedural legislation provides for several ways for disputing parties to provide documents, including electronic communications. Therefore, you can also sign documents using an electronic signature.

Document flow with individuals

Individuals use electronic signatures extremely rarely. But still, it is more convenient for individual citizens to certify documents using an electronic signature. And this can be very convenient when drawing up contracts with remote workers. Moreover, not only the agreement itself, but also acceptance certificates and other documents are recorded exclusively in electronic form. The exchange takes place via the Internet.

Using an electronic signature you can:

    Ensure a high degree of confidentiality of transmitted data;

    Reduce the procedure for sending documents many times over;

    Simplify the mechanism for submitting reports to regulatory agencies and provide access to electronic commerce;

    Ensure completeness and reliability of information;

    Simplify international document flow;

    Make the organization's internal document flow more convenient and efficient.

How to create an electronic signature and use it in electronic document management

Intercorporate document flow- a method of transferring legally significant information from one enterprise to another (business-to-business), produced using electronic resources. Such exchange is intensively introduced into the sphere of relations between organizations in the commercial sector, since it has numerous advantages over paper forms:

    Fast delivery of documents. Geographically, enterprises can be located very far from each other, and if regular mail was used, the time frame for resolving issues would be significantly delayed. Electronic document management allows you to perform legally significant actions quickly, without delay, also facilitating international interaction.

    Reducing costs associated with the preparation and subsequent transmission of electronic documents(processing electronic documents costs almost nothing).

    This exchange system allows you to speed up business processes of companies and entails a massive increase in profits.

    No costs for paper documentation and postage saves money.

    Courier express delivery and data transfer using telecommunication channels - means that allow you to submit reports to the tax authorities on time, but the second option is much more economical.

    Automated system facilitates the document processing procedure, reducing the time allotted for this procedure.

These advantages are especially relevant for companies with a large volume of external document flow.

In their activities, organizations almost daily draw up and transmit to each other the following types of documents:

    Legally significant letters;

    Agreements (other documents formalizing transactions);

    Invoices for payment;

    Commodity and freight invoices;

    Certificates of completed work (services);

    Acts of reconciliation of mutual settlements;

    Invoices.

How to create an electronic signature within the framework of legal regulation

The first question that arises after deciding to switch to a new form of document flow is: how to create an electronic signature certificate? Legislative regulation of this issue includes the following regulatory sources:

    Civil Code of the Russian Federation contains rules regulating the execution of transactions in electronic form (Articles 160, 434, 847 of the Civil Code of the Russian Federation).

    Federal Law No. 63-FZ "About electronic signature" dated 04/06/2011 also regulates the scope of transactions signed with electronic signatures of the parties, and provides for the receipt of services from government and management authorities using an electronic signature.

    Federal Law No. 149-FZ “On information, information technologies and information protection” dated July 27, 2006 defines the terminology of electronic document management, regulates issues related to data protection, using information technologies and with the commission of other actions to disseminate, search, receive and transmit information.

    Federal Law No. 402-FZ "About accounting" dated 06.12.2011 provides for the preparation of primary accounting documents in electronic form, in accordance with the uniform requirements for accounting documentation.

    Tax Code of the Russian Federation contains provisions regarding electronic issuance of invoices (Article 169).

    Order of the Ministry of Finance of the Russian Federation dated April 25, 2011 No. 50n approves the detailed procedure for the circulation of electronic invoices through telecommunication channels.

These regulations are the legal basis for the inter-corporate exchange of electronic documentation. Before starting to carry out legally significant actions, you should not only carefully study this database, but also join any electronic document management operator, as well as agree with counterparties on this type of exchange by formalizing the agreement in writing.

Step 1. Fill out an application

The only place where you can issue and receive an electronic signature is a certification center. No other institution is licensed to provide this type of service. There are similar centers in every region, information about them is easy to find on the Internet. All you need to do is contact the CA with an application, which, by the way, can also be submitted electronically. You can resolve further issues with the manager, whom the CA will provide specifically for interaction with your organization (or with an individual).

Step 2. Pay the invoice after confirmation of the application

When you receive an invoice for payment, carefully study its contents. The creation of an electronic signature itself should not be included in the price; the price is formed from the services received at the certification center and the cost of removable media (rutoken).

Step 3. Collecting a set of documents

To create an electronic signature, you don’t even have to call the CA office. All you have to do is leave a request using the online service. As soon as the manager processes it, he will immediately call you back, tell you in detail about the preparation of the package of documents and tell you what and how to do. You will definitely need to provide the CA with information about the person for whom the electronic signature will be issued. Depending on whether it is an individual or an organization, the package of documents will differ. There is also no need to provide a package of documents in paper form. Scans of originals and receipts for payment for services preparation of digital signature sent to the specified email address or using the form provided on the CA website. When the manager checks the sufficiency of the documents provided, as well as their authenticity, the signature will be made. The only time when you will need to come to the certification center in person is the moment you receive the electronic signature.

Step 4. Obtain an electronic signature certificate from the service center

During a personal visit, the certification center will provide you with a means of storing information (most often it is a flash card), which will contain the generated keys of two types, which were already discussed earlier (private and public), as well as software that will ensure the functioning of the keys. You will also be given a certificate on paper, sealed with the center’s seal and digital signature.

