ELECTRONIC IDENTITY FOR THE ADMINISTRATION

Implementation of the Signature

In order to be able to sign a document, the following steps have previously been taken:

1. Discharge from the CL@ve system.

2. Password generation. There can be two cases.

2.1. First registered users in Cl@ve and users of TUSS Password and Password.

Improved security of access to the system will require the establishment of a new password, to be authenticated from then on. (Refer to the user guide in the "Password Update" section)

2.2. Users registered in current Cl@ve. It is generated according to the corresponding manual.

3.- Generation of authentication and signature keys.

Through the Cl@ve system, citizens can generate their authentication and signature keys in two different phases:

3.1. At will. The citizen can generate their authentication and signature keys at will in an independent act of generation of keys on demand. (Refer to "PHASE 5 - SIGNATURE KEY GENERATION PROCEDURE" section "SIGNATURE PROCESS" from the same page)

3.2. At the time of the first signature. If a citizen intends to sign a document the first time, and has not yet generated the authentication and signature keys, they will be generated in a process immediately prior to the signature he intends to make. (Refer to "PHASE 5 - SIGNATURE KEY GENERATION PROCEDURE" section "SIGNATURE PROCESS" from the same page)

Once the above steps have been completed, the citizen will be able to sign the documents that the various services of the Administration integrate into the Cl@ve system. Various administrations will gradually integrate with this functionality until the whole of the General Government of the State and other administrations that are interested in joining the System.

Precisely because of the heterogeneity of the Agencies that will provide services through the Cl@ve System, the citizen will notice that changes occur in the different screens he navigates during the signing process. This is because certain bodies have a specific function within the system, and in order for the system to provide all the necessary security guarantees to the process, the information involved in the processes is safeguarded and managed by different administrations.

The SGAD as manager of the platform of Cl@ve, the GISS as Provider of Trust Services, the Tax Agency as responsible for the single registration and the General Directorate of the Police as Certifying Authority and Provider of Trust Services, are especially relevant in the signing process, so the logos corresponding to these agencies, together with the citizens of the Administration they intend to sign. (Refer to "PHASE 6 - SIGNATURE PROCESS" section "SIGNATURE PROCESS" from the same page)

Signature process

Phases of the signing process:

Firstly, authentication must be carried out prior to any administrative formalities within the system.

In this case, the Social Security portal was chosen as an example. It should be remembered that depending on the authentication with Cl@ve PIN or Cl@ve Permanente, some services or others can be accessed. In this case, as it is intended to be signed, we will use Cl@ve Permanente, which is equipped with a higher level of safety.

On the right side of the screen, in the white box, we see the "Access" button that allows us to enter the Cl@ve system:

    Procedimiento de autenticación

    Once triggered we find the next screen, where we will need to enter our ID number (ID/NIE) and password that we will have previously activated.

    You may need to update your password. This will happen with the first users registered in Cl@ve and with the users inherited from other systems. This update provides passwords with the most advanced security measures.

    If this is the case, the following screen shall be displayed:

    NOTE: For the management of the passwords of the Cl@ve system, it is the National Police Corps that is responsible. For this reason, the National Police logo is displayed on screens that perform functions of their competence.

    Actualización de la contraseña

    It should be noted that once updated, the valid passwords to authenticate in the system will be the new ones and not the previous ones.

    If the previous step has not been necessary, we will find this screen:

    Continuación del proceso

    Once the button is inserted, we press the continuation button, and if the process is done correctly, we will have identified ourselves in the Cl@ve system.

    In this example, we are going to make a Beneficiary High in Social Security.

    For this purpose, on the page shown, we request the desired procedure. It will be up to each of the administrations to establish the level of security required to be able to access them. In this case, we have authenticated with a high level, which allows access to this Service.

    Acceso a un trámite

    Being a High Security procedure, the user will be asked to enter a single-use key (OTP) that will be sent by SMS to the mobile phone that he discharged in the registration to the system,

    Comprueba tu teléfono móvil

    Once this safety check has been carried out, the administrative procedure is completed following the instructions of the Agency concerned until its completion.

    Cumplimentar trámite administrativo

    The next screen shows the box that needs to be turned on to continue the process. It is a statement that the data provided are true.

    Continuar con el proceso

    In the previous case, the procedure requires to be signed by the applicant. Accordingly, a screen will be displayed for the realization of the signature.

    If the user has not requested the signing certificates in advance, a screen similar to this will be displayed, where the possibility of requesting the generation of them is given.

    Solicitud del certificado centralizado

    It is necessary to highlight that, at this point in the process, the screens change and the National Police logo is shown. This is because the management and custody of the certificates is the responsibility of the Corps. Therefore, in order to carry out this part of the process with the same guarantees as the electronic ID certificates, the request is redirected to the systems of the Police Directorate-General (PDG) for its generation.

    In this process, the password is requested, the knowledge of which is solely in the hands of the user, and the box I accept, after reading it, is marked if you agree with the information contained in it.

    Emisión de tu certificado de firma centralizado
    Emisión de tu certificado de firma centralizado aceptar

    If the process of producing certificates is carried out correctly, it is forwarded again to the Agency in which we were in the past, again changing the screens to inform the citizen at all times in which Organism is located. On that screen, the completion of the process will be reported.

    Solicitud del certificado centralizado firmado

    Once the certificates have been produced, we are ready to sign a document.

    The next screen shows the user that it is necessary to sign a specific procedure. In order to do so, you need to enter the password and the OTP received by mobile phone.

    The operation is then confirmed.

    Proceso de firma

    If the process has been successfully completed, a screen similar to the next will be displayed, where an opportunity is given to obtain a justification for the operation performed.

    Finalización del proceso de firma

    This would be the final result of the signature operation.

    Finalización del trámite administrativo