BBCA | FAQ

Central Bank's Initiative
Towards Public Key Infrastructure (PKI)
for Financial Sector

What is a Digital Signature?

A digital signature mimics in the virtual environment the function of a hand-written signature in printed documents. Information related to a unique user is encrypted in a private key that is appended to any message sent by this user. It authenticates the identity of the user and guarantees the integrity of the message.

What is a Digital Certificate (DC)?

An electronic equivalent of an identification card such as a passport or driving license. It unequivocally establishes the identity of the user when exchanging information over the internet.

What is a Certificate Revocation List (CRL)?

A list of certificates that have been revoked by the CA, and are therefore no longer valid.

What is a Certificate Policy (CP)?

A named set of rules that indicates the applicability of a certificate to a particular community and/or class of application with common security requirements. For example, a particular CP might indicate applicability of a type of certificate to the authentication of parties engaging in business-to-business transactions for the trading of goods or services within a given price range.

What is Certification Practice Statement (CPS)?

A statement of the practices that a certification authority employs in issuing, managing, revoking, and renewing or re-keying certificates.

How do I get a Digital Signature Certificate?

The National Root CA issues certificate only to Certifying Authorities. CAs issue Digital Certificate to subscribers. You can approach any one of the CAs for getting Digital Certificate. Fianacial organizations can contact with BBCA to get a Digital Signature Certificate.

What is Subscriber?

The user of the digital certificates is the subscriber. Subscriber may be individual or organization or any device or applications running within or by an organization. Subscriber is required to submit his/her certificate request in form of Certificate Signing Request (CSR) and in prescribed manner to BBCA to get the certificate issued to him/her.

What is Certificate Signing Request (CSR)?

A message sent from an applicant to a certificate authority in order to apply for a digital identity certificate. It usually contains the public key for which the certificate should be issued, identifying information (such as a domain name) and integrity protection (e.g., a digital signature).