How to create an electronic signature, and what documents are needed for this

It is not at all difficult to obtain an electronic signature, and it is not a very long procedure. It is available to all legal entities, individual entrepreneurs, as well as individuals, who, due to the nature of their activities, came to the decision to create an electronic signature. By submitting an application along with documents, in accordance with the requirements of the CA, and paying the cost of the service, anyone can receive the necessary tool for a simplified form of document flow.

To obtain a key certificate, an organization may need:

    Completed application form for the creation of an electronic signature;

    If the applicant is a legal entity, then it is necessary to provide a recent extract from the Unified State Register of Legal Entities (not more than thirty days old);

    Certificate of registration of the organization in the unified register of legal entities and certificate of registration with the tax service;

    If the electronic signature is made in the name of the head of the organization, it is necessary to provide a document (a copy of the order, certified by the seal of the organization and the signature of the head), giving him the right to act on behalf and in the interests of the company without a power of attorney;

    If the signature is made in the name of a representative of the organization, then a power of attorney will be required for him, with clearly defined powers;

    The person in whose name the electronic signature is issued must provide the original of his passport and a copy, as well as the original SNILS and a copy.

Even if the digital signature is prepared for the needs of an organization, the actual owner will still be an individual who has the right to sign from the organization.

For an individual entrepreneur the set of documents will be slightly different:

    Completed application form for electronic signature;

    A certificate confirming the registration of the entrepreneur in the unified register, as well as registration with the Federal Tax Service inspection;

    A recent extract from the register of individual entrepreneurs, the issuance period should not be more than a month;

    The person in whose name the electronic signature is issued provides the original and a copy of the passport and SNILS.

Individuals provide to the CA: an application to create a signature, as well as your own passport and SNILS.

How to create an electronic signature using the website of the single EPC portal

Are there any other tips on how to create an electronic signature key? Without a doubt! Just go to single digital signature portal in the Russian Federation on the Internet, where you can find almost all the answers to questions regarding the design of a means of certifying documents in electronic form. There you can find out how to create a personal certificate; an electronic signature can be issued based on the application you left on the portal. But it is more reliable to do this in a certification center that is accredited by the Association of Electronic Trading Platforms(AETP). In this case, you will not have problems with the technical compatibility of electronic signature tools, their unique identification, and the possibility of violating the law will be excluded.

Each request to create an electronic signature is checked in the AETP authorization center. This check ensures that a non-unique key certificate or invalid signature does not exist. The authorization center is JSC Analytical Center.

If you are faced with the task of creating an electronic signature for the tax office, or for some other government bodies, or a means for inter-corporate interaction, the procedure is the same. First of all you need to fill out a form on the website. The developed questionnaire contains fields that are required to be filled out, such as: full name of the organization, TIN, legal form, full name, contact phone number. There are fields that are filled in voluntarily. This is the "Advanced" section. Here it is recommended to indicate the goals for which you will need an ES, and other points that concern you.

After clicking the “Get electronic signature” button, the data will be processed and sent to a specialist, who is engaged in issuing electronic signatures of the type you need as a full-time employee of an authorized certification center. When preparing an electronic signature, all individual characteristics of the customer specified in the application are taken into account.

An employee will contact the applicant within 1 business day The CA that is executing your application will tell you in detail about the actions that will need to be taken in the near future.

How to create an electronic signature and check its functionality after receipt

First of all for this there are a number of special programs, which work both online and stationary - when installed on Personal Computer. You can purchase the program at the CA itself. To check authenticity such a program loads electronic signatures from the storage area and checks the functionality of the tool in a matter of seconds.

How to create an electronic signature and not violate the rules for storing electronic documents

The electronic signature certificate is valid for one year, and this period is shorter than the retention period of most documents. To correct this situation there is time stamp- it replaces the date on the document and confirms that the electronic signature certificate had full legitimacy when signed.

You can find out whether the certificate is valid at the time of signing on the official website of the CA, which necessarily posts a list of revoked invalid certificates.

The electronic documents themselves, signed by electronic signature, can be stored two ways:

    Local storage (on a hard drive, on an organization’s server, removable media);

    Storage in the cloud (on the server of the organization that provided you with this service, use is possible if there is available Internet traffic).

How to create an electronic signature and what precautions to take

An electronic signature is a means of great legal significance, so it is important comply with the rules for its storage, do not leave it unattended, and ensure confidentiality conditions. If the slightest suspicion arises that unauthorized persons have taken possession of the digital signature, you should immediately request the suspension of its validity. The same must be done if you have lost your key. If you have any questions or concerns, you can always call service department A training center where specialists will be happy to tell you a way out of the situation. Loss of the key, as well as illegal possession of it, will serve as grounds for suspension of the certificate. This can be done by calling for a short time, but in the future you will need to visit the CA office to renew the signature.

Who can help create an electronic signature in St. Petersburg

"Business Resource" provides a wide range of services for small and medium-sized businesses, including accounting and legal support services. We have employees on staff who advise on issues of creating an electronic signature, helping to make this process as fast and simple as possible. The region where the services of the Business Resource company operate is St. Petersburg and the Leningrad region.

What we can offer the client:

    High-quality consultations within the framework of tax and civil legislation;

    Extensive experience in accounting support for enterprises of various sizes and directions;

    Successful implementation of tax optimization mechanisms into business;

    Individual approach;

    Prompt problem solving.

The prices for the services of the Business Resource company can pleasantly surprise you.