Misplaced Pages

#674325

90-642: The Bangladesh Computer Council ( BCC ) is a statutory government organization operating under the Information and Communication Technology Division of the Ministry of Posts, Telecommunications, and Information Technology of the government of Bangladesh . Its headquarters are situated in Agargaon, Dhaka, Bangladesh. It was initially known as the National Computer Committee (NCC) in 1983 and transformed into

180-417: A key ceremony when generating signing keys, in order to ensure that the keys are not tampered with or copied. The critical weakness in the way that the current X.509 scheme is implemented is that any CA trusted by a particular party can then issue certificates for any domain they choose. Such certificates will be accepted as valid by the trusting party whether they are legitimate and authorized or not. This

270-479: A " Safe City " under the "Digital Sylhet City" project. BCC has an idea fab lab, a specialized network lab, a software and hardware quality testing lab, a digital forensic lab, a cyber range, and a cyber defense training center. These labs are facilitated with world-class, advanced devices and technology. In addition, this organization has deployed cyber-sensor technology on various critical information infrastructures. As information technology continues to advance, it

360-574: A "Center of Excellence" for all ICT-related government work. The organization established Union Information and Service Centers (UISCs) through solar power in various unions without electricity, which were later renamed Union Digital Centers (UDCs). They have also established Digital Centers like UISC at various offices in different upazilas across the country. This organization has set up computer labs and smart classrooms in different educational institutions. They have also established cybercenters at various universities and colleges. Moreover, BCC has set up

450-459: A CA are server supervisors who call for a certificate that their servers will bestow to users. Commercial CAs charge money to issue certificates, and their customers anticipate the CA's certificate to be contained within the majority of web browsers, so that safe connections to the certified servers work efficiently out-of-the-box. The quantity of internet browsers, other devices and applications which trust

540-514: A California nonprofit recognized as federally tax-exempt. According to Netcraft in May 2015, the industry standard for monitoring active TLS certificates, "Although the global [TLS] ecosystem is competitive, it is dominated by a handful of major CAs — three certificate authorities (Symantec, Comodo, GoDaddy) account for three-quarters of all issued [TLS] certificates on public-facing web servers. The top spot has been held by Symantec (or VeriSign before it

630-421: A Director. The Technical Division handles technical matters such as data center operations, Certifying Authority activities, Object Identifier (OID) operations, and government-level ICT support services. The Policy, Strategy, and Development Division is responsible for formulating and overseeing information technology policies, strategies, and development efforts. The Capacity Development and Human Resources Division

720-420: A certificate that claims to represent Alice. That is, the certificate would publicly state that it represents Alice, and might include other information about Alice. Some of the information about Alice, such as her employer name, might be true, increasing the certificate's credibility. Eve, however, would have the all-important private key associated with the certificate. Eve could then use the certificate to send

810-590: A certificate which can in turn be used by external relying parties. Notaries are required in some cases to personally know the party whose signature is being notarized; this is a higher standard than is reached by many CAs. According to the American Bar Association outline on Online Transaction Management the primary points of US Federal and State statutes enacted regarding digital signatures has been to "prevent conflicting and overly burdensome local regulation and to establish that electronic writings satisfy

900-430: A communication trusts this organization (and knows its public key). When the user's web browser receives the public key from www.bank.example it also receives a digital signature of the key (with some more information, in a so-called X.509 certificate). The browser already possesses the public key of the CA and consequently can verify the signature, trust the certificate and the public key in it: since www.bank.example uses

990-476: A crucial condemnation service for computers and related equipment, ensuring proper identification and removal of outdated, obsolete, or non-functional hardware for all government offices in Bangladesh. This service encourages responsible electronic waste disposal and the adoption of advanced technologies. BCC is the country Registration Authority (RA) for Object identifiers (OIDs). They received approval from

SECTION 10

#1732844385675

1080-443: A digitally signed email to Bob, tricking Bob into believing that the email was from Alice. Bob might even respond with encrypted email, believing that it could only be read by Alice, when Eve is actually able to decrypt it using the private key. A notable case of CA subversion like this occurred in 2001, when the certificate authority VeriSign issued two certificates to a person claiming to represent Microsoft. The certificates have

