Get all the questions you have related to Digital Signatures answered in this section. This section addresses all your queries regarding DSC, their applicability and usage, procurement and regulatory implications in an easy-to-find categorized Q&A format.
Legally valid Digital Signature Certificates are issued only through a Controller of Certification Authorities (CCA), Mauritius, licensed Certification Authority (CA) i.e. eMudhra.
eMudhra, a Certification Authority (CA), offers valid digital signature certificates through its Registration Authority i.e. Mauritius Post.
A Digital Signature Certificate explicitly associates the identity of an individual/device with a pair of electronic keys - public and private keys - and this association is endorsed by the CA. The certificate contains information about a user's identity (for example, their name, postal code, country, email address, the date the certificate was issued and the name of the Certifying Authority that issued it).
These keys complement each other where one does not function in the absence of the other. They are used by browsers and servers to encrypt and decrypt information regarding the identity of the certificate user during information exchange processes. The private key is stored on the user's computer hard disk or on an external device such as a token. The user retains control of the private key; it can only be used with the issued password.
The public key is disseminated with the encrypted information. The authentication process fails if either one of these keys in not available or do not match. This means that the encrypted data cannot be decrypted and therefore, is inaccessible to unauthorized parties.
A digital signature is an electronic method of signing an electronic document whereas a Digital Signature Certificate is a computer based electronic record that
Signing establishes authenticity of an email message by attaching your Digital Certificate to the email, but it does not provide protection against third party monitoring.
Encrypting scrambles a message in such a way that only the designated recipients can unscramble it. This safeguards messages against monitoring or interception. For encrypting message, recipient?s public key certificate is required and for decrypting message recipient will use his private key.
No. You will not be able to use one SSL certificate on different websites with different domain names because the certificate is explicitly associated with the exact host and domain name.
A wild card SSL certificate can be issued that can support different sub domains like abc.emudhra.com, def.emudhra.com etc.
The ICT Authority, in the exercise of its statutory function as CCA, is the apex body of the Mauritian PKI.
The CCA certifies the public keys of CAs, which enables users in the cyberspace to verify that a given certificate is issued by a licensed CA. For this purpose, CCA operates, the Root Certification Authority of Mauritius.
A Subscriber Agreement is an agreement between Subscriber and eMudhra CA stating that the subscriber will use the Digital Signature Certificate for the assigned use or objective and that the subscriber is solely responsible for the protection of the private key and ensuring functionality of the unique key pair. The subscriber also agrees through the Subscriber Agreement that all the information provided to eMudhra CA at the time of registration is accurate. In the event of any change in information, the subscriber is obliged to immediately inform eMudhra CA.
eMudhra CA is not responsible for any legal disputes arising due to misrepresentation on the part of the subscriber.
Processing of Digital Signature Certificate Application comprises of just two steps:
Phase 1 - Application, Payment & Document Submission
You can download application form directly from this website: Click here OR Get the application from RA by making the payment and submit the necessary documents as specified in the application form to the Registration Authority i.e. Mauritius Post.
Phase 2 - Download of the Digital Signature Certificate
After successful verification of the application as well as supporting documents, eMudhra will send an email containing download credentials for Digital Signature Certificate. Logon to eMudhra portal and download digital signature certificate on to the token using the credentials.
Check in the same page whether you are getting a pop up message in the status bar to run the active X control, right click on the POP UP message and run the add-ons to get the active X control to install. If not, ensure that you are logged-in with 'Administrator privileges' and 'ActiveX' controls are enabled in the Internet Explorer (IE). To enable Active X please follow the below steps given:
If all the settings are enabled and you have administrator rights then active x control should get downloaded on your machine, to proceed further, enable the continue button.
Ensure that 'ActiveX' controls are enabled in the Internet Explorer. To enable Active X please follow the below steps given:
During the download of digital signature certificate on Operating Systems like Windows Vista and 7, the system should have trust chain certificates installed on IE. This is actually taken care during DSC download process but due to some reason, if trust chain is not installed properly, then the same can be downloaded from the eMudhra website (www.emudhra.mu) > quick links > CRLs & Root Certificate. The root certificate should be placed in the correct store of the windows as below:
No, details cannot be changed. You need to revoke the current certificate and apply for a new one.
eMudhra provides a facility to check for the correctness of your details just before downloading of the digital signature certificate. If you are not satisfied with your details displayed, you can reject the application.
A Digital Signature Certificate can be revoked under circumstances such as the following
No, revocation is restricted to: