The application of third party certification programme in Malaysia

Third-parties called certificate authority issues digital certificates used to create digital signatures and public-private key pairs. The role of the third party in this process is to guarantee that the individual granted the unique certificate is, in fact, who he or she claims to be certificate authority are a critical component in data security and e-commerce because they guarantee that the two parties exchanging information are really who they claim to be. A digital certificate is an electronic certificate that establishes your credentials when doing business or other transactions on the Web. The certificate is issued by a Certification Authority (CA).

Example of third party in Malaysia is MSC Trustgate.com Sdn Bhd(www.msctrustgate.com). It is a licensed Certification Authority (CA) operating out of the Multimedia Super Corridor. MSC Trustgate was incorporated in 1999 to meet the growing need for secure open network communications and become the catalyst for the growth of e-commerce, both locally and across the ASEAN region. In present, MSC Trustgate has 12 million in paid up capital.

Trustgate has been licensed under the Digital Signature Act 1997 (DSA), a Malaysia law that sets a global precedent for the mandate of a CA. As a CA, Trustgate’s core business is to provide digital certification services, including digital certificates, cryptographic products, and software development.

Verisign is the leading Secure Sockets Layer (SSL) Certificate Authority enabling secure e-commerce, communications, and interactions for Web sites, intranets, and extranets. Choose the most trusted mark on the Internet and enable the strongest SSL encryption available to every site visitor.

The application of third parties certificate in Malaysia are when a website visitor connects to a web server using digital certificate they will see that the URL in the address bar begins with https:// rather than the usual http:// and also a small gold padlock will appear in their browser, e.g.
As seen by users of Internet Explorer

Whenever a browser connects to a webserver (website) over https:// - this signifies that the communication will be encrypted and secure. The actual complexities of the digital certificate protocol remain invisible to the end customer.

All digital certificates are issued to either companies or legally accountable individuals. Typically SSL Certificates contain the domain name, the company name, the address i.e. city, state and country. It will also contain the expiry date of the Certificate and details of the Certification Authority responsible for the issuance of the Certificate.

When a browser connects to a secure site it will retrieve the site's digital certificate and check that it has not expired, that it has been issued by a Certification Authority the browser trusts and that it is being used by the website for which it has been issued. If it fails on any one of these checks the browser will display a warning to the end user.


So both party in a deal are protected. The buyer mail the payment to the escrow services , which verify the payment and alert the seller when every things check out. At that point, the seller ship the goods to the buyer . after an agreed upon inspection period, the buyer notifies the service, which then send a escrow services. So. it impletation help to improve customers trust between both seller and buyer

As a conclusion, the application of third party certification programme in Malaysia make the online dealing more safety and increase trustiness
.