How does a Digital Signature Certificate work?

To legally generate a digital signature, it is important to authenticate the personal details of the signer, which is done by a digital signature certificate. A digital signature certificate is a file that secures and stores an individual's or organization's identity.

RSA algorithm generates a set of random hash value pertaining to the public key and private key. Public key helps verify the user identity which is safely stored in a digital signature certificate and private key generates the digital signature. The private key is known only to the signer. A digital signature certificate binds the identity associated with the private key such as the name of the organization or individual. A digital signature certificate contains the name and identification number of the user, a copy of the user's public key (used to decrypt the message), and a digital signature issued by the Certifying Authority (CA).

The user needs to contact a licensed CA such as eMudhra to register for a digital signature certificate. The process of registration is completed by verifying user identity online within minutes on the eMudhra website. Users can use Aadhaar PAPERLESS offline eKYC or PAN-based eKYC to verify their identity. After the user's credentials are verified by eMudhra, the digital signature certificate is issued within 30 minutes.