FAQ

Principles Of Secure Communications
Cryptography is the science of disguising information through encryption (scambling) and restoring it to its original form through decryption. It provides similar, but much stronger, security assurances that signatures, paper envelopes and codeboks have always provided.
Encryption is a way of scrambling information so that the information cannot be understood by anyone other than the intended recipient.
In a public key cryptography system, two related keys, a public and a private key, are required to exchange information securely. One key is used to encrypt a message and the other in the pair to decrypt the message. Although each key in the pair is mathematically related, it is impossible to derive one from the other. The private key is protected even when someone knows the public key, so it is safe to openly distribute public keys.
A pair of keys is usually generated by an appropriately trusted program on your computer or server. When the private key is created it will be automatically scrambled with a passphrase you supply. The public key will be submitted to a Certification Authority along with a request for a digital certificate. These certificates are usually valid for one year and are then renewed on a yearly basis.
When the Certification Authority receives a public key it waits for a user’s registration form. The Certification Authority makes further checks and once satisfied creates a digital certificate. The certificate includes some of the information the user supplied and the user’s public key.
The private key remains scrambled. Most secure communications programs will allow you to export and import the private key, keeping it encrypted. A private key must not be shared.
Digital Certificates
A digital certificate is an electronic equivalent of your NRIC or passport. To guarantee authenticity, subscriber certificates are digitally signed by the issuing Certification Authority e.g. Netrust, using its private key. This is akin to a passport issuing authority signing off on your passport.
There are many certificate-enabled applications such as online banking, cyber-shopping, electronic data interchange (EDI), secure electronic mail, government applications and services, online health services etc. These applications are expected to increase your productivity, reduce your costs and will make it very convenient for users to access many services from the comfort of their homes or offices. To access these applications securely, you will need to have a digital certificate.
Individuals and members of organisations, including those who control servers.
Netrust offers digital certificates, or Netrust Net-IDs, for personal use, corporate use, as well as for servers. Visit our Products & Services page to find out more. Netrust Net-IDs can be issued on smart cards, certified security tokens or disk-based media, depending on your security needs.
The following specifies the information contained within a personal and corporate Netrust digital certificate. It may also contain additional information as agreed between the user and Netrust. A personal Netrust Digital Certificate will contain information such as:
  • The subscriber’s name and other unique identification information e.g. NRIC, passport number etc.
  • The subscriber’s public key
  • Name and digital signature of the issuing Certificate Authority
  • Expiry date of the certificate. A corporate Netrust Digital Certificate will contain the same information as for the “individual certificate” with the following additional fields:
    • Industry group name (optional)
    • Organisation name
    • Organisation unit/s (if applicable)
To register for a Netrust digital certificate, visit our office with your personal identification documents. We are also working with banks and government organisations to implement Netrust Certificate Registration capabilities in bank branches and government offices. For businesses and government organisations, Netrust can also set up temporary registration services in your premises to register and issue Netrust Digital Certificates to your users on the spot.
When you connect with a secure web server (e.g. by https://…), the server will present its certificate to your browser so it can check the certificates validity for you. Email programs use digital certificates to check the authenticity of digital signatures. Using another person’s digital certificate is how you scramble your email to them. (If you scramble it with public keys in their certificate, only that person can unscramble because they are the only ones with the matching private keys).
Netrust provides a service that allows you to suspend or revoke your certificate. You would suspend your certificate if you suspect that your private key has been compromised e.g. someone found out your passphrase. You would revoke it if you were certain it was compromised. An organisation can also revoke a certificate e.g. when an employee leaves.
Digital Signatures
A digital signature is a more robust electronic equivalent of your signature on paper. Technically a digital signature is a scrambled summary of a document. It is generated by a mathematical formula and a person’s private key.
If validated, the digital signature will: Confirm the integrity of the message
Authenticate the signer, because only the signer has the private key, the message cannot be refuted as having been signed If someone does attempt to alter/interfere with a digitally signed message it will cause the automatic verification process to fail.
The email program you are using will tell you that a message has been digitally signed, who signed it, and whether the signature is valid.
The program recalculates the summary and compares it to the unscrambled summary from the email. If these are the same, then the signature is valid.
Secure Communications, Hardware/ Software
To leverage on the identification and security features of Netrust Digital Certificates, Netrust-supplied toolkits can be used to integrate certificate support into your applications. The toolkits, which can be obtained directly from Netrust at no charge, are based on industry standards and are extremely easy to use. Alternatively, you may approach a Netrust Alliance Partner to help in the development or integration. There are also many Netrust-ready products that are available off-the-shelf including email, electronic forms, firewalls, remote access, access control, mainframe access products etc. These products support the use of Netrust Digital Certificates and require little or no integration effort.
Aside from Netrust-ready websites, Netrust certificates are only able to work with software that supports fully secure scrambling and digital signatures. If you have a fully secure version of Microsoft Edge, Google Chrome, or Mozilla Firefox, you won’t need any software from Netrust. For the rest of us, Netrust supplies the necessary fully secure software for web browsers, web servers, email programs and other more specialised purposes.
Netrust Net-IDs can be stored on cryptographic tokens, which are portable so you can work securely from anywhere. Cryptographic tokens are more secure as your key pairs are generated on the token and cannot be removed or duplicated. Cryptographic tokens give another advantage. There is no need for card readers as they simply plug into USB ports found on most laptops and personal computers.
Entrust Certificate
When users connect to your service that has the Entrust Cross Chain deployed the users browser will rate the two paths and provide each path with a score, whichever path has the highest score will be the path of trust the user browser will use to create the SSL/TLS connection. This is the best deployment option as it offers the best Root ubiquity to the users connecting to your service, your services will be ready for when Microsoft removes trust for SHA1 Certificates
If the user does not have the G2 Root and is connecting to your service that has the Entrust Cross Chain deployed the EV Root will be used to create the path of trust for the SSL/TLS connection EV Root ==> L1K Cross Certificate ==> L1K Chain ==> Public Certificate
Netrust Digital Certificate