1170-504: A domain validated certificate for the victim domain, and deploy it during an attack; if that occurred, the difference observable to the victim user would be the absence of a green bar with the company name. There is some question as to whether users would be likely to recognise this absence as indicative of an attack being in progress: a test using Internet Explorer 7 in 2009 showed that the absence of IE7's EV warnings were not noticed by users, however Microsoft's current browser, Edge , shows

1260-474: A group of companies and nonprofit organizations, including the Electronic Frontier Foundation , Mozilla, Cisco, and Akamai, announced Let's Encrypt , a nonprofit certificate authority that provides free domain validated X.509 certificates as well as software to enable installation and maintenance of certificates. Let's Encrypt is operated by the newly formed Internet Security Research Group ,

1350-517: A hierarchy or mesh of CAs and CA certificates. A certificate may be revoked before it expires, which signals that it is no longer valid. Without revocation, an attacker would be able to exploit such a compromised or misissued certificate until expiry. Hence, revocation is an important part of a public key infrastructure . Revocation is performed by the issuing CA, which produces a cryptographically authenticated statement of revocation. For distributing revocation information to clients, timeliness of

1440-478: A key exchange protocol can be enciphered with the bank's public key in such a way that only the bank server has the private key to read them. The rest of the communication then proceeds using the new (disposable) symmetric key, so when the user enters some information to the bank's page and submits the page (sends the information back to the bank) then the data the user has entered to the page will be encrypted by their web browser. Therefore, even if someone can access

1530-487: A key, but generally prevent extraction of that key with both physical and software controls. CAs typically take the further precaution of keeping the key for their long-term root certificates in an HSM that is kept offline , except when it is needed to sign shorter-lived intermediate certificates. The intermediate certificates, stored in an online HSM, can do the day-to-day work of signing end-entity certificates and keeping revocation information up to date. CAs sometimes use

1620-456: A more rigorous alternative to domain validated certificates. Extended validation is intended to verify not only control of a domain name, but additional identity information to be included in the certificate. Some browsers display this additional identity information in a green box in the URL bar. One limitation of EV as a solution to the weaknesses of domain validation is that attackers could still obtain

1710-1180: A particular certificate authority is referred to as ubiquity. Mozilla , which is a non-profit business, issues several commercial CA certificates with its products. While Mozilla developed their own policy, the CA/Browser Forum developed similar guidelines for CA trust. A single CA certificate may be shared among multiple CAs or their resellers . A root CA certificate may be the base to issue multiple intermediate CA certificates with varying validation requirements. In addition to commercial CAs, some non-profits issue publicly-trusted digital certificates without charge, for example Let's Encrypt . Some large cloud computing and web hosting companies are also publicly-trusted CAs and issue certificates to services hosted on their infrastructure, for example IBM Cloud , Amazon Web Services , Cloudflare , and Google Cloud Platform . Large organizations or government bodies may have their own PKIs ( public key infrastructure ), each containing their own CAs. Any site using self-signed certificates acts as its own CA. Commercial banks that issue EMV payment cards are governed by

1800-416: A public key that the certification authority certifies, a fake www.bank.example can only use the same public key. Since the fake www.bank.example does not know the corresponding private key, it cannot create the signature needed to verify its authenticity. It is difficult to assure correctness of match between data and entity when the data are presented to the CA (perhaps over an electronic network), and when

1890-574: A range of Cloud computing services , including Elastic Cloud Server (ECS), Image Management Services (IMS), Elastic Volume Service (EVS) for Cloud Storage , Volume Backup Service (VBS), and Cloud Server Backup Service (CSBS) for Cloud Backup . In addition, it provides Virtual Private Cloud (VPC), Elastic IP (EIP), Elastic Load Balancer (ELB), and Virtual Firewall (VFW) for Cloud Network Services. Other services offered are virtual Private Servers , Load Balancing , Email Service , Web Hosting , Backup , and Colocation Services . A dedicated security team

