Regulation 30. Storage of private keys. (DIGITAL SIGNATURE REGULATIONS 1998

[Home] [Databases] [WorldLII] [Search] [Feedback]
Malaysia Legislation

P.U.(A) 359/98
DIGITAL SIGNATURE REGULATIONS 1998

PART V - APPROVED DIGITAL SIGNATURE SCHEME AND KEY MANAGEMENT

Regulation 30. Storage of private keys.

(1) The data storage medium for the private key may be hardware based or software based.

(2) If the data storage medium of the private key is hardware based, the holder of the private key shall ensure that the token, smart card or other external device in which the private key is stored is kept in a secure place and in a secure manner.

(3) If the data storage medium of the private key is software based, the holder of the private key shall ensure that the computer system in which the private key is stored is reasonably secure.

(4) The personal identification numbers or other data used for the identification of the rightful holder of the private key in conjunction with the data storage medium for the private key shall be kept secret.