Section 3(6) in The Information Technology (Recognition of Foreign Certifying Authorities Operating under a Regulatory Authority) Regulations, 2013
(6)The determination of whether a country's laws require a level of reliability at least equivalent to that required for issue of a Digital Signature Certificate under the Act, shall be made with regard to the factors decided by the Controller and shall, inter alia, include:-(a)financial and human resources, including existence of assets within the country;(b)trustworthiness of hardware and software systems;(c)procedures for processing of certificates and applications for certificates and retention of records;(d)availability of information to subscribers identified in certificates and to potential relying parties; and(e)regularity and extent of audit by an independent body;(B)Recognized Foreign Certifying Authority not to issue certificates in India. - Notwithstanding anything contained in these regulations, a Recognized Foreign Certifying Authority shall not issue digital signature certificates to Indian nationals residing in India.Explanation: For the purposes of these regulations, the term "Indian National" shall include a company, a firm, an association of persons, a body of individuals or a local authority whose registered office or principal place of business is located in India.(C)Validity of recognition. - (1) A recognition granted under regulation 3(A) shall remain valid unless suspended or revoked, as the case may be, under regulation 3(E).
