Pioneering digital trust in government
Agency for Information Society RS (Bosnia and Herzegovina)
Launched the first national certificate authority, passed audit on first attempt, and enabled ministries to pioneer secure electronic signatures and services.
Challenge
Government ministries lacked a qualified electronic signature authority, limiting the rollout of eGovernment services and reducing public trust in digital infrastructure.
Action
Deployed a PKI infrastructure including Root CA, Issuing CA and ministry-facing Registration Authority (RA), backed by Entrust software, SafeNet HSMs, Microsoft AD and IIS-based services.
Implemented certificate lifecycle processes with CRL-based revocation procedures, aligned with local legislation and European eIDAS/ETSI requirements.
Authored Certificate Policy (CP) and Certification Practice Statement (CPS) in collaboration with legal and compliance teams, establishing a foundation for audit and long-term governance.
Trained and upskilled the existing engineering team to maintain CA operations, while building institutional knowledge of PKI and auditing practices.
Impact
First national certificate authority launched and passed external audit on the first attempt.
Qualified digital certificates issued within one year to three ministries and the national tax authority, unlocking secure electronic services initiatives.
Adoption of qualified electronic signatures pioneered across government, increasing public trust in digital services.