Wherever possible, security incidents should be reported to the mailbox meldungen-dsp@bsi.bund.de in encrypted format. This can be achieved via S/MIME or PGP. Below are the certificates and keys you will need.

S/MIME

Please use the relevant certificates in the zipped file for S/MIME-encrypted communications via meldungen-dsp@bsi.bund.de. The ZIP file contains these certifcates:

1. Root certificate for PKI administration: PCA-1-Verwaltung-20
   Validity: 01 December 2019, 00:00:00 to 31 December 2029, 23:59:59
   Fingerprint: EC6D 3196 531D 284F 1666 C3B7 51CE 6ADD 8E54 EEB2
2. IVBB Berlin-Bonn Information Network intermediate certification of Deutsche Telekom AG: CA IVBB Deutsche Telekom AG 20
   Validity: 01 December 2020, 00:00:00 to 01 December 2026, 23:59:59
   Fingerprint: 209A CE24 1511 3B80 071D 5FA3 A1F7 1760 4F0E 5ABB
3. Certificate for mailbox meldungen-dsp@bsi.bund.de:
   Validity: 05 July 2021, 07:16:03 to 05 July 2024, 23:59:59
   Fingerprint: 8803 B48A EBEA 3163 852C 8C32 67D8 03AA CD4C 783A

PGP

For PGP-encrypted e-mail communications with meldungen-dsp@bsi.bund.de, please use this PGP key:

• Fingerprint: 840C 3171 7CBE DE75 E9A4 C646 6F22 788B AE33 21AA
• Key ID: 6F22 788B AE33 21AA
• Validity until: 2025-05-16