Digital Signature Certificate

We are involved in providing a wide range of Digital Signature Services. We are providing class – II, class – III and DGFT type certificates for individuals, professionals, company etc. The usages of digital certificates, we provide to clients, are in signing web forms filing to ROC, MCA – 21, e-filing of Income tax returns, GST returns and e-form filing to Director General of Foreign Trade DGFT (Export-Import Community). In addition, the DSC is used for e-tendering for various authorities & e-filling for trademark & patent applications and varied more government & private organizations. A DSC is normally valid for 1, 2 or 3 years, after which renewal is required.

Our DSC Service Incudes -

  • Providing and guiding you on Digital Signature Certificate Application Forms.

  • Collection of forms along with supporting documents & getting verified from LRA.

  • Getting you a Digital Signature Certificate issued from Certifying Authority and doing the installation of the same.

  • Technical Support & Guidance for 2 or 3 yrs. (till the validity of DSC).

Introduction of Digital Signature

India is one of the select bands of nations that have the Digital Signature Legislation in place. A digital signature authenticates electronic documents in a similar manner like a handwritten signature authenticates printed documents. A digital signature is issued by the controller of Certification Authority (CCA) to Certifying Authorities (CA) and further CA issue Digital Signature Certificate to end-user, which is signed with the CA’s private key. CAs are appointed by the office of the Controller of Certification Agencies (CCA). There are a total of nine Certification Agencies authorized by the CCA to issue the Digital Signature Certificates.

  1. Safe Scrypt CA

  2. Capricorn CA

  3. e-Mudhra CA

  4. CDAC CA

  5. NSDL e-gov CA

  6. Verasys CA (Vsign)

  7. Indian Air Force CA

  8. Institute for Development & Research in Banking Technology CA (IDRBT),

  9. (n)Code Solutions Ltd. CA (A division of Gujarat Narmada Valley Fertilisers Company Ltd.)

Class of Digital Signature

In addition to four distinct Digital Signature Certificate classes as defined by certifying authority. Each class provides for a different level of verification and hence a designated level of trust. The suggested four classes are the following -

  • Class 0 Certificate: This certificate shall be issued only for demonstration/ test purposes.

  • Class 1 Certificate: Class 1 certificates shall be issued to individuals/private subscribers. These certificates will confirm that user’s name (or alias) and E-mail address form an unambiguous subject within the Certifying Authorities database.

  • Class 2 Certificate: These certificates will be issued for both business personnel and private individuals use. These certificates will confirm that the information in the application provided by the subscriber does not conflict with the information in well-recognized consumer databases.

  • Class 3 Certificate: This certificate will be issued to individuals as well as organizations. As these are high assurance certificates, primarily intended for e-commerce applications, they shall be issued to individuals only on their personal (physical) appearance before the Certifying Authorities. They are typically used for electronic commerce applications such as electronic banking, electronic data interchange (EDI), and membership-based on-line services, where security is a major concern.

  • DGFT Certificate: This certificate will be issued to individuals as well as organizations. This certificate can be used only by an Exporter or Importer registered with the DGFT. A solution developed exclusively for the Exporter-Importer community in India to enable them to interact and transact with the DGFT online with security and confidence on the DGFT Portal.

Use of Digital Signature

You can use Digital Certificates for the following -

  • For secure email and web-based transactions, or to identify other participants of web-based transactions.

  • To prove ownership of a domain name and establish SSL / TLS encrypted secured sessions between your website and the user for web-based transactions.

  • As a developer, for proving authorship of a code and retaining the integrity of the distributed software programs.

  • For signing web forms, e-tendering documents, to access membership-based websites automatically without entering a user name and password etc.

  • In eTendering, eProcurement, MCA [for Registrar of Companies e-filing], Income Tax [for e-filing income tax returns] Applications and also in many other applications.

  • For signing documents like MS Word, MS Excel and PDFs.

  • Plays a pivotal role in creating a paperless office.

Digital signatures for e-tendering are allowed, though with limited scope. The following transactions/instruments are not recognized as per the IT Act 2000 -

  • Negotiable Instrument as defined in section 13 of 26 of 1881. The Negotiable Instrument Act, 1881.

  • A Power-of-Attorney.

  • Succession Act/Will.

  • Transfer of Immovable property

  • Trust

How Does A Digital Signature Certificate Work

Digital Signature Certificate explicitly associates the identity of an individual/device with a pair of electronic keys - public and private keys - and this association is endorsed by the CA. The certificate contains information about a user's identity (for example, their name, pin-code, country, email address, the date the certificate was issued and the name of the Certifying Authority that issued it).

These keys complement each other in that one does not function in the absence of the other. They are used by browsers and servers to encrypt and decrypt information regarding the identity of the certificate user during information exchange processes. The private key is stored on the user's computer hard disk or on an external device such as a token. The user retains control of the private key; it can only be used with the issued password.

The public key is disseminated with the encrypted information. The authentication process fails if either one of these keys in not available or do not match. This means that the encrypted data cannot be decrypted and therefore, is inaccessible to unauthorized parties.

Who Required Digital Signature Certificate

Professionals, who work under Income Tax, GST, MCA21, Trademark and all the authorized signatories of company and professionals, who sign the manual documents and returns filed with ROC/ Income Tax is required to obtain a Digital Signature Certificate (DSC). Therefore following personnel have to procure Digital Signature Certificates mandatorily:

  • Directors of Companies/ LLPs.

  • Chartered Accountants/Auditors.

  • Advocates- for filing of litigation or Trademark etc.

  • Company Secretary - Whether in practice or in the job.

  • Bank Officials - for Registration and Satisfaction of Charges.

  • Any individual/ Partner required to audit under Income Tax Act.

  • Other Authorized Signatories, as applicable in different places.

Why USB E-Token

Information about Digital Signature Certificate (DSC) resides in the certificate section of Internet Options of a computer system but keeping DSC details on the computer system in this way has the following drawbacks:

  • It can be misused by an unauthorized person.

  • If the computer system fails or internet explorer is changed DSC is lost.

Accordingly, safe and proper method is to keep DSC on e-token, a small USB port device, which is password protected.

© 2010 ASK Commercial Solutions