Section 6 in The Digital Signature (End entity) Rules, 2015
6. Verification of Digital Signature Certificate.
(1)The self signed certificate generated by the Controller, which begins the trust chain for the public key infrastructure, shall be used to verify the authenticity of the public key certificate of the licensed Certifying Authorities.(2)The public key certificate of the licensed Certifying Authorities shall be used to verify the authenticity of the digital signature certificate issued to the subscribers.(3)The certificate revocation list maintained by the licensed Certifying Authorities shall be checked to confirm whether the certificate of the licensed Certifying Authorities is valid or whether it has been revoked under section 38 the Act.(4)While verifying the validity of a digital signature the corresponding digital signature certificate shall chain up through the public key certificate of the issuing Certifying Authority to the self signed certificate of the Controller and if any of the certificates in the trust chain is not trusted the signature shall not be verified.(5)The Digital Signature Certificate shall be verified with respect to time of signature created.(6)The chain of certificates shall be verified in accordance with the standards specified in rule 7.(7)If the certificate validity is less than one hour, the checking of revocation list shall not be required.
