The application of 3rd party certification programme in Malaysia

MSC Trustgate.com Sdn Bhd is a licensed Certifacation Authority (CA) operating out of the Multimedia Super Corridor. MSC Trustgate was incorporated in 1999 to meet the growing need for secure open network communications and become the catalyst for the growth of e-commerce, both locally and across the ASEAN region. In present, MSC Trustgate has 12 million in paid up capital.

Trustgate has been licensed under the Digital Signature Act 1997 (DSA), a Malaysia law that sets a goal precedent for the mandate of a CA. Its core business is to offer complete security solutions and leading trust services that are needed by individuals, enterprises, government, and e-commerce service providers' digital certification services, including digital certificates, cryptographic products, and software development. They are committed to providing the finest Public Key Infrastructure (PKI) to assist all types of companies and institutions conducting their business over the Internet. The state of the art back-end infrastructure that costs RM14 million is probably one of the best in the region.

Security is the primary concern of entering into the new Internet economy. The ever-changing paradigm of e-commerce requires a well-mandated security infrastructure. Trustgate is determined to become the leading service provider of Internet utility company, thus complementing the aspiration of the MSC to be a world-class e-environment.

Secure Socket Layer (SSL) is a protocol developed by Netscape in 1996 which was quickly adopted around the world as the method of choice for securing data transmissions across the Internet. SSL is an integral part of virtually all web browsers and web servers and makes use of a public-and-private key encryption system originally developed by RSA.

In order to establish an SSL connection, the SSL protocol requires that a server have a digital certificate installed. A digital certificate is an electronic file that uniquely identifies individuals and servers. Digital certificates allow the client (Web browser) to authenticate the server prior to establishing the SSL session. Typically, digital certificates are signed by an independent and trusted third party to ensure their validity. The "signer" of a digital certificate is known as a Certification Authority (CA), such as VeriSign.

Example: mphonline.com, maybank2u.com

SSL enables secure online transactions by combining the following three important elements:

(a) Authentication (b) Encryption (c) Message Integrity

Combining the three elements above, SSL becomes a simple yet extremely powerful security solution, enabling you to conduct authenticated and encrypted online transactions with visitors

to your Web site. With a VeriSign SSL certificate installed on your Web site,visitors will be able to submit credit card numbers or other sensitive information to you, with complete assurance that they are really doing business with you (and not an impostor) ad that the information they are sending to you can not be intercepted or tampered with during transmission. more

With the increased phishing and spoofing attacks on the Internet, your customers want to make sure that they are dealing with trusted parties when they conduct business with you online. They need to ensure that their information traveled over the Internet reaches the intended recipients and is safe from intruders. Trustgate offers the following SSL Certificates for your server security:

1. Global Server ID adopts today's strongest encryption commercially available for secure communications via Server Gated Cryptography (SGC) technology. GSID authenticates your web sites and enables 128- or 256-bit encryption to secure communications and transactions between the site and its visitors. Every purchase of GSID comes with a VeriSign Secured Seal that you can display on your web site. The seal is an instant proof that your web site is genuine because you have been verified by the World Leader of SSL Provider, and your customers can conduct business with you free of worry.
Example: Compaq, IBM, Javasoft, Lotus, Microsoft, Nokia

2. Secure Site SSL Certificates protect the transfer of sensitive data on Web sites, intranets, and extranets using a minimum of 40-bit and up to 256-bit encryption. It includes VeriSign Secured Seal.

Example: Compaq, IBM, Microsoft, Nokia, Novell, Oracle

How do SSL certicicates enable secure authenticated e-commerce on the Web?

By obtaining and installing an SSL certificate, you enable the use of SSL at your Web site. When a browser connects via "https" to a Web site with an SSL certificate, the browser and the server will exchange information during what is called the "SSL handshake." Once the SSL session has been negotiated, all information that passes between the browser and the server will be encrypted. Most all browsers are equipped to recognize VeriSign SSL certificates automatically, enabling almost every visitor in the world to safely exchange sensitive information and conduct e-commerce transactions with your Web site.

Seven reasons to choose VeriSign SSL Certificates to protect your business