of October 27, 2020 No. 405/Tax Code
About approval of Rules of creation, use and storage of private keys of the electronic digital signature in certification center
According to subitem 13-3) of Item 1 of article 5 of the Law of the Republic of Kazakhstan of January 7, 2003 "About the electronic document and the electronic digital signature" PRIKAZYVAYU:
1. Approve the enclosed Rules of creation, use and storage of private keys of the electronic digital signature in certification center.
2. To provide to committee of the state services of the Ministry of digital development, innovations and aerospace industry of the Republic of Kazakhstan in the established legislative procedure:
1) state registration of this order in the Ministry of Justice of the Republic of Kazakhstan;
2) placement of this order on Internet resource of the Ministry of digital development, innovations and the aerospace industry of the Republic of Kazakhstan after its official publication;
3) within ten working days after state registration of this order in the Ministry of Justice of the Republic of Kazakhstan submission to Legal department of the Ministry of digital development, innovations and the aerospace industry of the Republic of Kazakhstan of data on execution of the actions provided by subitems 1) and 2) of this Item.
3. To impose control of execution of this order on the supervising vice-minister of digital development, innovations and the aerospace industry of the Republic of Kazakhstan.
4. This order becomes effective after ten calendar days after day of its first official publication.
Minister of digital development, innovations and aerospace industry of the Republic of Kazakhstan
B. Musin
|
"Is approved" Ministry of Trade and integration of the Republic of Kazakhstan |
|
|
"Is approved" Committee of homeland security of the Republic of Kazakhstan |
|
Approved by the Order of the Minister of digital development, innovations and the aerospace industry of the Republic of Kazakhstan of October 27, 2020 No. 405/Tax Code
1. These rules of creation, use and storage of private keys of the electronic digital signature in certification center (further - Rules) are developed according to the Law of the Republic of Kazakhstan "About the electronic document and the electronic digital signature" (further - the Law) and determine procedure for creation, use, and storage of private keys of the electronic digital signature in cloud services.
2. In these rules the following concepts are applied:
1) biometric authentication – package of measures, identifying the personality based on physiological and invariable biological signs;
2) blockchain - the information and communication technology providing information invariance in the distributed platform of the interconnected data units this based on chain, the set algorithms of confirmation of integrity and means of enciphering;
3) multifactor authentication – method of check of authenticity of the user by means of combination of different parameters, including generation and input of passwords or authentication signs (digital certificates, tokens, smart cards, generators of one-time passwords and means of biometric identification);
4) certification center (further - UTs) - the legal entity certifying compliance of public key of the electronic digital signature to private key of the electronic digital signature, and also confirming reliability of the registration certificate;
5) the owner of the registration certificate (further - the owner) – physical person or legal entity addressed to which the registration certificate legally owning the private key corresponding to the public key specified in the registration certificate is granted;
6) the electronic digital signature (further - the EDS) – set of electronic digital characters created by means of the electronic digital signature and confirming reliability of the electronic document, its accessory and invariance of content;
7) public key of the EDS - the sequence of electronic digital characters available to any person and intended for confirmation of authenticity of the electronic digital signature in the electronic document;
8) private key of the EDS - the sequence of electronic digital characters intended for creation of the electronic digital signature with use of means of the electronic digital signature;
9) means of the electronic digital signature - set of the program and technical means used for creation and check of authenticity of the electronic digital signature;
10) the cloudy EDS – the service of certification center allowing to create, use, store and delete private keys of the electronic digital signature in HSM of certification center where access to private key is provided by the owner far off by means of at least two authentication factors, one of which is biometric;
11) hash – array conversion of input data of arbitrary length to the bit party of the fixed length;
12) the hardware cryptographic module (Hardware Security Module) (further - HSM) - the hardware cryptographic module intended for enciphering of information and management of public and private keys of the EDS.
3. Private keys of the EDS are created by UTs:
1) on the carrier of key information of the owner which is transferred to the owner;
2) in the cloudy EDS.
4. Private keys of the EDS of the cloudy EDS are generated strictly in HSM. The private key is not retrieved from HSM in open form.
Under this HSM:
1) corresponds not below the third security level according to the requirements established by ST of RK 1073-2007 "Means of cryptographic information protection. General technical requirements";
2) it is designed with the physical defense of perimeter (protection against opening of the case) using sensors for determination of the fact of opening of the case and the subsequent removal of the key information necessary for HSM.
3) meets standards of efficiency of protection and techniques of assessment of security of information and technical means according to requirements of the current legislation of the Republic of Kazakhstan.
Disclaimer! This text was translated by AI translator and is not a valid juridical document. No warranty. No claim. More info
Database include more 50000 documents. You can find needed documents using search system. For effective work you can mix any on documents parameters: country, documents type, date range, teams or tags.
More about search system
If you cannot find the required document, or you do not know where to begin, go to Help section.
In this section, we’ve tried to describe in detail the features and capabilities of the system, as well as the most effective techniques for working with the database.
You also may open the section Frequently asked questions. This section provides answers to questions set by users.