SECTION 20

#1732844385675

1980-949: A regulatory framework ● Promote Bangladesh as a global startup hub ● Standardize Bangla language features, develop tools and technologies ● Research to enhance Bangla-based computing. ● Create a common ERP aimed at automating the resource management of all government organizations The BCC has made significant contributions to ICT human resource development. The BCC and its various projects have trained over 2,36,000 individuals, including 187,200 males and 46,800 females, in various ICT skills until April 3, 2023. Notably, from 2010 to 2022, BKIICT and 7 regional centers trained 36,000 individuals in diploma/PGD and short-term courses, preparing them for global employment opportunities. BCC has also empowered teachers and students, with 7,890 teachers trained as master trainers and 112,189 students receiving Basic ICT training. The council has provided training in emerging technologies like artificial intelligence (AI),

2070-575: A reliable infrastructure for secure electronic transactions and communications in Bangladesh while providing secure digital certificates , web-based SSL certificates, PKI tools, and e-signatures to government organizations. The National Network Operation Center (NOC) was formed in 2014 to operate and maintain the e-government Network. It focuses on network security, planning, research and development, operation, upgrade, and maintenance of nationwide government networks. NOC provides internet, intranet , extranet , and government video conference networks for

2160-470: A significantly greater difference between EV and domain validated certificates, with domain validated certificates having a hollow, grey lock. Domain validation suffers from certain structural security limitations. In particular, it is always vulnerable to attacks that allow an adversary to observe the domain validation probes that CAs send. These can include attacks against the DNS, TCP, or BGP protocols (which lack

2250-454: A source of security vulnerabilities. In one instance, security researchers showed that attackers could obtain certificates for webmail sites because a CA was willing to use an email address like ssladmin@domain.com for domain.com, but not all webmail systems had reserved the "ssladmin" username to prevent attackers from registering it. Prior to 2011, there was no standard list of email addresses that could be used for domain validation, so it

2340-558: A trusted root by a web browser or operating system. As of 24 August 2020 , 147 root certificates, representing 52 organizations, are trusted in the Mozilla Firefox web browser, 168 root certificates, representing 60 organizations, are trusted by macOS , and 255 root certificates, representing 101 organizations, are trusted by Microsoft Windows . As of Android 4.2 (Jelly Bean), Android currently contains over 100 CAs that are updated with each release. On November 18, 2014,

2430-425: A valid certificate issued by a Microsoft Terminal Server licensing certificate that used the broken MD5 hash algorithm. The authors thus was able to conduct a collision attack with the hash listed in the certificate. In 2015, a Chinese certificate authority named MCS Holdings and affiliated with China's central domain registry issued unauthorized certificates for Google domains. Google thus removed both MCS and

2520-595: Is a Ministerial Division of the Ministry of Posts, Telecommunications and Information Technology of the executive branch of the Government of Bangladesh . The following units function under the ICT Division: This article about government and politics in Bangladesh is a stub . You can help Misplaced Pages by expanding it . Certificate authority One particularly common use for certificate authorities

2610-495: Is a serious shortcoming given that the most commonly encountered technology employing X.509 and trusted third parties is the HTTPS protocol. As all major web browsers are distributed to their end-users pre-configured with a list of trusted CAs that numbers in the dozens this means that any one of these pre-approved trusted CAs can issue a valid certificate for any domain whatsoever. The industry response to this has been muted. Given that

2700-616: Is crucial to establish standards that can enhance the accessibility of the Bengali language in the field of information technology, ensuring its ease of use for everyone. The responsibility of promulgating these standards lies with the Bangladesh Standards and Testing Institution (BSTI), while the task of technical drafting and declaration is carried out by the BCC. The organization has already developed several standards and simultaneously modernized

2790-570: Is evidence that the fraudulent DigiNotar certificates were used in a man-in-the-middle attack in Iran. In 2012, it became known that Trustwave issued a subordinate root certificate that was used for transparent traffic management (man-in-the-middle) which effectively permitted an enterprise to sniff SSL internal network traffic using the subordinate certificate. In 2012, the Flame malware (also known as SkyWiper) contained modules that had an MD5 collision with

Bangladesh Computer Council - Misplaced Pages Continue

2880-457: Is in charge of capacity building and human resource functions for the ICT sector. BCC has established seven regional offices in different parts of the country, which collaborate with local governments and non-governmental organizations to develop and implement national information and technology policies, strategies, and plans. These offices also assist in the implementation of e-government initiatives at