The cryptographic token with the Netrust Digital Certificate is like an identity card. The onus is on the Applicant to safeguard his/her token. If the token is stolen or lost, it must be reported to Netrust Pte Ltd immediately so that Netrust can revoke the certificate. The cryptographic token is protected with the user’s password. The password must always be kept private and confidential. There will be legal implications if the token is transferred or used by another person for unauthorized activities. The Applicant shall be held liable in the event of any breach of trust.
If the Applicant forgets his/her password or the token is locked after ten (10) cumulative unsuccessful attempts to provide the correct password, the Applicant has to visit Netrust Pte Ltd for a re-issuance of Netrust Digital Certificate. The cost of re-issuing the certificate is S$10.
Types of Netrust Digital Certificates and Differences
There are two (2) types of Netrust Digital Certificates, namely Corporate Net-ID Certificate and Personal Net-ID Certificate.

The differences between the two types of certificates are as follows:

Corporate Net-ID Certificate:
The certificate bears the name of the firm/company of the applicant, and future annual subscription billing for the Netrust Digital Certificate will be addressed to the firm/company.


Personal Net-ID Certificate:
The certificate does not bear the name of the firm/company of the applicant; and future annual subscription billing for the Netrust Digital Certificate will be addressed to the applicant.
What do I have to submit to register for a Netrust Digital Certificate?

Where do I register for a Netrust Digital Certificate?

Please send an email to infoline@netrust.net to request for the application form and understand more about the cost and documents required for this process.

Upon completion of generating the certificate, applicants will be notified via email to proceed to Netrust office for the collection.

What types of Netrust Digital Certificates are available and what are the differences?

There are two (2) types of Netrust Digital Certificates, namely

  1. Corporate Net-ID Certificate; and
  2. Personal Net-ID Certificate.

The differences between the two types of certificate are as follows:  

Corporate Net-ID Certificate:

  1. The certificate bears the name of the firm/company of the applicant;
  2. Future annual subscription billing for the Netrust Digital Certificate will be addressed to the firm/company; &
  3. Netrust’s liability limit – Singapore Dollars Eighty Thousand (S$80,000.00).

Personal Net-ID Certificate:

  1. The certificate does not bear the name of the firm/company of the applicant;
  2. Future annual subscription billing for the digital certificate will be addressed to the applicant; &
  3. Netrust’s liability limit – Singapore Dollars Ten Thousand (S$10,000.00)

What do I have to submit to register for a Netrust (Net-ID) Digital Certificate?

