Notice to Our Valued Customers

In light of the coronavirus outbreak, we wish to inform our customer that we have facilitated below to provide convenience to you as much as possible and also as a measure to minimize travels which is a timely need of the country:

LankaSign CSP – Digital Certificates

For New Customers

Hard copies of corporate documents were accepted at LankaClear office at the BOC Tower, Colombo 1. Now the customers can submit scanned copies of corporate documents and the duly signed agreement online via our Helpdesk email.

Other conditions/requirements regarding the corporate documents and their due certification remain unchanged.

Ensure that all signatures and true copy sealing are in blue ink.

The duly executed agreement will be emailed to you via the same email address you have maintained to correspond with LankaClear.

Collection of the digital certificate, and the security token is from Lankaclear office in BOC Tower, Colombo 1.

For Existing Customers with Signed LankaSign Digital Certificates Subscriber Agreement
  1. For New Applications

    Hard copies of documents were accepted at LankaClear office at the BOC Tower, Colombo 1. Now the customers can submit scanned copies of new applications online via our Helpdesk email.

    Customers are encouraged to submit applications in advance due to the prevailing situation in the country.

    Collection of the digital certificate and the security token is from Lankaclear office in BOC Tower, Colombo 1.

  2. For Renewal Applications

    Hard copies of documents & security token were accepted at LankaClear office in BOC Tower. Now the customers can submit scanned copies of new applications online via LankaClear Helpdesk email and courier the security token.

    Helpdesk team will inform customers 30 days in advance of upcoming renewals. Customers are encouraged to submit applications in advance due to the prevailing situation in the country.

    Collection of the digital certificate and the security token is from our office in BOC Tower, Colombo 1.

    We’re actively working on moving the entire process online, i.e. to avoid the need for customers to physically submit & collect security tokens in which case the customer has the convenience of getting the digital certificate from home or office.

    Please visit https://www.lankaclear.com/knowledge-center/lankasign/ for more information.

Certificate Charges/Other Costs

There are no changes to applicable charges.

These Changes are in effect until further notice.
Thank you in advance for your corporation.

Overview

The Payment Industry in Sri Lanka has evolved towards greater efficiencies and customer centricities, which has resulted in high reliance on advance technology. The use of the Internet and electronic transactions has evolved rapidly in Sri Lanka facilitating greater customer convenience and attracting new customers, irrespective of their demographics. This is very evident by the high use of SLIPS (Sri Lanka Interbank Payment System) and other electronic payment systems and the growth in the use of Internet Banking.

Though advance technology brings about many advantages to financial institutions and its customers, it also brings in great risks of information security and electronic fraud. Therefore as the use of electronic payments (e-payments) increases, the need for advanced IT security infrastructure becomes critical in order to prevent the risks associated with information security and unauthorized access.

Authentication is a critical issue for users of electronic commerce. Banks must have confidence in the authenticity and the integrity of an electronic transaction received from another bank. This can be achieved through the use of Digital Signatures. Digital Signatures are aimed at achieving a higher level of trust where physical signatures are not possible. Digital signing helps the recipient of the electronic transaction to know with certainty that it was originated by the party who claims who they are and that no changes have been made after the transaction has been signed.

Recognizing this need the Central Bank of Sri Lanka requested LankaClear (Pvt.) Ltd. (LCPL) to be the financial sector Certification Service Provider (CSP). LCPL launched Sri Lanka's first Certification Authority under the brand name LankaSign in accordance with the Electronic Transaction Act, No.19 of 2006 on May-22-2009. A CSP is an authority on a network that issues and manages security credentials and public -private key pair's for message signing and encryption. As part of a public key infrastructure (PKI), a CSP checks with a Registration Authority (RA) to verify information provided by the requestor of a Digital Certificate. If the RA verifies the requestor's information, the CA can then issue a Digital Certificate that can be used for the purpose of signing and encrypting electronic transactions.

LankaSign in its first phase started providing digital certificates to Banks to be used in financial transaction clearing systems, such as SLIPS and CITS (Cheque Imaging and Truncation System), where the CSP and Public Key Infrastructure (PKI) was made available on LCPL's Virtual Private Network (VPN).