2970-523: Is in charge of supervising and directing the council's operations. According to the information available, the members of the Council Committee are as follows: BCC's CA Operations and Security serves as the sole official Certifying Authority of the government of Bangladesh . Its duties entail overseeing CA operations, enforcing regulations, and managing Electronic Signatures and a secure repository of electronic signature certificates. This guarantees

3060-459: Is in place to monitor and handle any security incidents that may arise. This SHQTC facilitates the testing (functional, performance, and security) of all software, applications, and mobile apps developed and procured by the government entity for e-government service delivery. It also conducts hardware testing, ensures quality assurance, and coordinates software certification. BCC is conducting research and development work on emerging technologies in

3150-445: Is less error-prone importing and trusting the CA issued, rather than confirm a security exemption each time the server's certificate is renewed. Less often, trustworthy certificates are used for encrypting or signing messages. CAs dispense end-user certificates too, which can be used with S/MIME . However, encryption entails the receiver's public key and, since authors and receivers of encrypted messages, apparently, know one another,

3240-543: Is responsible for the annual administration of the Information Technology Engineers Examination (ITEE) in Bangladesh. The ITEE is an internationally recognized information technology examination developed by Japan's Information Technology Promotion Agency (IPA). This exam applies to both IT and non-IT professionals and graduates, and their knowledge and skills in this field can get international recognition. Since 2013, BD-iTech has been entrusted by

3330-634: Is the world's largest high-assurance certificate authority, commanding 60% of the Extended Validation Certificate market, and 96% of organization-validated certificates globally. As of July 2024 the survey company W3Techs, which collects statistics on certificate authority usage among the Alexa top 10 million and the Tranco top 1 million websites, lists the six largest authorities by absolute usage share as below. The commercial CAs that issue

3420-554: Is to sign certificates used in HTTPS , the secure browsing protocol for the World Wide Web. Another common use is in issuing identity cards by national governments for use in electronically signing documents. Trusted certificates can be used to create secure connections to a server via the Internet. A certificate is essential in order to circumvent a malicious party which happens to be on

3510-460: The certificate transparency initiative proposes auditing all certificates in a public unforgeable log, which could help in the prevention of phishing . In large-scale deployments, Alice may not be familiar with Bob's certificate authority (perhaps they each have a different CA server), so Bob's certificate may also include his CA's public key signed by a different CA 2 , which is presumably recognizable by Alice. This process typically leads to

3600-1029: The Bangladesh Computer Council through Act No. 9 of the National Parliament in 1990. Since its inception, the BCC has been an important advocate for the country's technological development, specifically in information and communications technology (ICT). In collaboration with government organizations in Bangladesh , this organization is responsible for developing national ICT plans, strategies, and policies, empowering Digital Bangladesh, implementing e-government , and collaborating with various government organizations and private sector partners. They also set ICT standards and specifications, develop ICT infrastructure, provide advice on IT technology utilization and security measures, identify issues related to national cyber security and cybercrimes , and investigate, remediate, prevent, and suppress these issues. The BCC has undertaken numerous projects to improve

3690-529: The Bangladesh National Enterprise Architecture Framework . Such a component is the eGovernment Interoperability Framework, which ensures seamless integration and communication across different government departments and agencies. The Mobile Service Delivery Platform defines the architecture and standards for efficient mobile service delivery. The National e-Service Bus acts as a middleware application or platform, facilitating

Bangladesh Computer Council - Misplaced Pages Continue

3780-563: The International Telecommunication Union (ITU) on July 30, 2012, to function as the country's RA. As the RA, this organization is responsible for allocating and managing OIDs within the country's OID allocation structure, which starts with country OID 2.16.50 . The BCC oversees OID registration, ensures compliance, approves OIDs for the global repository, collaborates with ITU-T , defines valid objects, and assists OID users. As

3870-533: The Ministry of Posts, Telecommunications and Information Technology of the government of Bangladesh (GoB). The Bangladesh Computer Council operates with the following objectives to advance ICT in Bangladesh: The key responsibilities of the Bangladesh Computer Council include: These responsibilities encompass a wide range of initiatives and projects aimed at contributing to the development of

