Professional Documents
Culture Documents
Siddharth S Jain
Information Technology Act Definitions, Important terms under Information Technology Legislation
Digital Signatures
Electronic Records
Certifying Authority
Introduction:
UNCITRAL Model Law on E-Commerce; January 30, 1997
Information Technology Act, 2000; October 17, 2000
IT Act, 2008; made applicable on October 27, 2009
Extends to whole of India, and applies to any contravention committed outside India by any person
Does not apply to:
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
Objectives of the Act:
To empower:
SEBI, RBI & Indian Evidence Act for restricting electronic crime
To facilitate:
Prudential Education
Siddharth S Jain
2(1)(b) Addressee
2(1)(c) Adjudicating
Officer
2(1)(d) Affixing digital
signature
2(1)(e) Appropriate
Government
2(1)(f) Asymmetric
crypto system
2(1)(g) Certifying
Authority
2(1)(h) Certification
practice statement
2(1)(i) Computer
2(1)(j) Computer
network
2(1)(l) Computer
system
2(1)(o) Data
2(1)(p) Digital
signature
Information Technology & Systems Audit
Prudential Education
Siddharth S Jain
2(1)(Za) Originator
2(1)(zh) Verify
Prudential Education
Siddharth S Jain
Digital Signature
Prudential Education
Siddharth S Jain
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
electronic record by affixing his digital signature. Such authentication shall be done by use of asymmetric
crypto system and hash function, which envelops and transform the electronic records into another
electronic record.
Any person by use of public key of the subscriber can verify the electronic record. The private key and the
public key are unique to the subscriber and constitute a functioning key pair. Certification Authorities (CA) in
India maintains the public key infrastructure (PKI).
electronic signatures that provides the highest levels of security and universal acceptance.
Digital signatures are based on Public Key Infrastructure (PKI) technology, and guarantee signer identity and
intent, data integrity, and the non-repudiation of signed documents. The digital signature cannot be copied,
tampered with or altered. In addition, because digital signatures are based on standard PKI technology, they
can be validated by anyone without the need for proprietary verification software.
On the other hand, an electronic signature is a proprietary format (there is no standard for electronic
signatures) that may be a digitized image of a handwritten signature, a symbol, voiceprint, etc., used to
identify the author(s) of an electronic message. An electronic signature is vulnerable to copying and tampering,
and invites forgery.
Prudential Education
Siddharth S Jain
Electronic Record
As per Section 2(t) of Information Technology Act, 2000 as amended, Electronic record means data, record or data
generated, image or sound stored, received or sent in an electronic form or micro film or computer generated micro
fiche,
Prudential Education
Siddharth S Jain
Prudential Education
Siddharth S Jain
Chapter I Preliminary
o 1. Short title, extent, commencement and application. o 2. Definitions. Chapter II Digital Signature
o 3. Authentication of electronic records. Chapter III Electronic Governance
o 4. Legal recognition of electronic records o 5. Legal recognition of digital signatures. o 6. Use of electronic records and digital signatures in Government and its agencies. (1) Where any law
provides foro 7. Retention of electronic records.o 8. Publication of rule, regulation, etc., in Electronic Gazette. o 9. Section 6, 7 and 8 not to confer right to insist document should be accepted in electronic form.o 10. Power to make rules by Central Government in respect of digital signature.Chapter IV Attribution, Acknowledgement and Dispatch of Electronic records
o 11. Attribution of electronic records.o 12. Acknowledge of receipt.o 13. Time and place of dispatch and receipt of electronic record. Chapter V Secure Electronic records and secure digital signatures
o 14. Secure electronic record.o 15. Secure digital signature.o 16. Security procedure.Chapter VI Regulation of Certifying Authorities
o 17. Appointment of Controller and other officers. o 18. Functions of Controller. o 19. Recognition of foreign Certifying Authorities. o 20. Controller to act as repository. o 21. License tissue Digital Signature Certificates. o 22. Application for license. o 23. Renewal of license o 24. Procedure for grant or rejection of license.o 25. Suspension of license. o 26. Notice of suspension revocation of license.o 27. Power to delegate o 28. Power to investigate contraventions. o 29. Access to computers and data. o 30. Certifying Authority to follow certain procedures.o 31. Certifying Authority to ensure compliance of the Act, etc.o 32. Display of license.o 33. Surrender of license. o 34. Disclosure. Chapter VII Digital Signature Certificates
o 35. Certifying authority to issue Digital Signature Certificate. o 36. Representations upon issuance Digital Signature Certificate. o 37. Suspension of Digital Signature Certificate. o 38. Revocation of Digital Signature Certificate. o 39. Notice of suspension or revocation. Chapter VIII Duties of Subscribers
o 40. Generating key pair.o 41. Acceptance of Digital Signature Certificate. o 42. Control of private key. Chapter IX Penalties and Adjudication
o 43. Penalty for damage to computer, computer system, etc.o 44. Penalty for failure to furnish information, return, etc.o 45. Residuary penalty.o 46. Power to adjudicate. o 47. Factors to be taken into account by the adjudicating officer. -
Prudential Education
Siddharth S Jain
10
Prudential Education
Siddharth S Jain
Section 13: Time & place of dispatch and receipt of electronic record:
- If the addressee has not designated a computer resource along with specified timings; receipt occurs when the
electronic record enters the computer resource of the addressee.
- Unless otherwise agreed between the originator and the addressee, the dispatch of an electronic record occurs when
it enters a computer resource outside the control of originator and the time of receipt shall be at the time when the
electronic record enters the designated computer resource.
11
Prudential Education
Siddharth S Jain
Renewal of license
A CA can apply for renewal of license not less than forty-five days before the date of expiry of the period of validity of
license and comply all rules of a fresh application. Authorities can reject no application unless the applicant has been
given a reasonable opportunity of presenting his case.
During the process of inquiry; CCA may suspend license of CA after giving reasonable opportunity to show cause
For not more than 10 days; during which CA can issue no DSC/ESC
12
Prudential Education
Siddharth S Jain
Functions of Controller of CA
Function
Keyword
Function
Description
Supervision
Certifying
Standard
Employees
Business
Advertisements
Form & Content
Accounts
Auditors
Establishment
Dealings
Conflict
Duties
Disclosure Record
Public
13
Prudential Education
Siddharth S Jain
14
Prudential Education
Siddharth S Jain
15
Prudential Education
Siddharth S Jain
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
___________________________________________________________________________________________________________
16
Prudential Education
Siddharth S Jain
Appeal to CAT
Any person aggrieved by an order of CCA/AO may appeal to CAT within 45 days from the order of the CCA/AO.
___________________________________________________________________________________________________________
17
Prudential Education
Siddharth S Jain
Contravention
Amount of Penalty
44
45
Penalty
65
66
66A
66B
66C
66D
18
Prudential Education
Siddharth S Jain
66E
66F
67
67A
67B
67C
68
69
69A
69B
71
72
73
74
72A
19