DIGITAL

SIGNATURE

10/3/2012 Monal Deshmukh 1

 Digital Signature
 Any subscriber can authentication an
electronic record by affixing digital
signature.
 The authentication of electronic record
shall be effected by use of asymmetric
crypto system and hash function which
envelop and transform the initial electronic
record into another electronic record.

 Objectives:
• To identify the sender
• To verify the message has not been
altered in transit.
"hash function" means an algorithm mapping or
translation of one sequence of bits into another
Contd.
 Hash function means an algorithm
mapping or translation of one sequence
of bits into another, generally smaller set
is known as Hash Result.
A. It reconstruct the original electronic
record from the hash result produced
by the algorithm.
B. Two electronic records can produce the
same hash result using the algorithm.
 Verification
 Any person by use of public key of subscriber can verify the
electronic record. The private key and public key are unique
to the subscriber and continues a functioning key pair.
 In case Electronic transmission of data it is needed to
ensure authenticity ad that the data is not tampered.
 Thus sec 3 provides authentication of electronic records
by use of “asymmetric crypto system” by using encryption
and decryption methodologies and software tools.
 Encryption software program plaintext to cipher text
 Decryption software program
Contd.
 In asymmetric crypto system each person
has two corresponding and matched
keys-private key (possessor do not share) and public
key.
 Procedure of working
 To obtain it, one has to apply in the prescribed form to the
certifying authority (CA) together with the necessary
documents such as proof of identity, proof of residence, fees
etc.
 CA verifies and approves document.
 On approval issues a digital certificate to the applicant. It also
provides public key and private key. The certificate which is
digitally signed guarantees that the holder of the public key is
the same person who holds the private key.
 The sender prepares the message to be sent including his
name on a computer.
 Sender applies hash function i.e. a mathematical formula or
algorithm, in the form of computer software on the message
to encrypt it
 Digital signature certificates
 Application
 Grant of certificate
 Representations upon issue
 Suspension of digital signature certificate
 Revocation of Digital signature certificate
(death, dissolution, request of authorised person)
 Notice of suspension o revocation
ELETRONIC

GOVERNANCE
 ELECTRONIC GOVERNANCE

 It refers to the application of IT to the processes of the Govt

functioning in order to bring out SIMPLE, MORAL, ACCOUNTABLE,
RESPONSIVE AND TRANSPARENT (SMART)
 It involves electronic filing of document with government agencies
and creating a network of e-services and e-administration.
 Inorder to facilitate electronic governance, IT ACT 2000 accords legal
recognition of digital records, digital signatures.
 From 16th Sept 2006 electronic filing and using digital signatures has
been made mandatory for the companies
 PROVISIONS TO FACILITATE ELECTRONIC
GOVERNANCE

1. Legal recognition of electronic records

2. Legal recognition of digital signature
3. Use of electronic record and signatures in govt and its Agencies
4. Delivery of services by service provider
5. Retention of electronic record
6. Publication of rules, regulations in electronic gazette
7. No rights to insist that the document should be accepted in
electronic form
8. Central Govt empowered to make rules in respect of electronic
signature
Section 11: Attribution of electronic
records.
An electronic record shall be attributed to the
originator—
(a) if it was sent by the originator himself;
(b) by a person who had the authority to act
on behalf of the originator in respect of
that electronic record; or
(c) by an information system programmed by
or on behalf of the originator to operate
automatically
Sec 12 : Acknowledgment of receipt.
(1) (a) any communication by the addressee, automated or otherwise;
(b) any conduct of the addressee, sufficient to indicate to the
originator that the electronic record has been received.
(2) Where the originator has stipulated that the electronic record
shall be binding only on receipt of an acknowledgment of such
electronic record by him, then unless acknowledgment has been so
received, the electronic record shall be deemed to have been
never sent by the originator.
(3) Where the originator has not stipulated that the electronic
record shall be binding only on receipt of such acknowledgment,
and the acknowledgment has not been received by the originator,
then the originator may give notice that no acknowledgment has
been received by him and specifying a reasonable time by which
the acknowledgment must be received by him and if no
acknowledgment is received within the aforesaid time limit he may
after giving notice to the addressee, treat the electronic record as
though it has never been sent.