What is HARICA?

HARICA is the Hellenic Academic & Research Institutions Certification Authority. It participates in all major Global ‘ROOT CA’ Trust Programs, and operates as a ‘Trust Anchor’ in widely used Application Software and Operating Systems.

It is a Globally “Trusted Third Party” entity that participates in all major Global “ROOT CA” Trust Programs (360, Adobe, Apple, Microsoft, Mozilla, Oracle), and operates as a “Trust Anchor” in widely used Application Software and Operating Systems (Adobe, Apple, Google, Microsoft, Mozilla, Linux, Oracle Java).
HARICA is currently funded by Academic Network (GUnet), a non-profit civil company. Its members are the Universities of Greece. This GUnet service, referred to as the Hellenic Academic and Research Institutions Certification Authority (HARICA), is operated by the IT Center of Aristotle University of Thessaloniki and acts as a Trust Service Provider (TSP) also known as a “Certification Authority”, and as a “Qualified” Trust Service Provider (QTSP).

HARICA is listed in the National Registry of Qualified Trust Service Providers which is maintained by the National Supervisory Body (Ε.Ε.Τ.Τ.) since June 2015, offering Qualified/Advanced electronic signatures for members of the Greek Academic and Research Community, along with third-party natural/legal entities.

HARICA has received successful and consecutive Conformity Assessment Reports fulfilling the requirements of Regulation (EU) 910/2014 (also known as eIDAS) in the scope of “Qualified” electronic Signatures, Seals, Time Stamps and Website Authentication. This Certification ensures that HARICA’s Certificates for Qualified eSignatures/eSeals, are legally binding not only in Greece but cross-border in all European Union Member States and non-EU Countries that have a bi-lateral agreement with the European Union.

Should I trust HARICA ?

The Hellenic Academic & Research Institutions Certification Authority (HARICA ) is a member of Mozilla Root CA program since 2012, Microsoft Root CA program since June 2013, Apple Root CA program since September 2013, 360 Root CA program since October 2019 and Oracle since April 2021.

HARICA is pre-installed as a “Trust Anchor” in Mozilla Firefox browser (version 11 or later), Operating Systems and software by Microsoft (Windows XP or later), Operating Systems and software by Apple (OS X Mavericks or later, iOS 7 or later), 360 Browser, Oracle Java JRE Family (Versions 7, 8, 11, 16 or later), Android Operating Systems (version 7.1 or later), Linux Operating Systems and software that uses Network Security Services (NSS) 3.13.2 or later. It is also pre-installed with distributions of Adobe products and Browsers based on Google Chromium, including Google Chrome.

You can read more for each program in the following links:

HARICA has successfully passed the following certifications:

  • ETSI EN 319 411-1 This audit is consistent with standards technical specification Electronic Signatures and Infrastructures (ESI); “Policy and security requirements for Trust Service Providers issuing certificates; Part1: General requirements” under the scope NCP, NCP+, LCP, DVCP, OVCP, EVCP.
  • ETSI EN 319 411-2 This audit is consistent with standards technical specification Electronic Signatures and Infrastructures (ESI); “Policy and security requirements for Trust Service Providers issuing certificates; Part2: Requirements for Trust Service Providers issuing EU qualified certificates” under the scope QCP-n, QCP-n-qscd, QCP-l, QCP-l-qscd, QCP-w.
  • ETSI EN 319 421 This audit is consistent with standards technical specification Electronic Signatures and Infrastructures (ESI); “Policy and security requirements for Trust Service Providers issuing Time-Stamps” under the scope BTSP.
  • Qualified Trust Service Provider (QTSP), following the Regulation (EU) No 910/2014 (e-IDAS) of the European Parliament and of the Council of 23 July 2014 on electronic identification and trust services for electronic transactions in the internal market and repealing Directive 1999/93/EC.

HARICA is audited on a yearly basis by an Accredited Conformity Assessment Body that evaluates and asserts compliance to specific International Standards that Qualified Trust Service Providers must adhere to.