To participate in the Mangalore Refinery and Petrochemicals Limited e-tenders, vendors have to register on the e-procurement portalhttps://mrpl.eproc.in. The vendors cannot participate in the bidding process without a valid user name and a password.
Bidders should possess class 2 digital signature certificates with encryption for the Mangalore Refinery and Petrochemicals Limited e-procurementprocess.
Certificate owners must ensure that the private key is secure in the smart card/ e-token. If the private key can be accessed by an unauthorised person, it can be misused without the knowledge of the owner. Digital signature can be employed in a wireless network. Digital signatures do not have a specimen like the the hand-written signature. It changes with the content of the message. As per the Information Technology Act, 2000, electronic signatures are legally admissible. The Mangalore Refinery and Petrochemicals Limited e-tenders process is compliant with the Indian IT Act, 2000. A person can possess two digital signatures – one for official use and other one for personal use. To participate in the e-procurement process in India, the certificate has to be registered in the name of the representative of the organisation. If the person moves to another department or organisation, the existing certificate may be revoked. The digital signature generated each time is different, even when the same private key has been used.
Digital signatures uses asymmetric key cryptography and hash functions to authenticate electronic records. Vendors can present a digital certificate electronically to prove their identity and access tender-related information on the Mangalore Refinery and Petrochemicals Limited e-tenders portal. The owner of a digital certificate is identified by two keys – a private key and a public key. These keys are used to encrypt and sign digital information. Along with encryption, digital certificates provide a more secure solution.
A digital certificate is issued by a Certification Authority (CA) and signed with the CA’s private key. Controller of Certifying Authorities (CCA), issues digital signature certificates only to certifying authorities (CA). CAs issue these certificates to the end user. Vendors can buy DSCs from one of the CAs or a registration authority. A CA is a trusted third party that verifies the identity of the applicants and issues certificates that certify their identity. These certificates are mandatory for participating in most of the online transactions such as e-tenders and e-procurement of goods and services.
Type of digital signature certificates used for online tenders:
Class 2 digital signature certificate: These will be issued to business personnel as well as individuals for private use. These confirm the identity of the user in online transactions.
Class 3 digital signature certificate: Class 3 DSC can be issued to individuals as well as organisations. These provide a higher level of security and are generally used for e-commerce transactions. The applicant has to appear personally in front of the CA officials to prove his/ her identity.