Digital Signature

-
Digital Signature
A digital signature is basically a way to ensure that an electronic document (e-mail, spreadsheet, text file, etc.) is authentic. Authentic means that you know who created the document and you know that it has not been altered in any way since that person created it.

How does digital signature works?
Ans. Rohan wants to digitally sign emails and electronic contracts. 
  1. So he would use computer software (asymmetric crypto system) to generate two keys, a public key and a private key. 
  2. Rohan will give his public key to the whole world but will keep his private key to himself. Once he has done that, he can use his private key to sign contracts etc.. 
  3. Anyone can use Rohan’s public key to verify his signature. 
That’s where the problem begins. How can anyone be sure which is Rohan’s public key? What if Rohan denies that a particular public key is actually his? 

To solve this problem digital signature certificates are used. 
  1. Rohan would apply to a licensed CA (Certifying Authority) for a digital signature certificate.
  2. As part of the application process he would submit identification documents as discussed earlier. 
  3. He would also send his public key to the CA. 
  4. The CA would then “certify” the public key as belonging to Rohan and issue a digital signature certificate that contains Rohan’s public key along with information identifying him.
Now…
  1. Rohan uses computer software to generate two keys, a public key and private key. 
  2. These keys are nothing but extremely large numbers. Although the keys are mathematically related, it is almost impossible to obtain the private key by using the public key.
  3. Rohan will give his public key to the whole world but will keep his private key to himself.
Now Rohan wants to enter into a transaction with Sunil. He composes an electronic document containing the words
“I, Rohan owe Sunil the sum of Rs. 5000 lakhs only.”

  1. Using his computer, Rohan runs this document through a hash function. 
  2. The hash function software produces a fixed length of alphabets, numbers and symbols for any document. This is known as the hash result (Message digest). However, the contents of the message digest shall be unique for every single document.
  3. If even one letter in the document is altered, an entirely different hash result will be generated.
  4. When using a particular hash function, the length of the output is always the same, whether the input document is one word or 1 lakh words.
  5. Moreover, the hash function software will always produce the same hash result for a particular message. 
  6. It is practically impossible to reconstruct the original message from the hash result. That is why it is known as a one-way hash function.
  7. Rohan now uses his computer to “sign” the hash result of his document. His computer software uses his private key to perform some calculations upon the hash result. This produces a signature, which consists of some digits. This set of digits is attached to the hash result.
  8. Rohan now sends the original message and the signed message digest (hash result) to Sunil.
  9. Sunil has the same hash function software on his computer.
  10. Sunil also has Rohan’s public key. 
  11. When Sunil receives Rohan’s email, he runs the original document through the hash function software and generates a hash result. He compares this hash result with the one that was sent to him by Rohan. If the two hash results are the same, it means that the message is unaltered.
  12. Sunil also verifies whether Rohan’s private key was actually used to sign the hash result. For this, Sunil’s computer uses Rohan’s public key. Only a message signed by Rohan’s private key can be verified using Rohan’s public key.

The public key and private key are basically two very large numbers that are mathematically related to each other. If a particular private key was used to “sign” a message, then only the corresponding public key will be able to verify the “signature”.




















Comments

Post a Comment

Popular posts from this blog

GST - Important Reconciliations must be done before finalization of the Financial Statement

-
Image
To Ensure that there are no major / material misstatements, It is important to check compliance with GST laws and rules even during the finalization of the Financial Statement. An important list of reconciliations is given below:  Balance of Electronic Credit ledger with Balance of Input Tax credit (ITC) in Books of Accounts  Balance of Electronic Cash ledger with Balance of excess cash paid in Books of Accounts  GST paid in cash in March return, with GST Payables as per Books of Accounts  Refund claimed in GST portal with ITC refund receivable in Books of Accounts  Output Liability in GST returns with Books of Accounts  ITC Reconciliation in FORM GSTR-2A/ 2B with FORM GSTR-3B and Books of Accounts  ITC reversed in FORM GSTR-3B with Books of Accounts  Ineligible ITC in FORM GSTR-3B with Books of Accounts  Reconciliation of Gross Turnover in Books of Accounts with FORM GSTR-1, e-Way Bills and FORM GSTR-3B  Reconciliation of accounts of the suppliers  Adjustments of previous year, do
Read more

Non-Profit Organisation (NPO)

-
Image
Non-Profit Organisatoin’s (NPO) have played a crucial role in development of India. There are various NPOs that work all over India and for a wide range of causes.  The World Bank defines NPO’s as “private organizations that pursue activities to  relieve suffering,  promote the interest of the poor,  protect the environment,  provide basic social services, or  undertake community development.”  NPOs do not work for profit motive and apart from own sources, NPO utilises funds raised through donations. NPOs receiving foreign contributions in India come under the purview of Foreign Contribution Regulation Act, 2010 i.e. FCRA. Corporate Social Responsibility (CSR) is practical way to give back to society and NPOs are the best way to do this. NPOs can be registered in any of the applicable acts as mentioned below, according to the type of organisation chosen to be formed. Major laws and acts applicable to NPO are as follows – Society registered under Societies Registration Act, Central or r
Read more

Panel Finalises GST Rate Structure, Fixes Rates at 5%, 12%, 18% & 28%

-
A 4-tier GST tax structure of 5, 12, 18 and 28 per cent, with lower rates for essential items and the highest for luxury and de-merits goods that would also attract an additional cess, was decided by the all- powerful GST Council today. With a view to keeping inflation under check, essential items including food, which presently constitute roughly half of the consumer inflation basket, will be taxed at zero rate. The lowest rate of 5 per cent would be for common use items while there would be two standard rates of 12 and 18 per cent under the Goods and Services Tax (GST) regime targetted to be rolled out from April 1, 2017. Announcing the decisions arrived at the first day of the two-day GST Council meeting, Finance Minister Arun Jaitley said highest tax slab will be applicable to items which are currently taxed at 30-31 per cent (excise duty plus VAT). Luxury cars, tobacco and aerated drinks would also be levied with an additional cess on top of the highest tax rate. The coll
Read more