For applicant applying for Personal Net-ID Certificate, please bring item 1 to 3. For applicant applying for Corporate Net-ID Certificate, kindly bring item 1 to 5.

  1. Copy of the identification document of Applicant – NRIC/Passport or Work Permit (for foreigners) – *Driving License will not be accepted
  2. Practicing Certificate
  3. Netrust Digital Certificate Application Form
    (download Interactive Corporate Net-ID Application Form here)
    (download Interactive Personal Net-ID Application Form here)
  4. Letter of Authorization, authorizing the Applicant to apply for the token (see Sample Letter);
    NOTE : This letter does not permit a proxy to come on behalf of the applicants.
  5. Copy of Business Profile/ACRA (must be generated within the year of application)

How much do I have to pay?

S/NoItemsPrices
1Netrust Digital Certificate (Corporate and Personal)$60 (renewable annually)
2Registration Fee$10 (one-time cost)
3Cryptographic Token$100

All prices are subject to 7% GST.  

Mode of payment: Cash / Cheque / NETS / Visa / Mastercard / PayNow

What are my responsibilities for using the Netrust Digital Certificate?

The cryptographic token with the Netrust Digital Certificate (certificate) is like an identity card. The onus is on the Applicant to safeguard his/her token. If the token is stolen or lost, it must be reported to Netrust Pte Ltd immediately so that Netrust can revoke it. The password must always be kept private and confidential. There will be legal implications if the token is transferred or used by another person for unauthorized activities. The Applicant shall be held liable in the event of any breach of trust.

What if I forget my password for my Netrust Digital Certificate?

If the Applicant forgets his/her password or the token is locked after ten (10) cumulative unsuccessful attempts to provide the correct password, the Applicant has to visit Netrust Pte Ltd for a re-issuance of Netrust Digital Certificate.
The cost of re-issuing the certificate is S$10.70 (inclusive of 7% GST).

What if my token is damaged, lost or stolen?

Inform Netrust Pte Ltd immediately and notify the user to bring along their NRIC to Netrust office to get a replacement of the token. Cost for replacement of cryptographic token is as follows:

S/NoItemPrices
1.Administrative Fee$10 (one-time cost)
2.Cryptographic Token$100

All prices are subject to 7% GST.

What operating systems are supported by Netrust software?

Supported platforms:

Lifespan of Certificate The certificate has a lifespan of 3 years from the date of issue. Netrust Digital Certificate renewal can be done online using the Entrust Entelligence Security Provider (EESP). A dedicated update prompt will appear on the right hand side of the taskbar on the 30th to the 36th month of the certificate validity.


Click on the icon and user’s information will display. Select “Update” to proceed with the Netrust Certificate Update. Once successful, the token validity will be extended to 3 years from the date of the update.



Should your certificate become invalid due to failure to update your certificate online, please submit the Certificate Management Request Form (download CMR form) to Netrust to carry out a certificate recovery. This service is chargeable as stated in the Netrust FAQ.



Who to contact for enquiries or help?

  • Netrust Customer Service Hotline: +65 6212 1388 (please leave a voicemail, if necessary)
  • Email: infoline@netrust.net
  • Website: https://www.netrust.net
Where do I register for a Netrust USB-Token?
Please send an email to infoline@netrust.net to request for the application form and understand more about the cost and documents required for this process.
Upon completion of generating the certificate, applicants will be notified via email to proceed to Netrust office for the collection.

What do I have to bring?

