Rev. 2011]
Kenya Information and Communications
CAP. 411A
certificate in the repository specified in the certificate.
[Subsidiary]
(3) Where a certification service provider has specified in a certificate, the
limits on the use of the certificates and the limits on the values of transactions
for which the certificate may be used, it shall not be liable for any damage
resulting from exceeding the limits.
12. (1) The provisions of regulation 9 shall apply mutatis mutandis to
the renewal of certificates.
Renewal of
certificates.
(2) The subscriber identity verification method employed for renewal of
certificates shall be specified in the certification practice statement.
(3) A certification service provider shall log and keep, in a secure manner,
the date and time of all transactions relating to the renewal of a certificate.
13. (1) A certification service provider shall maintain facilities that can Suspension of
receive and respond to requests for suspension of certificates at all times of the certificates.
day and on all days of every year.
(2) A certification service provider shall, upon receiving a valid request
under paragraph (1) suspend a certificate and publish a notice of the suspension
in the respective repository.
(3) The subscriber identity verification method employed for suspension
of certificates shall be specified in the certification practice statement.
(4) Where a request for suspension is received and a certification service
provider determines the revocation of the certificate would be justified in the
light of all the evidence available to it, the certificate service provider may
revoke the certificate.
(5) A certification service provider may, regardless of the subscriber’s
consent, suspend a certificate that it has issued if it has reasonable grounds to
believe that the certificate is unreliable.
Provided that the certification service provider shall conduct and
complete its investigation into the reliability of the certificate and decide within
a reasonable time whether to reinstate or revoke the certificate.
(6) A certification service provider shall, within a reasonable time,
terminate a suspension initiated through a request, upon discovering and
confirming that the request for suspension was made without the authorization
of the subscriber.
(7) A certification service provider shall, after suspending a certificate,
consult with the subscriber or his authorized agent on whether to reinstate or
revoke the certificate.
(8) The provisions of regulation 11 shall apply where the suspension of
a certificate leads to the revocation of the certificate.
287