Sorry, we are still working on the translation of our website. Some information is currently only available in German.

TCOS 3.0 Signature Card 2.0

Smartcard with TCOS 3.0 and SigG application

This signature card was specially designed for the use as a secure signature or seal creation device according to the requirements of the German signature law. It provides applications that allow the various cryptographic functionalities such as the generation of signatures based on elliptic curve cryptography (ECC). The application SigG contains asymmetrical key material from a signature law-compliant key generator and offers a functionality to reload qualified certificates in a confirmed process.

The TCOS 3.0 Signature Card 2.0 is available as a "single signature card" or "multi-signature card", both variants equipped as dual interface cards by default. Unlike single-signature cards the multi-signature card allows the creation of more than one signature after PIN entry. As this may be a security issue the usage of MSCs is subject to special requirements with respect to the application environment.

Dual Interface Cards

TCOS Smartcards are available as pure contact-based or dual interface smartcards. In Addition to the contact field for contact based communication, dual interface smartcards are equipped with an antenna that is moulded with the card body. This "air interface" conforms with ISO-IEC 14443.

Feature overview

  • Intelligent processor chipcard with the tailored chipcard operating system TCOS (TeleSec Chipcard Operating System) developed by Telekom Security
  • NetKey application (NKS) for advanced signatures, decryption and authentication
  • Access protection for firewalls, routers, web servers, internet service providers, secure domain login and/or remote login
  • X.509V3 certificates for advanced signature, decryption and client server authentication
  • Certified as a secure signature or seal creation device according to regulation (EU) No. 910/2014 (eIDAS)
  • Proven quality of the key material by a quality seal of the Telekom Security Trust Center
  • Simple integration into existing systems (e.g. Microsoft ILM/FIM)

Smartcard Produktion in Nepthen bei T Systems

Our service

  • Delivery of product relevant documentation
  • Delivery of the TCOS 3.0 Signature Card V2.0 chipcard
  • Provision of interface software
  • Further variants available upon request
  • Chipcard with individual customer layout available upon request


Technical details

Operating system:

TCOS 3.0

Instruction set:   

compliant to ISO 7816


Common Criteria EAL4+


Blue TeleSec layout, white or customer layout upon request

imprinted card number and CAN


ID-1 (CB) or ID-1 (DI)


T=1 acc. ISO 7816-3

T=CL acc. ISO 14443 type B

Chip type:         

Infineon SLE78CLX1440P

Chip evaluation:      

Common Criteria EAL 5+

Memory space:

in total: 144 kByte (EEPROM)


ECDSA with 256 Bit


Acc. CEN-14890, part 2 based on elliptic curves (NIST P-256)


ECDH with 256 Bit,

NIST P-256 (for Windows-LogOn),

PACE acc. TR-03110

Random number generator:


P2 classification (SOF "high") acc. AIS-31


Telekom Security provides drivers and middleware to facilitate the integration of TCOS 3.0 Signature Card 2.0 into software applications.

Learn more

Ordering process

For ordering your TCOS 3.0 Signature Card 2.0 please send us your request including your preferred TCOS Smartcard, order volume and your contact information. After checking your request we will get back to you as soon as possible.

Ask us for the current price list for TCOS Smartcards.