Pre-requisites (Corporate Net-ID Application)
  • Corporate Net-ID Interactive Application Form
  • Letter of Authorization, authorizing the Applicant to apply for the token under their Company. The Letter must be printed on the Company Letterhead.
  • Original or Certified True Copy of the Practicing Cert (Issued By Board of Architects, Professional Engineers Board, Public Utilities Board)
  • Copy of Business Profile/ACRA (Must be generated within the year of application)
Pre-requisites (Personal Net-ID Application)
  • Personal Net-ID Interactive Application Form
  • Original or Certified True Copy of the Practicing Cert (Issued By Board of Architects, Professional Engineers Board, Public Utilities Board)
  • Copy of the Identification document of Applicant – NRIC/Passport or Work Permit (foreigners) – *Driving License will not be accepted
Pre-requisites AP Builder (Corporate Net-ID Application)
  • Corporate Net-ID Interactive Application Form
  • Letter of Authorization, authorizing the Applicant to apply for the token under their Company. The Letter must be printed on the Company Letterhead.
  • Builder’s License letter / Update of Builder Key Personnel letter issued by BCA
  • Copy of the Identification document of Applicant – NRIC/Passport or Work Permit (foreigners) – *Driving License will not be accepted
Pre-requisites AP Builder (Personal Net-ID Application)
  • Personal Net-ID Interactive Application Form
  • Builder’s License letter / Update of Builder Key Personnel letter issued by BCA
  • Copy of the Identification document of Applicant – NRIC/Passport or Work Permit (foreigners) – *Driving License will not be accepted
Pre-requisites Energy Auditor (Personal Net-ID Application)
  • Personal Net-ID Interactive Application Form
  • Certificate of Registration (Issued By BCA)
  • Copy of the Identification document of Applicant – NRIC/Passport or Work Permit (foreigners) – *Driving License will not be accepted
How much do I have to pay?
Item

Price(SGD)

1. Netrust Digital Certificate (renewable annually) :$60
2. Registration Fee (one-time cost) :$10
3. Cryptographic Token:$100
4.GST (7%) :$11.90
TOTAL$181.90
Mode of payment (upon collection):
  • Cash
  • Cheque (made payable to Netrust Pte Ltd)
  • NETS
  • Visa
  • Mastercard
  • PayNow
  • Diners Club
What are my responsibilities for using the token?
The cryptographic token with the Netrust Digital Certificate is like an identity token. The onus is on the Applicant to safeguard his/her token. If the token is stolen or lost, it must be reported to Netrust Pte Ltd immediately so that Netrust can revoke it. The password must always be kept private and confidential. There will be legal implications if the token is transferred or used by another person for unauthorized activities. The Applicant shall be held liable in the event of any breach of trust.

What if I forget my password?
  • If the Applicant forgets his/her password or the token is locked after ten (10) consecutive unsuccessful attempts to provide the correct password, the Applicant has to apply to Netrust Pte Ltd for a recovery of token to reset the password
  • Cost for token recovery is $10.70 (inclusive of 7% GST)
What if my token is damaged, lost or stolen?
Inform Netrust Pte Ltd immediately and notify the user to bring along their NRIC to Netrust office to get a replacement of the token.
Cost for replacement of cryptographic token is as follows:
S/NoItemPrices
1.Administrative Fee$10 (one-time cost)
2.Cryptographic Token$100

All prices are subject to 7% GST.

What operating systems are supported by Netrust software?
Supported platforms:

Lifespan of Certificate
The certificate has a lifespan of 3 years from the date of issue. Netrust Digital Certificate renewal can be done online using the Entrust Entelligence Security Provider (EESP). A dedicated update prompt will appear on the right hand side of the taskbar on the 30th to the 36th month of the certificate validity.

Click on the icon and user’s information will display. Select “Update” to proceed with the Netrust Certificate Update. Once successful, the token validity will be extended to 3 years from the date of the update.


Should your certificate become invalid due to failure to update your certificate online, please submit the Certificate Management Request Form (download CMR form) to Netrust to carry out a certificate recovery. This service is chargeable as stated in the Netrust FAQ.

Who to contact for enquiries or help?

Netrust Customer Service Hotline: +65 6212 1388 (please leave a voicemail, if necessary)
Email: infoline@netrust.net
Where do I register for a Netrust Digital Certificate?
Please send an email to infoline@netrust.net to request for the application form and understand more about the cost and documents required for this process.
Upon completion of generating the certificate, applicants will be notified via email to proceed to Netrust office for the collection.