3960-644: The National Computer Committee (NCC) in 1983. Nevertheless, the National Computer Board (NCB) took over the role of the NCC in 1988. In 1989, the " Bangladesh Computer Council Ordinance " was put into effect. The following year, the National Parliament enacted Act No. 9, " Bangladesh Computer Council Act, 1990" , which transformed the National Computer Board into a statutory body under the name "Bangladesh Computer Council". BCC continued to function under

4050-451: The President , Prime Minister, Ministries , Bangladesh Secretariat , and field administration. NOC provides consultation with other government organizations in preparing network standards and specifications. Currently, it is providing network operation and maintenance services in 18,834 government offices up to the upazila level. It also monitors the network connectivity of 2600 unions under

4140-448: The President's Secretariat until 1991. In 1991, this organization was placed under the Ministry of Science and Technology , which later became the Ministry of Science and Information and Communication Technology . Over the years, the BCC has evolved and expanded its scope of activities to meet the growing demands of the ICT sector. In 2011, the BCC was placed under the newly created Information and Communication Technology Division of

4230-569: The internet of things (IoT), blockchain , robotics , big data , medical scribe , and cyber security to government employees, educational institution teachers, entrepreneurs, and IT professionals. BCC has partnered with esteemed organizations such as Coursera , Facebook, and the National University of Singapore to enrich the training landscape in the country. Moreover, this organization has set up an assessment and certification platform to foster skilled manpower development and further fuel

4320-401: The (encrypted) data that was communicated from the user to www.bank.example, such eavesdropper cannot read or decipher it. This mechanism is only safe if the user can be sure that it is the bank that they see in their web browser. If the user types in www.bank.example, but their communication is hijacked and a fake website (that pretends to be the bank website) sends the page information back to

4410-525: The BCC organized the 45th Annual International Collegiate Programming Contest World Final in Dhaka, Bangladesh. The organization has received several awards and recognitions for its achievements in promoting ICT in Bangladesh, such as the WITSA award , WSIS Winner Prize , ASOCIO Digital Government Award , Open Group President Award , Public Administration Award 2017, etc . The government of Bangladesh established

4500-471: The Baseline Requirements, a list of policies and technical requirements for CAs to follow. These are a requirement for inclusion in the certificate stores of Firefox and Safari. If the CA can be subverted, then the security of the entire system is lost, potentially subverting all the entities that trust the compromised CA. For example, suppose an attacker, Eve, manages to get a CA to issue to her

4590-484: The CA, certify that". If the user trusts the CA and can verify the CA's signature, then they can also assume that a certain public key does indeed belong to whoever is identified in the certificate. Public-key cryptography can be used to encrypt data communicated between two parties. This can typically happen when a user logs on to any site that implements the HTTP Secure protocol. In this example let us suppose that

SECTION 50

#1732844385675

4680-597: The EMV Certificate Authority, payment schemes that route payment transactions initiated at Point of Sale Terminals ( POS ) to a Card Issuing Bank to transfer the funds from the card holder's bank account to the payment recipient's bank account. Each payment card presents along with its card data also the Card Issuer Certificate to the POS. The Issuer Certificate is signed by EMV CA Certificate. The POS retrieves

4770-530: The ICT sector in Bangladesh. The BCC has a robust organizational structure that allows it to handle its wide range of responsibilities and initiatives efficiently. The Executive Director is the highest-ranking official and is responsible for overseeing all operations of this organization. Under the Executive Director, there are three primary Divisions, each headed by a Member, and each of these divisions further consists of several subdivisions, each overseen by

4860-581: The Japanese government to conduct, implement, and certify ITEE exams in Bangladesh. BCC is conducting various national-level projects to improve the country's ICT infrastructure. Some such projects are: ● Facilitate the smooth and successful implementation of e-government services in Bangladesh Additional Services: ● Offer support to startup entrepreneurs with mentoring, funding, co-working spaces, marketing, and legal assistance. ● Build

4950-594: The National Data Center (Tier III), providing uninterrupted services to various government offices. The Disaster Recovery Center located in Jessore has been established, along with the 7th largest National Data Center (Tier-IV) Center in the world at Bangabandhu Hi-Tech City , Kaliakair , Gazpur . BCC has established a nationwide government network connectivity backbone under different projects, providing high-speed internet connections through optical fiber cable and

