Thursday, February 12, 2009

The application of 3rd party certification programme in Malaysia

A certificate authorities (CAs), is a third parties who issue digital certificate to provide verification that your website does indeed represent your company.


Currently, MSC Trustgate.com Sdn Bhd, which is a licensed Certification Authority (CA) operating within the Multimedia Super Corridor is the most popular 3rd party certification program in Malaysia. MSC Trustgate was incorporated in 1999 to meet the growing need for secure open network communications and become the catalyst for the growth of e-commerce, both locally and across the ASEAN region.

Trustgate is licensed under the Digital Signature Act 1997 (DSA), a Malaysia law that sets a global precedent for the mandate of a CA. As a CA, Trustgate’s core business is to provide digital certification services, including digital certificates, cryptographic products, and software development.

There are few main services provided by MSC:

1. SSL Certificate for Internet, Intranet and Server Security Secure Site SSL Certificates protect the transfer of sensitive data on Web sites, intranets, and extranets using a minimum of 40-bit and up to 256-bit encryption. It includes VeriSign Secured Seal.

2. Managed PKI
Managed Public Key Infrastructure (MPKI) service is a fully integrated enterprise platform designed to secure intranet, extranet, and Internet applications by combining maximum flexibility, performance, and scalability with high availability and security.

3. Personal ID
Digital ID is an electronic credentials that uses private key and public key to facilitate the following operations:
-Authentication: you are who you claim you are
-Privacy: your confidential data remains private
-Authorization: control user access rights to important data
-Integrity: be sure data is not altered behind your back
-Non-repudiation: have the evidence in the event of a dispute

Digital ID from MSC Trustgate.com is governed by the Digital Signature Act 1997. Without a legitimate Digital ID in your electronic transaction, your contract is not admissible in court in the case of dispute

4. MyTRUST for Mobile Signature
With MyTRUST, a SIM card can be turned into a Mobile Digital Identity for secure mobile banking and other financial services. Mobile digital signature provides non-repudiation on transactions under the Digital Signature Act, 1997. It runs on Wireless PKI platform and Mobile Operator infrastructure. PKI-enabled SIM cards are preloaded with MyTrust application and a digital certificate from a licensed Certification Authority. Users are able to digitally sign any transaction with ease and convenience via their mobile phone

5. MyKad PKI (MyKey)
Malaysian government has put in place a smart National Identity Card (“MyKad”) for every citizen. MyKad with PKI capability allows its holder to conduct online transaction with government agencies and private sectors. MyKey, is the MyKad PKI solution that works with your physically MyKad, allowing you to authenticate yourself online and to digitally sign documents or transactions and is accepted by the Malaysian government.

6. SSL VPN for Remote Access Services
MSC Trustgate offers simple and cost effective remote access solutions for mobile workers, branch offices, partners and others you want to give access to your network resources, without affecting the security of your enterprise.

And many more services.


By:
Wong Zheng Hwa 0701815

No comments:

Post a Comment