Electronic Communications and Transactions Act, 2002 (Act No. 25 of 2002)

Accreditation Regulations

Purchase

(1)	Authentication and certification service providers, excluding certification service providers whose authentication products and services are based on PKI, must adhere to the information security principles of SABSIISO 17799.

(2)	A certification service provider whose authentication products and services are based on PKI must adhere to the information security principles contained in SANS 21 188.