5040-471: The bulk of certificates for HTTPS servers typically use a technique called " domain validation " to authenticate the recipient of the certificate. The techniques used for domain validation vary between CAs, but in general domain validation techniques are meant to prove that the certificate applicant controls a given domain name , not any information about the applicant's identity. Many Certificate Authorities also offer Extended Validation (EV) certificates as

5130-430: The certificate belongs to the person, organization, server or other entity noted in the certificate. A CA's obligation in such schemes is to verify an applicant's credentials, so that users and relying parties can trust the information in the issued certificate. CAs use a variety of standards and tests to do so. In essence, the certificate authority is responsible for saying "yes, this person is who they say they are, and we,

5220-813: The commercialization of ICT. BCC assists the government of Bangladesh in policy formulation, implementation, and monitoring. This organization coordinates with government institutions, conducts studies and surveys, and develops management information systems to address national needs. BCC provides ICT-related consultancy services to government and public organizations. These services include requirements analysis for hardware and software, technical specification preparation, requirement analysis for automation, tender document preparation, and tender evaluation for government organizations with e-government empowerment initiatives. Additionally, they provide on-demand websites and software development . Furthermore, BCC offers ICT professional recruitment assistance. BCC provides

5310-664: The contents of a browser's pre-configured trusted CA list is determined independently by the party that is distributing or causing to be installed the browser application there is really nothing that the CAs themselves can do. This issue is the driving impetus behind the development of the DNS-based Authentication of Named Entities (DANE) protocol. If adopted in conjunction with Domain Name System Security Extensions (DNSSEC) DANE will greatly reduce if not eliminate

5400-582: The cost of revocation checks and the availability impact from potentially-unreliable remote services, Web browsers limit the revocation checks they will perform, and will fail-soft where they do. Certificate revocation lists are too bandwidth-costly for routine use, and the Online Certificate Status Protocol presents connection latency and privacy issues. Other schemes have been proposed but have not yet been successfully deployed to enable fail-hard checking. The CA/Browser Forum publishes

5490-496: The country's ICT infrastructure, such as BanglaGovNet , Info-Sarker Phases II and III , Connected Bangladesh , and others, many of which have already been completed. It has also significantly contributed to human resource development by providing training to thousands of individuals, including the disabled , transgender and third-gender communities, and women entrepreneurs. The BCC has been organizing various competitions and events to promote information technology education in

SECTION 60

#1732844385675

5580-870: The country's RA, this organization facilitates a secure PKI and other IT initiatives. The Bangladesh e-government Computer Incident Response Team , also known as the National Computer Emergency Response Team of Bangladesh, is responsible for preventing and responding to cyber security threats within the country. They work closely with international partners to ensure the safety of Bangladesh's cyberspace. Their duties include receiving reviews, responding to computer security incidents, conducting research and development, and providing guidance on security threats and vulnerabilities. Additionally, they assist government organizations, financial organizations, law enforcement agencies, academia, and civil society in improving overall cyber security . They also provide

5670-647: The country, including the National Children and Youth Programming Contest, the International Blockchain Olympiad, and the International Collegiate Programming Contest . These events provide opportunities for people of all ages and backgrounds to showcase their skills and passion for this field, advance the country's startup ecosystem, and increase computer programming's popularity among the younger generation. In 2022,

5760-404: The credentials of the person/company/program asking for a certificate are likewise presented. This is why commercial CAs often use a combination of authentication techniques including leveraging government bureaus, the payment infrastructure, third parties' databases and services, and custom heuristics. In some enterprise systems, local forms of authentication such as Kerberos can be used to obtain

5850-436: The cryptographic protections of TLS/SSL), or the compromise of routers. Such attacks are possible either on the network near a CA, or near the victim domain itself. One of the most common domain validation techniques involves sending an email containing an authentication token or link to an email address that is likely to be administratively responsible for the domain. This could be the technical contact email address listed in

5940-491: The discovery of revocation (and hence the window for an attacker to exploit a compromised certificate) trades off against resource usage in querying revocation statuses and privacy concerns. If revocation information is unavailable (either due to accident or an attack), clients must decide whether to fail-hard and treat a certificate as if it is revoked (and so degrade availability ) or to fail-soft and treat it as unrevoked (and allow attackers to sidestep revocation). Due to

