G.L. Bajaj Institute of Management and Research Greater Noida Welcomes’ PGDM Batch 2015-2017...
-
Upload
roderick-sparks -
Category
Documents
-
view
218 -
download
2
Transcript of G.L. Bajaj Institute of Management and Research Greater Noida Welcomes’ PGDM Batch 2015-2017...
G.L. Bajaj Institute of Management and Research
Greater Noida
G.L. Bajaj Institute of Management and Research
Greater Noida
Welcomes’
PGDM Batch 2015-2017
Digital Signatures
Dr. Hamlata Bhat
(Assoc. Professor)
Welcomes’
PGDM Batch 2015-2017
Digital Signatures
Dr. Hamlata Bhat
(Assoc. Professor)
Digital Signatures
What is a Digital Signature.mp4
Electronic RecordElectronic Record
1. Very easy to make copies2. Very fast distribution3. Easy archiving/store and
retrieval4. Copies are as good as original5. Easily modifiable6. Environmental Friendly
Because of 4 & 5 together, these lack authenticity
Why Digital Signatures?Why Digital Signatures?
• To provide Authenticity, Integrity and Non -repudiation to electronic documents
• To use the Internet as the safe and secure medium for e-Governance and e-Commerce
What is Digital Signature?What is Digital Signature?
A digital signature is a mathematical scheme (algorithms) for signifying the Authenticity, Integrity and Non –repudiation of a digital message or document.
Digital signatures employ a type of Asymmetric Cryptography. The Scheme typically consists of
three Algorithms
A key generation algorithm that selects a private key uniformly at random from a set of possible private keys. The algorithm outputs the private key and a corresponding public key.
A signing algorithm that, given a message and a private key, produces a signature.
A signature verifying algorithm that, given a message, public key and a signature, either accepts or rejects the message's claim to authenticity
Hash value of a message when encrypted with the private key of a person is his digital signature on that e-Document
Digital SignaturesDigital Signatures
Each individual generates his own key pair
[Public key known to everyone &
Private key only to the owner]
Private Key – Used for making Digital Signature
Public Key – Used to verify the Digital Signature
Smart CardiKey
Hardware Tokens
Smart Cards• The Private key is generated
in the crypto module residing in the smart card.
• The key is kept in the memory of the smart card.
• The key is highly secured as it doesn’t leave the card, the message digest is sent inside the card for signing, and the signatures leave the card.
• The card gives mobility to the key and signing can be done on any system (Having smart card reader).
iKeys or USB Tokens
• They are similar to smart cards in functionality as
– Key is generated inside the token.
– Key is highly secured as it doesn’t leave the token.
– Highly portable.
– Machine Independent.
• iKEY is one of the most commonly used token as it doesn’t need a special reader and can be connected to the system using USB port.
Private Key Protection
• The Private key generated is to be protected and kept secret. The responsibility of the secrecy of the key lies with the owner.
• The key is secured using
– PIN Protected soft token– Smart Cards– Hardware Tokens
Digital Signatures
• Digital Signatures are numbers• Same Length – 40 digits• They are document content dependent
I agree
efcc61c1c03db8d8ea8569545c073c814a0ed755My place of birth is at Gwalior.
fe1188eecd44ee23e13c4b6655edc8cd5cdb6f25I am 62 years old.
0e6d7d56c4520756f59235b6ae981cdb5f9820a0I am an Engineer.
ea0ae29b3b2c20fc018aaca45c3746a057b893e7
I am a Engineer.
01f1d8abd9c2e6130870842055d97d315dff1ea3
• These are digital signatures of same person on different documents
Paper Signatures V/s Digital Signatures
Parameter Paper Electronic
Authenticity May be forged Can not be copied
Integrity Signature independent of the document
Signature depends on the contents of the document
Non-repudiation
a. Handwriting expert needed
b. Error prone
a. Any computer user
b. Error free
V/s
How To Get & Use Digital Signature
Role of Controller (CCA)
Controller of Certifying Authorities as the “Root” Authority certifies the technologies, infrastructure and practices of all the Certifying Authorities licensed to issue Digital Signature Certificates
Seven CAs have been licensed by CCA
Safescrypt National Informatics Center (NIC), Government of
India Institute for Development & Research in Banking
Technology (IDRBT) – A Society of Reserve Bank of India
Tata Consultancy Services (TCS) MTNL Trust line GNFC (Gujarat Narmada Fertilizer Corporation) E-MudhraCA
Department of Electronics & Information Technology Ministry of Communications and Information Technology Government of India Electronics Niketan, 6 CGO Complex New Delhi-110 003 .
