Electronic Transactions Act (ETA): Singapore's primary legislation governing electronic signatures, digital certificates, and providing legal recognition of electronic transactions. Establishes the regulatory framework for Certification Authorities.
Cybersecurity Act 2018: Legislation regulating cybersecurity standards in Singapore, including requirements for critical information infrastructure and security requirements specific to digital certificates.
Personal Data Protection Act (PDPA): Framework governing data protection requirements, handling of personal information in certificates, and consent and disclosure requirements for certificate issuance.
Trust Services Guidelines by IMDA: Regulatory guidelines establishing technical standards for digital certificates, requirements for Certificate Authorities, and certificate lifecycle management procedures.
Certificate Practice Statement Requirements: Industry standards and requirements covering certificate issuance, security and validation procedures, and certificate revocation protocols.
Cross-border Recognition Requirements: Standards and requirements for international compliance (including WebTrust), recognition of foreign digital certificates, and international interoperability standards.