6030-482: The domain's WHOIS entry, or an administrative email like admin@ , administrator@ , webmaster@ , hostmaster@ or postmaster@ the domain. Some Certificate Authorities may accept confirmation using root@ , info@ , or support@ in the domain. The theory behind domain validation is that only the legitimate owner of a domain would be able to read emails sent to these administrative addresses. Domain validation implementations have sometimes been

6120-501: The existing ones. Bangladesh Standards are: Due to lack of coherence and synergy between vendors and technologists, these standards were largely never widely accepted nor recognized by international bodies. Later, versions of standards such as BSCII in essence rubber stamped Unicode encoding scheme. Information and Communication Technology Division The Information and Communication Technology Division ( Bengali : তথ্য ও যোগাযোগ প্রযুক্তি বিভাগ ), abbreviated to ICT Division ,

6210-407: The field of information technology. It formulates appropriate standards for implementing e-governance and software and hardware for capacity development, and it works on interoperability. It establishes and manages appropriate centers or systems to develop the innovative power of potential ICT graduates. It works on the development of IT personnel according to domestic and international markets and

6300-708: The growth of the IT industry in Bangladesh. The Bangladesh Computer Council has been actively involved in the development of ICT infrastructure in Bangladesh to realize the Digital Bangladesh vision. Their projects have been instrumental in the implementation of Digital Bangladesh. One of their most significant contributions is the expansion of the ICT Tower (formally known as the BCC Tower) to accommodate various important institutions related to ICT. The building has been transformed into

6390-534: The importance of cyber security. The government of Bangladesh has developed a National Enterprise architecture framework called the Bangladesh National Digital Architecture Framework based on leading standards, practices, and frameworks like Open Group's TOGAF 9. This framework has been customized to meet the specific requirements and strategic objectives of the country. It consists of various key components that aim to establish

6480-407: The integration of e-services. BCC offers various training courses and programs, as well as job fairs, workshops, seminars, and programming competitions nationwide. They also provide specialized training and events for disadvantaged communities, including the disabled and third-gender communities. Women entrepreneurs can also access various training opportunities. To satisfy the rising demand in both

6570-553: The latest technology in video conferencing in several government offices across the country. Apart from this, the organization has set up Agricultural Information and Communication Centers and Telemedicine Centers. They have also established WiFi networks in the Bangladesh Secretariat and ICT Tower and virtual private network (VPN) connectivity in the Bangladesh Police. At present, the process of providing connectivity to

6660-412: The local level. Furthermore, They provide ICT training, develop ICT curricula, and support human development by hosting workshops, seminars, and online practice and e-learning activities in their respective regions with the collaboration of the local ICT industry. Regional offices of this organization: The BCC's Council Committee is a group of 12 individuals from various government departments. The council

6750-506: The market for globally trusted TLS/SSL server certificates is largely held by a small number of multinational companies. This market has significant barriers to entry due to the technical requirements. While not legally required, new providers may choose to undergo annual security audits (such as WebTrust for certificate authorities in North America and ETSI in Europe ) to be included as

6840-525: The name "Microsoft Corporation", so they could be used to spoof someone into believing that updates to Microsoft software came from Microsoft when they actually did not. The fraud was detected in early 2001. Microsoft and VeriSign took steps to limit the impact of the problem. In 2008, Comodo reseller Certstar sold a certificate for mozilla.com to Eddy Nigg, who had no authority to represent Mozilla. In 2011 fraudulent certificates were obtained from Comodo and DigiNotar , allegedly by Iranian hackers. There

6930-691: The national and international job markets, BCC maintains an ICT training institute called BKIICT that provides a variety of ICT-related programs, including standard certification courses, diplomas, and post-graduate diplomas. The institute also provides customized courses for government officials to improve their ICT skills and efficiency. Besides, BKIICT conducts aptitude tests for ICT candidates applying for jobs in various government departments and organizations on behalf of those institutions. They also conduct computer proficiency tests and provide lab rental services according to government requirements. BCC's Bangladesh ICT-Engineers Examination Center, known as BD ITech,

7020-410: The national priority project named ‘Info Sarker-3’. BCC operates a Tier III-certified National Data Center in Bangladesh that offers a comprehensive range of services to government organizations. This data center provides secure and reliable cloud services and the storage and management of digital data for various government agencies and organizations in the country. The National Data Center offers

