Help
Legal Forms | Legal Documents | Tell-A-Friend | Legal Terms Dictionary | Today's News
Downloads Legal Topic Lawyer Directory Legal Links Free E-mail Bookstore Legal Discussion Forum Legal Jokes Bookmark Lawyerment

Looking for an Attorney or Law Firm ? Click here for Lawyers Directory

INTELLECTUAL PROPERTY - Computer Law
Related Topics : Communications Law . Computer Law . Copyright Law . Patent Law . Trade Secrets . Trademark Law . Industrial Design
[Previous][1][2]


WHY THE DIGITAL SIGNATURE ACT 1997 ?

The Digital Signature Act was enforced on the 1st October 1998.

The Digital Signature Act 1997 aims at promoting the processing of transactions especially commercial transactions, electronically through the use of digital signatures.

This Act is an enabling law that allows for the development of, amongst others, e-commerce by providing an avenue for secure on-line transactions through the use of digital signatures. The Act provides a framework for the licensing and regulation of Certification Authorities, and the recognition of digital signatures.

The Controller of Certification Authority who has authority to monitor and license recognized Certification Authorities was appointed on 1st of October 1998.

WHAT IS DIGITAL SIGNATURE AS DEFINED BY THE ACT ?

"Digital Signature" is defined by the Act as a transformation of a message using an asymmetric cryptosystem such that a person having the initial message and the signer's public key can accurately determine whether the transformation was created using the private key that corresponds to the signer's public key and whether the message has been altered since the transformation was made.

Essentially, what this means is that a digital signature is an electronic version of a conventional signature. It is a pair of keys created with the use of asymmetric cryptosystem and involves the use of algorithm or a specific series of algorithm. The pair of keys is made up of a private key as well as a public key. The private key is used to create the digital signature while the public key is used to verify the digital signature. While the private key cannot be known by anyone else except the subscriber, the public key is known to the public and noted in the certificate issued by the certification authority and may be retrieved from the repository.

The transaction of a digitally signed message begins with the preparation of the message. The message is then transformed or hashed into message digest with the use of a one-way hash function. The signer signs this message digest using his private key. The result of using a private key on a message digest is called digital signature.

The original message is sent through an electronic line to the receiver. The recipient of the message, uses the signer's public key to verify the digital signature - only the signer's public key will verify a digital signature created with the signer's private key. The recipient may also verify if the message has been modified, by changing/hashing the received message with the use of the same algorithm (one way hash function).

If the value of the message digest is the same as the value of the message digest in the digital signature received, then no modification has been made to the message since its transformation. Digital signature is similar to the auto teller machine (ATM) card system.

[Previous][1][2]

Back To Previous Page

Last Updated : Monday, 23 July 2001 - 09:30:14 PM EDT©1999-2000
Lawyerment is a leading Malaysian legal site for consumer & small businesses. It provides general legal information to help people understand their legal rights in Malaysia, but it is not a substitute for personal legal advice from an attorney. You are welcome to view Lawyerment for your own personal, non-commercial purposes, AS IS, subject to our disclaimer & conditions of use & Privacy Policy. Lawyerment is a unit of Magnificent Communication. 1999-2000 - All rights reserved.
Comments ? Please send them to webmaster@lawyerment.com.my
Advertising Opportunities | Contact Us