What are the different roles of Certifying Authorities? Explain.

What are the different roles of Certifying Authorities? Explain.

DOWNLOAD:

☛ PDF

☛ View

What are the different roles of Certifying Authorities? Explain.

SOLUTION:

Certifying Authority:

• Any person may make an application to the Certifying Authority for the issue of a Digital Signature Certificate in such form as may be prescribed by the Central Government.
• Every such application shall be accompanied by such fee not exceeding twenty-five thousand rupees as may be prescribed by the Central Government, to be paid to the Certifying Authority Provided that while prescribing fees under sub-section (3) Different fees may be prescribed for Different classes of applications.
• Every such application shall be accompanied by a certification practice statement or where there is no such statement, a statement containing such particulars, as may be specified
• On receipt of an application under sub-section (1), the Certifying Authority may, after consideration of the Certification practice statement or the other statement under sub-section (3) and after making such enquiries as it may deem fit, grant the Digital Signature Certificate or for reasons to be recorded in writing, reject the application:

Provided that no Digital Certificate shall be granted unless the Certifying Authority is satisfied that:

• The application holds the private key corresponding to the public key to be listed in The Digital Signature Certificate.
• The applicant holds a private key, which is capable of creating a digital signature;
• The Public Key to be listed in the certificate can be used to verify a digital signature affixed by the private key held by the applicant: Provided further that no application shall be rejected unless the applicant has been given a reasonable opportunity of showing cause against the proposed rejection.

What does CA should Certify?

• A Certifying Authority while issuing a Digital Signature Certificate shall certify that – 
• It has complied with the provisions of this Act and the rules and regulations made there under;
• It has published the Digital Signature Certificate or otherwise made it available to such person relying on it and the subscriber has accepted it;
• The subscriber holds the private key corresponding to the public key, listed in the Digital Signature Certificate;
• The subscriber's public key and private key constitute a functioning key pair;
• The information contained in the Digital Signature Certificate is accurate; and
• It has no knowledge of any material fact, which if it had been included in the Digital Signature Certificate would adversely affect the reliability of the representations made in clauses (a) to (d).