8
-
monitor technological developments and issue warnings and recommendations
regarding the security of electronic communication networks and certification ;
-
participate in research, training and studies related to the security of electronic
communication networks, certification and information systems;
-
ensure the regularity and efficiency of security audits of information systems in
accordance with established standards, public bodies and Certification Authorities
-
monitor, detect and provide information on computer-related risks and cybercriminal
activities;
-
carry out any other mission of general interest assigned to it by the supervisory
authority.
(3) A decree of the Prime Minister shall determine the modalities of implementation of
subsection 1 above.
Section 8. (1) The Agency shall be the Root Certification Authority.
(2) The Agency shall be the Certification Authority of the Public Administration.
Section 9. (1) The Certification Authorities, security auditors, editors of security programs
and other authorized security services are subject to the payment of a 1.5 % annual
contribution of their untaxed turnover value intended to a fund named "Special Fund for
Security Activities," intended to finance research, development, training and studies in respect
of cybersecurity.
(2) The resources referred to in Subsection 1 above shall be collected by the Agency and
deposited in an account opened at the Central Bank.
(3) A Committee is hereby created to be in charge of the validation of priority projects for
research, development, training and studies in the domain of cybersecurity.
The conditions and terms for the functioning of the Committee shall be defined by regulation .
(4) The Minister in charge of Telecommunications shall be the authorizing officer for
expenses made under the fund referred to in subsection 1 above.
(5) The conditions and terms of collection and management of this contribution shall be
defined by regulation.
CHAPTER III
LEGAL REGIME OF CERTIFICATION ACTIVITIES
Section 10. Electronic certification activities shall be subject to prior approval. It shall be
carried out by Certification Authorities.
Section 11. The following activities may be subject to authorization:
-
the setting up and exploitation of infrastructure to issue, preserve and deliver qualified