On 9th February 2011 LankaSign launched its second phase of providing digital certificates for all financial sector enterprise applications, SSL Certificates and end Users (E-mail/Document signing Certificates) on both private and public networks. This adds great value to the financial sector in Sri Lanka as using digital certificates of Lankasign will save the country its valuable foreign exchange where the other alternative is to procurer Certificates from foreign CSPs at a much higher cost. With LankaSign’s expansion it is now providing a customer focused local service and solutions to reduce document management overheads associated with managing physical documents, as well as promoting Green initiatives.

Currently LankaSign is widely used in almost all financial sector organizations as well as few other sectors for automating their documentation process by digitally signing electronic copies of documents and adding high security for electronic documentation exchange process. As the next phase in their expansion plan, with a major upgrade to their system, LankaSign is now capable of providing digital certificates in real-time for mobile based payment applications for digitally signing and authenticating electronic documents. This has been enabled by a common API developed by LankaSign, which can be easily integrated with such mobile payment applications via a Software Development Kit (SDK) that is freely distributed to such developers.

Aligning with the Electronic Transaction Act, No.19 of 2006, LankaSign follows a stringent process on validating the certificate users and their respective organizations before issuing a digital certificate. Due to its high security standards, LankaSign was able to obtain certification on ISO 27001:2013 for its Information Security Management System in the year 2015.

LankaSign is not only a significant milestone in the ICT industry of Sri Lanka, but also encourages more institutions in all sectors to adopt cost effective digital certificate based technology to achieve a greater level of information security for all their electronic communications and transactions.

Services offered under LankaSign

  • Email Signing Certificates
  • Document Signing Certificates
  • SSL Server Certificates
  • Application Certificates

**LankaSign digital certificates are not automatically trusted by internet browsers and other applications and requires manual installation and trust enforcements.

**iPadOS, IOS, Android & other mobile operating systems are not supported natively, however workarounds may be available. Please reach out to our Helpdesk for more information.

How does digital signing and encryption happen?

Benefits of PKI Integration

  • Data Integrity - ensure that the date arent altered.
  • Greater data security
  • Trusted access
  • Secure migration to online systems from manual systems
  • Non-Repudiation - Sender Cannot Dispute
  • Greater confidentiality by encrypting sensitive data

LankaSign – Summary Certification Practice Statement & LankaSign – Summary Certificate Policy

How To Obtain Digital Signatures & Start Using Them (From The Convenience Of Your Home)

Please click on each step for detailed guidelines.


Please reach out to helpdesk@lankaclear.com / 011 2356999 for any inquiries or support.
Support guideline

Additional Steps for Sri Lanka Customs

Scope

The scope is to provide digital certificates to participating entities of Asycuda System on behalf of Sri Lanka Customs. LankaClear has come up with a clearly defined on boarding process on how to obtain digital certificates and how to start using them.

Additional Steps Required for Sri Lanka Customs

Primary contact point from LankaClear during then entire onboarding process is LankaClear Helpdesk.

  1. How To Obtain Digital Signatures & Start Using Them (From The Convenience Of Your Home)
  2. Upload digital signatures to Asycuda system
  3. Upload Signed documents to Asycuda system

LankaClear Contact Information

  • Phone : 011 2356999 / 011 2356900
  • Email : helpdesk@lankaclear.com

Recommended Use of Certificates/ Digital Certificate Test Cases

This is a generic recommendation for use of certificates including use of certificates within any custom developed application.

LankaSign provides only the certificates and related token driver software and does not provide any support to integrate provided certificates to any software or applications or any other software/application related services or support. LankaSign does not provide security requirements or input for software requirements specifications for individual application or software and a common guideline is made available to be used by developers, application owners or any other party. The certificates can be used in anyway within the application the developer and product owners wishes at the discretion of developer and product owners as per product, compliance, legal and other requirements as long as such functions does not violate rules and regulations of LankaSign CSP.

A general recommendation or test cases for use of certificates is provided below and the developers and product owners are advised to refer to all relevant LankaSign policies and procedure manuals for guidance in this regard. LankaSign also does not take part in any User Acceptance Testing or product implementation confirmations.

  1. Ensure correct certificate extension is used
  2. Ensure Certificate Type is correct, i.e. SSL, Email Signing, Code Signing, etc.
  3. Ensure only the minimum required functionality is included in Key Usage and Extended Key Usage
  4. Ensure certificate validations using OSCP/CRL is done to confirm the validity of the certificate prior to use of the certificate for any function/operation
  5. Check the need for any Special Attributes within the certificate
  6. Ensure the Key Size is correct and as per requirement
  7. Ensure the Issuer is LankaSign CSP

goto top