E-Office certificate validation

In accordance with the provisions of the Article 11.2.d) of Royal Decree 203/2021, of March 30, which approves the Regulation on the operation and functioning of the public sector by electronic means, Electronic offices must have a system that allows verification of the validity of their digital certificates.
Can verify the validity of the certificate from the Tax Agency's electronic office directly and free of charge through the platform of the Ministry of Economic Affairs and Digital Transformation: VALIDe – Certificate Verification.

The electronic headquarters certificates They allow for the secure identification of the Tax Agency's headquarters and to guarantee the authenticity and encryption of communicationspreventing impersonation or manipulation by unauthorized third parties.

Supported cryptographic protocols and algorithms

According to the ICT Security Guide CCN-STIC-807 “Cryptology for use in the National Security Scheme”The protocols and algorithms allowed for secure access to the Electronic Headquarters are as follows:

TLS 1.2

TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

TLS 1.3

TLS_AES_128_GCM_SHA256
TLS_AES_256_GCM_SHA384
TLS_CHACHA20_POLY1305_SHA256

Important note:
In the next renewal, the electronic headquarters certificate will use elliptic curve cryptography (ECC)specifically the NIST P-384 curve, in accordance with the requirements and recommendations of the guidelines CCN-STIC 807 and CCN-STIC 221 for the National Security Scheme. It is recommended that any solution, application, or integration that accesses the Electronic Headquarters verify that Supports ECDSA-P384 type ECC certificates with SHA-384, as well as the protocols and algorithms defined as permitted in the CCN-STIC guidelines. This will ensure compatibility and continuity of service when the Headquarters certificate is updated.