7110-415: The necessary support to the ' Digital Security Agency '. BGD e-GOV CIRT offers a range of essential services, including incident handling, digital forensics , cyber security training, threat intelligence, IT audits , cyber sensors, risk assessment, and awareness building. These services help organizations identify and respond to security incidents, evaluate potential security gaps, and build awareness about

7200-499: The public key of EMV CA from its storage, validates the Issuer Certificate and authenticity of the payment card before sending the payment request to the payment scheme. Browsers and other clients of sorts characteristically allow users to add or do away with CA certificates at will. While server certificates regularly last for a relatively short period, CA certificates are further extended, so, for repeatedly visited servers, it

7290-465: The root certificate authority from Chrome and have revoked the certificates. An attacker who steals a certificate authority's private keys is able to forge certificates as if they were CA, without needed ongoing access to the CA's systems. Key theft is therefore one of the main risks certificate authorities defend against. Publicly trusted CAs almost always store their keys on a hardware security module (HSM), which allows them to sign certificates with

7380-593: The route to a target server which acts as if it were the target. Such a scenario is commonly referred to as a man-in-the-middle attack . The client uses the CA certificate to authenticate the CA signature on the server certificate, as part of the authorizations before launching a secure connection. Usually, client software—for example, browsers—include a set of trusted CA certificates. This makes sense, as many users need to trust their client software. A malicious or compromised client can skip any security check and still fool its users into believing otherwise. The clients of

7470-518: The traditional requirements associated with paper documents." Further the US E-Sign statute and the suggested UETA code help ensure that: Despite the security measures undertaken to correctly verify the identities of people and companies, there is a risk of a single CA issuing a bogus certificate to an imposter. It is also possible to register individuals and companies with the same or very similar names, which may lead to confusion. To minimize this hazard,

7560-497: The unions in remote areas is underway under the Connected Bangladesh project. BCC has connected India, Nepal, Bhutan, and Bangladesh by optical fiber cable to increase data exchange capacity. This organization has set up a 50-meter-high self-supported tower under the project entitled ‘ Digital Island Moheskhali ’ to introduce high-speed internet service. They have also set up an IP camera-based surveillance system to make Sylhet

7650-461: The usefulness of a trusted third party remains confined to the signature verification of messages sent to public mailing lists. Worldwide, the certificate authority business is fragmented, with national or regional providers dominating their home market. This is because many uses of digital certificates, such as for legally binding digital signatures, are linked to local law, regulations, and accreditation schemes for certificate authorities. However,

7740-413: The user logs on to their bank's homepage www.bank.example to do online banking. When the user opens www.bank.example homepage, they receive a public key along with all the data that their web-browser displays. The public key could be used to encrypt data from the client to the server but the safe procedure is to use it in a protocol that determines a temporary shared symmetric encryption key; messages in such

7830-453: The user's browser, the fake web-page can send a fake public key to the user (for which the fake site owns a matching private key). The user will fill the form with their personal data and will submit the page. The fake web-page will then get access to the user's data. This is what the certificate authority mechanism is intended to prevent. A certificate authority (CA) is an organization that stores public keys and their owners, and every party in

7920-420: Was able to obtain a domain-validated certificate for live.fi, despite not being the owner of the domain name. A CA issues digital certificates that contain a public key and the identity of the owner. The matching private key is not made available publicly, but kept secret by the end user who generated the key pair. The certificate is also a confirmation or validation by the CA that the public key contained in

8010-571: Was not clear to email administrators which addresses needed to be reserved. The first version of the CA/Browser Forum Baseline Requirements, adopted November 2011, specified a list of such addresses. This allowed mail hosts to reserve those addresses for administrative use, though such precautions are still not universal. In January 2015, a Finnish man registered the username "hostmaster" at the Finnish version of Microsoft Live and

8100-406: Was purchased by Symantec) ever since [our] survey began, with it currently accounting for just under a third of all certificates. To illustrate the effect of differing methodologies, amongst the million busiest sites Symantec issued 44% of the valid, trusted certificates in use — significantly more than its overall market share." In 2020, according to independent survey company Netcraft , "DigiCert

#674325