Previous 32 / 73 Next
Normal view
Electronic

Communications

and Transactions

[ N o . 21 of 2009

251

(3) For the purposes of paragraphs (b) and (c) of subsection (2),
the hardware and software systems and procedures shall—
(a) be reasonably secure from intrusion and misuse;
(b) provide a reasonable level of availability, reliability and
correct operation;
(c) be reasonably suited to performing their intended functions;
and
(d) adhere to generally accepted security procedures.
(4) For the purposes of subsection (1), where the products or
s e r v i c e s are p r o v i d e d by a certification service provider, t h e
A c c r e d i t a t i o n A u t h o r i t y m a y d e t e r m i n e , prior to a c c r e d i t i n g
authentication products or s e r v i c e s —
(a) the technical and other requirements to be met;
(b) the requirements for issuing certificates;
(c) the requirements for certification practice statements;
(d) the responsibilities and liability of the certification service
•provider;
(e) the records to be kept and the manner in which, and length
of time for which they must be kept; and
(f) the suspension and revocation procedures.
(5) The Accreditation Authority may impose any conditions or
restrictions necessary for purposes of accrediting an authentication
product or service.
3 1 . (1) T h e Accreditation Authority may suspend or revoke Revocation or
an accreditation if it is satisfied that the authentication service suspension of
provider has contravened the provisions of this A c t or failed or
ceased to meet any of the requirements, conditions or restrictions
subject to which the accreditation was granted or recognition given.
a c c r e c

(2) Subject to subsection (3), the Accreditation Authority shall
not s u s p e n d or r e v o k e t h e a c c r e d i t a t i o n or r e c o g n i t i o n o f an
authentication service provider unless it h a s —
(a) notified the authentication service provider, in writing, o f
its intention to do so;
(b) given a description of the alleged breach of any of the
requirements, conditions or restrictions subject to which
the accreditation w a s granted or recognition was given;
and

l t a t l 0 n

Select target paragraph3

  • Uwazi is developed by uwazi

    in Kenya, Ecuador, Spain, Germany and USA.

  •  
  • ICT Policy Africa
  •  
  • Library
  • Login