Section 18 of the Information Technology Act, 2000 provides legal sanctity to digital signatures based on asymmetric cryptosystems at par with signed paper documents. The section 17 of the Act provides for the Controller of Certifying Authorities (CCA) to license and regulate the working of Certifying Authorities. The Certifying Authorities issue digital signature certificates for electronic authentication of users.
The Controller of Certifying Authorities (CCA) has established the Root Certifying Authority of India (RCAI) under section 18(b) of the IT Act to digitally sign the public keys of Certifying Authorities (CA) in the country. The CCA certifies the public keys of CAs using its own private key, which enables users in the cyberspace to verify that a given certificate is issued by a licensed CA.
For more details click here