Which type of Netrust Digital Certificate should I apply for?
You will obtain a Netrust Corporate Net-ID Certificate with the following information:
  1. The digital certificate would bear the name and masked NRIC number of the User;
  2. User shall be accountable for the certificate; and
  3. Future billing for digital certificate subscription renewal would be addressed to the User, unless otherwise specified
What do I have to bring to register for a Netrust Digital Certificate?
  1. Copy of the Identification document – NRIC/ Passport or Work Permit (for foreigners) – *Driving License will not be accepted
  2. Netrust Digital Certificate Interactive Application Form
    (download Interactive Corporate Net-ID Application Form here)
  3. Letter of Authorisation (LOA Template Link) (printed on the company Letterhead). ALL Application submitted to Netrust must include a Letter of Authorization. Netrust token application will not be processed if this document is not submitted to Netrust.
  4. Copy of Business Profile/ACRA (Must be generated within the year of application)
  5. Copy of the Approval Email / completed and signed SA01 Form sent by LTA to the user stating the approval of company / ESA
How much do I have to pay?
S/NITEMPRICE(SGD)
1.Netrust Corporate Net-ID Certificate (annual fee)$60
2.Registration fee$10
3.Cryptographic Token$100
Total$170

All prices are subject to 7% GST.

What are the modes of payment at Netrust Office?
Cash / Cheque / NETS / Visa / Mastercard / Diners Club / PayNow

What are my responsibilities for using the Netrust Digital Certificate?
The cryptographic token with the Netrust Digital Certificate is like an identity card. The onus is on the User to safeguard the token. If the token is stolen or lost, it must be reported to Netrust Pte Ltd immediately so that Netrust can revoke the certificate. The digital certificate in the token is protected by a User-defined password. This password is known only to the User and must always be kept private and confidential.

I need a strong password to protect my digital certificate, are there any rules for the password?
Yes, your Password must satisfy the following rules:

  1. must be at least 8 characters long;
  2. must be less than or equal to 16 characters long;
  3. must contain an uppercase character;
  4. must contain a lowercase character;
To prevent misuse and abuse of the digital certificate, the Cryptographic token has the security feature of locking itself after 10 cumulative entries of incorrect password. However when the user enters the correct password before the token is locked, the tracking counter for wrong password attempts would be reset to zero.

What if I forget the password to my token?

If the User forgets his/her password, and the token is locked after 10 cumulative unsuccessful attempts to provide the correct password, the User has to visit Netrust for a certificate re-issuance. The cost of re-issuing the certificate is S$10 (exclusive of GST).
What if my token is damaged, lost or stolen?
Inform Netrust immediately by submitting a Netrust Certificate Management Request Form (download CMR form). The certificate will then be revoked.
S/NITEMPRICE(SGD)
1.Administrative fee for certificate re-issuance$10
2.Cryptographic Token$100

All prices are subject to 7% GST. Which Operating Systems are supported by Netrust software? Supported platforms:

Who to contact for enquiries or help?
Netrust Customer Service Hotline: 6212 1388 (please leave voicemail) Email: infoline@netrust.net Website https://netrust.net/

Lifespan of Certificate
The certificate has a lifespan of 3 years from the date of issue. Netrust Digital Certificate renewal can be done online using the Entrust Entelligence Security Provider (EESP). A dedicated update prompt will appear on the right hand side of the taskbar on the 30th to the 36th month of the certificate validity.
entrust digital ID
Click on the icon and user’s information will display. Select “Update” to proceed with the Netrust Certificate Update. Once successful, the token validity will be extended to 3 years from the date of the update.
update request

Should your certificate become invalid due to failure to update your certificate online, please submit the Certificate Management Request Form (download CMR form) to Netrust to carry out a certificate recovery. This service is chargeable as stated in the Netrust FAQ.

Contact Customer Service
If there are any unanswered questions, please feel free to contact Netrust at: Phone: +65 6212 1388
Email : infoline@netrust.net
Please contact Netrust at:
Phone: +65 6212 1388
Email: infoline@netrust.net
Personal Data Protection Policy

Contact Us: General enquiries or free consultation

We’re really grateful for giving us a chance to connect with you. Please do not hesitate to ask us anything and we will respond to you asap.
image

    You have read, understood and agree to be bound by the Netrust's Personal Data Protection Policy as may be amended from time to time and agree that we may collect, use and disclose your personal data as provided in this form for the purposes set out in the Personal Data Protection Policy. Where you are providing us with personal data of another individual, you warrant that you are authorised to consent to the Data Protection Policy and provide us with such personal data on his/her behalf.

    This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.