Digital Signature Certificate – changes implemented by Government
Urgent notification from Controller of Certifying Authorities of India has come and from the 4th of April 2011 till the 31st of December 2011, digital certificates issued will be only for 1 year as they are going to change the internal format of the certificate. Cogzidel informs you in advance, so that if there are any certificates to be issued before 4 of April, please get it done right away, else it will be renewed only for one year.
1. DSCs issued w.e.f. 04.04.2011 shall have increased key length of 2048 bits against current 1024 bits for better security.
2. There would be two different certificates – ONLY Signing & ONLY Encryptioon. DSCs for tenders may require both Signing and Encryption Certificates.
3. As per CCA guidelines, every CA including (n)Code will only issue 1 year DSC wef 04.04.2011 to 31st Dec 2011
4. Aladdin 32k tokens will not be compatible with 2048 key certificates
Here is the notifcation received from Controller of Certifying Authorites of India:
Office of the Controller of Certifying Authorities
Ministry of Communications and Information Technology
Government of India
6, CGO Complex, New Delhi – 110 003
Implementation of Interoperability Guidelines Version 2.1
1. From January 1, 2012 only SHA-256 Hash Algorithm and 2048 bit RSA Key Digital Signature Certificates will be issued.
2. However, from 4th April 2011, Certifying Authorities should issue Digital Signature Certificates with SHA-256 Hash Algorithm & 2048 bit RSA Key, to any applicant who requests for the same.
3. All other Digital Signature Certificates issued during 4th April 2011 to 31st December 2011 will have a validity period of one year only.
4. All other stipulations made in the Interoperability Guidelines must be adhered to.
For more details, please contact us at firstname.lastname@example.org