digital signature 3
TRANSCRIPT
DIGITAL
SIGNATURE
PRESENTED BY: ANKITA DAVE 1
INDEX
2
SR.NO. TOPIC SLIDE NO.1. WHAT IS DIGITAL SIGNATURES? 4
2. WHY DIGITAL SIGNATURES? 5
3. PAPER SIGNATURES VS DIGITAL SIGNATURES 6
4. PRIVATE KEY & PUBLIC KEY 7
5. PROTECTION OF PRIVATE KEY 8
6. WHAT IS DIGITAL SIGNATURE CERTIFICATE (DSC)? 9
7. CERTIFICATION AUTHORITY (CA) 10
8. HOW DOES DIGITAL SIGNATURES WORKS? 11
9. PROCEDURE TO OBTAIN DSC 12
INDEX
3
SR.NO. TOPIC SLIDE NO.10. STEP 1: DOWNLOADING ROOT CERTIFICATE 13
11. STEP 2: SELECTING A CERTIFYING AUTHORITY 18
12. STEP 3: VISIT THE WEBSITE OF THE CA 19
13. CLASS- 1 CERTIFICATES 20
14. CLASS- 2 CERTIFICATES 21
15. CLASS- 3 CERTIFICATES 22
16. STEP 4: SELECT THE TYPE OF CERTIFICATE NEEDED 23
17. STEP 5: SUBMIT AN ONLINE REQUEST 24
18. CONCLUSION 29
19. SOURCES OF INFORMATION 30
WHAT IS DIGITAL SIGNATURES?
As per Information Technology Act 2000, digital signature means authentication of any electronic record by means of an electronic.
Simply, signature in digital form OR Mark to authenticate a document.
4
WHY DIGITAL SIGNATURES?
Authentification. Integrity. Low cost. Eliminates the use of paper. Faster procedures. Completely secure.
5
PAPER SIGNATURES VS. DIGITAL SIGNATURESPARAMETER PAPER DIGITAL
Authenticity May be forged Can not be copied
Integrity Signature independent of the document
Signature depends on the contents of the document
Non-repudiation a. Handwriting expert needed
b. Error prone
a. Any computer user
b. Error free
6
PRIVATE KEY & PUBLIC KEYEach individual generates his own key pair.
PRIVATE KEY
Known only to owner
Used for making digital signature
7
PROTECTION OF PRIVATE KEY
The private key generated is to be protected & kept in secret because Can be misused by anyone who is having
access to your computer system. Is lost if computer system is formatted or
internet explorer is changed. The key is secured using
8
WHAT IS DIGITAL SIGNATURE CERTIFICATE (DSC)?
Is an electronic means of establishing records when doing transactions on the Internet.
Are easily transportable and cannot be imitated.Contains details like owner’s name & public key,
expiration date of public, serial number & name of the issuer (the Certification Authority) & his digital signature.
It is issued so that Recipient can verify that the certificate is authentic.
9
CERTIFICATION AUTHORITY (CA)
SR. NO. NAMES OF CA WEBSITES1. NIC nicca.nic.in
2. GNFC www.ncodesolutions.com
3. SAFESCRYPT www.safescrypt.com
4. TCS www.tcs-ca.tcs.co.in
5. MTNL TRUSTLINE www.mtnltrustline.com
6. IDRBT www.idrbtca.org.in
7. E-MUDHRA www.e-Mudhra.com
10
HOW DOES DIGITAL SIGNATURE WORKS?
11
PROCEDURE TO OBTAIN DSC
12
STEP 1: DOWNLOADING ROOT CERTIFICATE
Visit the website of the Controller of Certifying Authorities (CCA) at www.cca.gov.in.
13
14
15
16
17
STEP 2: SELECTING A CERTIFYING AUTHORITY
Visit the website of the CCA at www.cca.gov.in to obtain a list of licensed Certifying Authorities in India.
Based on information and study of the relevant websites, select a Certifying Authority.
Example: TCS official website is www.tcs-ca.tcs.co.in.
18
STEP 3: VISIT THE WEBSITE OF THE CA
A visit to the select CA website provides following three types of digital signature certificates:
CLASSES OF DSC: Class-1 certificates Class-2 certificates Class-3 certificates.
19
CLASS-1 CERTIFICATES These Certificates are personal e-mail
Certificates that allows you to secure your email messages. These certificates can be used to:
1. Digitally sign email. 2. Encrypt email. 3. Authenticate to Web Servers. These certificates, however, do not facilitate
strong authentication of the identity of the subscriber and hence, cannot be relied upon where proof of identity is required (commercial use).
20
CLASS-2 CERTIFICATE These Certificates are issued as Managed Digital
Certificates to employees/ partners/ affiliates/ customers of business and government organizations that are ready to assume the responsibility of verifying the accuracy of the information submitted by their employees/ partners/ affiliates/ customers.
These certificates issued under the TCS-CA Trust Network are legally valid under the Indian IT Act 2000.
21
CLASS-3 CERTIFICATES These Certificates are issued to individuals,
companies and government organizations. They can be used both for personal and
commercial purposes. They are typically used for electronic commerce
applications where security is a major concern. These Certificates issued by the TCS-CA are
legally valid under Indian IT Act 2000.
22
STEP 4: SELECT THE TYPE OF CERTIFICATE NEEDED
We need a legally valid digital signature certificate for an individual. The relevant certificate is a class-3 certificate.
23
STEP 5: SUBMIT AN ONLINE REQUEST
The next step is to create a user account on the TCS CA website, complete an online enrollment form and generate a cryptographic key pair on our computer.
24
25
26
27
28
CONCLUSION
Hence, we can conclude that digital signatures:Minimizes the risk of dealing with imposters.Minimizes the risk of undetected message
tampering and forgery.Retains a high degree of information security.
29
SOURCES OF INFORMATION
asclonline.com/images/d/d4/Simple_Guide_to_Digital_Signatures.pdf
www.youdzone.com/signature.htmlen.wikipedia.org/wiki/Digital_signatureswww.cca.gov.inesolutions.net.in/digitalsignatures.htmlnsdl.co.in/business/cirRec_18Mar08.doc
30