The purpose of a Normalised Certificate (NC) is to enable the creation of Advanced Electronic Signature (AES) in accordance with the Electronic Documents and Signatures Law of Macao SAR (EDS Law no. 5/2005) and others international standards.
The Law states that electronic records and their related Electronic Signatures are not to be denied legal effect, validity, or enforceability merely because they are in electronic form. Therefore it encourages the use of electronic signature as an alternative.
Benefits of using AES
AES was specially designed to provide you with the following necessary assurances, required for legal and secure electronic transactions:
- Authentication (who you are);
- Integrity (what you sent);
- Non-repudiation (you can’t deny it);
- Confidentiality (accessible only to those authorized to have access).
Some of the key advantages of using the Normalised Certificate are:
- Verification of your personal electronic identity;
- Protection and assurance of sensitive information and electronic transactions;
- Detection of any fraudulent alteration of electronic documents and transactions;
- The verification of authentication and validity of AES;
- Creation of a non-reputable signature on electronic transactions or documents;
- Eliminate any probability of accepting forged documents.
Optional Encipherment Certificate can also be used together, the main purposes of utilising the Encipherment Certificate are:
- Protection of secret or confidential information from unintended audience;
- State-of-the-art technology used for encryption.
Taking into consideration the different needs and rights of individual users and corporations, eSignTrust issues three similar but distinctively suitable Normalised Certificates.
- Personal Normalised Certificate - is intended for a natural person with valid proof of identity. The usage of this Certificate is for signing documents on one’s own behalf.
- Corporate Normalised Certificate - is designed for authorized personnel of a company, enterprise, institution or association etc, with a valid business registration certificate issued by Government of Macao SAR or a legal registered unit in Macao. The usage is intended for signing documents on behalf of his or her represented organisation.
- Government Normalised Certificate – will be used by authorized personnel of a government agency or department. The usage is intended for signing documents on behalf of his or her government agency or department.
Since a Normalised Certificate will validate the identity of its holder, hence all AES applicants must be satisfactorily identified before they receive a Normalised Certificate. The applicants are required to meet in person with a Registration Authority (RA) Officer or representative during the identification process. If the applicants are outside Macao, the Registration Authority will provide online Identification and Authentication service to those who are eligible.
The Normalised Certificate and Encipherment Certificate together with their respective Private Keys can optionally be stored in a Smart Card; and in such case the holder of the certificates must supply a personal password during the registration to protect and access those keys.
Application Procedures and Requirements
eSignTrust will issue the appropriate AES Packs, depending on individual or organisational needs, the procedures and requirements are as follow:
|Personal User||Government/Corporate User|
|Please follow the instructions shown below:
|Please follow the instructions shown below:
Your eSignTurst Certificate is an important electronic ID for use on the Internet. If the information in your Certificate is no longer valid or your Certificate is lost, damaged, suspected to have been compromised, or stolen, you should by yourself or request eSignTrust to revoke your Certificate immediately. A revoked Certificate is irrevocable.
How to Revoke a Normalised Certificate
A Subscriber may revoke his/her eSignTrust Certificates in the following ways:
- Online Revocation. You may just go to here and follow the instructions to revoke your own certificates online.
- Request eSignTrust. You may submit a Certificate Suspension/Revocation Request Form to eSignTrust to revoke your Certificate.
Certificate Status Update after Suspension or Revocation
The certificate status update is immediate via our OCSP Service (Online Certificate Status Protocol) or Online Search Pages. You may go to Certificate Status and Information in our Repository to look for the real-time status of any eSignTrust Certificates.
Optionally, you may obtain the information via Certificate Revocation List also in our Repository to which the certificate status update is published for access by the public in a daily basis. Your revoked certificate will be updated to the latest CRL in next publishing.
To know more our practices, please read our Certification Practice Statement (CPS).
|Description||Price (MOP)||Validity||Assurance / Liability Limits (MOP)|
|Personal Normalised Certificate||$100.00 / year||3 years||$50,000.00|
|Government Normalised Certificate||$130.00 / year||3 years||$50,000.00|
|Corporate Normalised Certificate||$130.00 / year||3 years||$50,000.00|
|Encipherment Certificate*||$100.00 / year||3 years||$50,000.00|
|Secure Signature-Creation Device (SSCD) Smart Card*||$300.00|
|Smart Card Reader (ACR39U / ACR39T USB Portable)||$150.00 / $250.00|
*A Normalised Certificate can be optionally stored in a SSCD Smart Card or other media, such as CD-ROMs etc.
Above amount is subject to change without any notice.