1. Application Request
Go to http://nicca.nic.in Download DSC Request Form Fill-in the Form Sign the Form at Required Place Get the Form Countersigned and Verified from
HOD along with his/her Official Stamp Enclose Identification Proof Enclose Fee (if required) in Form of Bank Draft Send to NIC Office
2. Issuance of Digital Signatures
Send your completed form to NIC UP State Unit Office
Once your form is found satisfactory and the fee is properly submitted, the form is counter signed by NIC, HoD.
The form is then forwarded to NIC Certifying Authority Office (NIC-RA, Kendriya Bhawan, Lucknow) for processing.
When your case is processed a Membership ID and Password is Issued and send to the email ID mentioned in Application Form.
A Digital Signature in USB Token or Smart Card can be collected from NIC-RA Office at Lucknow
3. Accessing Website with Membership ID for
Enrollment of Request On line
Accessing Website with Membership ID for Enrollment of Request On line
Accessing Website with Membership ID for Enrollment of Request On line
How to make Request
Insert the USB Pen Drive /Smart Card Reader in your computer system
Insert the Smart Card in the Reader ( In case of Smart Card )
Download USB/Smart Card Driver from NICCA website (http://nicca.nic.in)
Unzip and Double Click the Downloaded File When the Proper Driver is loaded From Token
Administration, Device will get Operational
4. Driver Downloading
Please Click Download Smart Card USB E-token Driver Link
Select Your Media Type
5.Enrollment Process
Click Member Login
Enter User ID and Password and click Submit Button User Id and Password are Same
Select Enroll Button
Fill form and select SafeSign Cryptographic Service Provider in Cryptographic Service Provider Dropdown
After Filling Form and Cryptographic Service Provider Select option ‘Generate Request’
You will receive email from nicca.nic.in when your Certificate is generated view status for downloaded Certificates
If your Certificate is generated then click your Request No. and enter Authentication Pin (Authentication Pin is send to your e-mail id by nicca.nic.in) and click download Button.
To Check if Certificate is available in Device
For Accessing Web Services Go to Web Portal like http://edistrict.nic.in or
http://ssdg.up.nic.in Plug-in the USB/Smart Card in the computer system/
laptop While Digitally Signing in Browser window your
name will be pop up automatically, which you can select
Further it will ask for PIN that is unique to your Card.
Prevention From Misuse
Do’t Hand over you DSC Media USB/Card to any one
Do’t tell your PIN to anyone
Document Digitally Signed carries same legal status as manually signing as per the IT Act
How do I view Digital Certificates on my PC?
• For MS Internet Explorer Users:
• 1. Open your MS Internet Explorer2. Click on the Tools menu3. From the drop down list select Internet Options4. Click the Content tab5. Click the Certificates button
• ---------------------------------------------------
• If you have enrolled for one (or more), your Digital Certificates will appear within the Personal section.
• If you have received or downloaded Other People's Digital Certificates, they will appear in the Other People section.
• You may also view all Intermediary and Root Certificates (belonging to Certification Authorities from this Manager.
Digital Signature software companies
• RightSignature-rightsignature.com
• Sky Signature- skysignature.com
• CoSign- www.cosign
• PDF Sign&Seal - ascertia.com
• AssureSign- assuresign.com
• EchoSign- echosign.adobe.com
What are the different classes of Digital Signature Certificates?
• Class 0 Certificate: This certificate shall be issued only for demonstration/ test purposes.
• Class 1 Certificate: Class 1 certificates shall be issued to individuals. These certificates will confirm that user's name and E-mail address form an unambiguous subject within the Certifying Authorities database.
• Class 2 Certificate: These certificates will be issued for both private business individual/ Govt. employees .These certificates will confirm that the information in the application provided by the subscriber does not conflict with the information in well-recognized consumer databases.
• Class 3 Certificate: This certificate will be issued to individual as well as organizations. As these are high assurance certificates, primarily intended for e-commerce applications, they shall be issued to individuals only on their personal (physical) appearance before the Certifying Authorities.
Thank You