A Digital Certificate is issued by a Certification Authority (CA) and signed with the CA's private key. Digicert is a trusted Certification Authority and is responsible for the issuance and management of Digital Certificates.

Public Key Infrastructure or PKI, is defined as the set of hardware, software, people, policies and procedures needed to create, manage, store, distribute and revoke Public Key Certificates (PKCs) based on public-key cryptography

Usage of PKI and Digital Certificates

The implementation of PKI with the usage of Digital Certificates will provide the following key benefits:

Authentication is the verification of the identity of a person (or host, server, client...). It guarantees the authenticity of who signed the data - so you know who participated in a transaction and that it has not been forged by someone else. It allows determining the true identity of a user attempting to access a system by confirmation of the claimed identity.

A digital signature is a mathematical technique used to validate the authenticity and integrity of a message, software or digital document. As the digital equivalent of a handwritten signature or stamped seal, a digital signature offers far more inherent security, and it is intended to solve the problem of tampering and impersonation in digital communications.

Digital signatures can provide the added assurances of evidence of origin, identity and status of an electronic document, transaction or message and can acknowledge informed consent by the signer.

In many countries, including Malaysia, digital signatures that uses digital certificates are considered legally binding in the same way as traditional document signatures.

Non-repudiation allows you to prove later who participated in a transaction - a signer of a document on one end of a transmission cannot deny having sent the message nor can the recipient deny having received it.

Simply stated, non-repudiation means that information cannot be disclaimed, similar to a witnessed handwritten signature on a paper document. A feature of a digital signature which allows the author ("signer") of a message to prove his identity.

Encryption is the conversion of plaintext data to unintelligible data, called 'ciphertext', by using algorithms and secret codes (keys). Decryption is defined as the reverse of this situation, the conversion of unintelligible data into a legible format.

Digital Certificate, also called Digital ID's, are the electronic counterparts to identity cards, drivers’ license, passports or membership cards. A Digital Certificate can be presented electronically to prove your identity or your right to access information or services online. Digital Certificates bind an identity to a pair of electronic keys that can be used for encrypting and signing digital information.

A Digital Certificate enables individuals and organisations to secure business and personal transactions across communication networks.

The potential of business opportunities and enhanced customer convenience services offered by the Internet is phenomenal. From home banking to network shopping and online information subscription services, security remains a growing concern.

Governing access control through the use of a simple password is no longer thought to be adequate. Controlling access through the use of a known quantity, the password, in addition to a possessed entity, the digital certificate, is much more secure.

More and more companies doing business on the Internet are awakening to this reality and requiring the use of digital certificates by their customers. However, it's not just online consumers that will need digital certificates, businesses operating electronic commerce servers on the Internet will need digital certificates as well.

Here, because of the identity verification performed by the Certification Authority before issuance, the presence of a digital certificate will attest to the integrity of the business, thus providing online consumers with assurance that they are dealing with a legitimate business.

Digital Certificate contains the owner's public key, the owner's name, an expiration date, the name of the Certification Authority that issued the Digital Certificate, a serial number, encryption / hashing information and some other unique identifiable information.

A root certificate is the digital certificate of a certification authority. The public key in this certificate is used to verify the signature of the certification authority. With the corresponding private key, the certification authority signs all certificates issued.

The root certificate confirms that the public key and the certification authority are linked. By downloading the root certificate, the user accepts to trust the certification authority.

Pos Digicert has several root keys. You can download them from Pos Digicert’s website:

Pos Digicert offers both Personal Digital Certificates and Server Digital Certificates:

A )   A personal digital certificate is an electronic file issued and digitally signed by a certification authority that vouches for the identity of the certificate holder. It provides a means of authentication for conducting online transactions.

B )   Server Certificates are basically used to identify a server. Characteristically this certificate is issued to the hostnames, which could be a host reader – for example Microsoft or any machine name. The server certificates serve the rationale of encrypting and decrypting the content.

Privacy and confidentiality
--   organisations want digital certificates for message encryption and decryption.

Integrity, authentication, and non-repudiation ( digital signing / verification )
--   organisations plan to use digital certificates for digital signing of messages to establish the identity of the sender and establish that messages have not been tampered with.

Access control
--   will require digital certificates, whether in browsers, on disks or on smart cards, to control access to facilities, Internet sites, Intranets, and other digital networks.

Proof of document transmission ( time stamping )
--   organisations need to use independent time stamping authorities to verify dates and times of critical messages for legal and commercial uses.

Document archive and retrieval
--   organisations need to use digital certificates to validate that stored messages have not been altered and to provide controlled access to authorised individuals.

Identification and privileges
--   organisations will require digital certificates to establish their rights and privileges, for instance, for licensing purposes.

A digital certificate is used to confirm the identity of a public key owner. Normally, a third party organization, known as CA (certification authority), is responsible for confirming or binding the identity of a digital certificate owner. It is used to establish secure communication between two parties who are unknown to each other or have lack of trust. Digital certificate can assure that the person who you can want to establish communication is actually the person who he claims to be. So, the main reason of using digital certificate is building trust between two parties who want to communicate securely.

How trust is built using digital certificate?
We can verify an unknown persons identify when a well-known organized endorse the identity of that person. In case of digital certificate, the CA or certificate authority endorses the identity of the certificate owner, in simple words, a CA offers notarization server to give reasonable assurance that the owner of the certificate is authentic.

Yes. You can install to multiple PCs as long as you have the original certificate and PIN code.

To unblock, please courier your token / smartcard to Pos Digicert together with media return form / revocation request form.

You can request the form by emailing [email protected]
or alternatively you can download it at https://www.posdigicert.com.my/downloadpage/form.

Please contact our Customer Service at +603 8800 8008 or
you may email us at [email protected] immediately.

You need to re-apply for your certificate. Please fill in media return form / revocation request form.

You can request the form from [email protected]
or you can download it at https://www.posdigicert.com.my/downloadpage/form.

How to fix multiple prompting pin in Nexus Personal.

Our counter operating hours are as per below:

Monday - Thursday ( 09.00am - 05.00pm )
Friday ( 09:00am – 12:30pm,  02:45pm – 05:00pm )
Saturdays & Sundays (Closed)

Yes. The individual / agent would need to bring a signed authorisation letter together with the complete documentation for the digital certificate application.

You can apply for a Digital Certificate by visiting Pos Digicert’s office in Cyberjaya, Selangor. Below is our address:

Pos Digicert Sdn. Bhd. (457608-K)
No. 8-3A-02, Star Central,
Lingkaran Cyberpoint Timur,
63000 Cyberjaya,
Selangor Darul Ehsan.

Alternatively, you may send in your applications via online.

Your request for a Personal or Server Digital Certificate with identity assurance shall be processed after your identification is verified. The whole process will take between 3 to 5 working days.

Our application process is as below:
*Note: Process will only start once all required documents and payment are completed.

A )   WALK IN

Submission from 9:00 AM to 1:00 PM

Submission after 1:00 PM

B )   EMAIL OR COURIER   - 7 working days.

For application via email

For application via courier

Below is the list of our accepted payment methods.

Payment Methods

Cash and Credit Card (ONLY applicable for walk in customers)

Company / Personal Cheque, Bank Draft, Money Order, Postal Order, Internet Banking (applicable for walk-in, email and courier)

A )   WALK IN AND COURIER

B )   EMAIL

Purchase Order - you may liaise directly with our Sales team for quotation at [email protected]

Yes. Tax Invoice will be delivered together with your digital certificate. However, if the payment made via Purchase Order, your tax invoice will be sent within 14 working days after you have received your digital certificate.