D1IM2451A

NIK MOHAMAD FADHIL BIN HALIM 2013322307MOHAMAD AMIR IHSAN BIN ADNAN 2013106789MOHD SABIRIN BIN ANUAR 2013942095MUHAMMAD FAWWAZ BIN ABDUL RAHMAN

2013359799

To ensure secured connection between two transactional parties.

Security and commitment are key issues for commercial online transactions, such as identity, legal commitment, third party interference and manipulation of information.

"digital signature" means a transformation of a message using an asymmetric cryptosystem such that a person having the initial message and the signer's public key can accurately determine-(a)  whether the transformation was created

using the private key that corresponds to the signer's public key and(b)  whether the message has been altered since the transformation was made;

A valid digital signature gives a recipient reason to believe that the message was created by a known sender, and that it was not altered in transit.

Digital signatures are commonly used for software distribution, financial transactions, and in other cases where it is important to detect forgery or tampering.

The Digital Signature Act was enforced on the 1st October 1998

The Digital Signature Act 1997 aims at promoting the processing of transaction especially commercial transaction, electronically through the use of digital signatures

To do email encryption, the very beginning is to make sure your email have an add-on encryption feature.

For an email encryption, there are 3 components which are used during the process:1) Public key - is a key given to everyone who want to send an email to you

2) Passphrase - Your password unlocks your private key and permits it to be used during read and unlock your public key to send and receive encrypted email.

3) Private key - is a key use to keep your secret on your computer since it is used for decryption

The key consist your name, email and password, and it is generated by the software wizard. 

Your public key must be sent to a key server so that sender can use it to send encrypted email to you.

When you received an encrypted email, you will be requested to key in the passphrase to decrypt that email using your private key.

1. Authentication Digital signatures can be used to

authenticate the source of messages.

2. Integrity There is verification of the

genuineness of the message.

3. Non-repudiation The sender is unable to repudiate the

effect of the signature.

4. Security There exists security of the

information sent.

1. SMART card technology is expensive- more cost needed.

2. Standards are necessary-must observe the standards. if not, the encryption will fail.

3. Public keys are difficult to manage.- public keys are given to everyone who want to send an email to you.