Section 11: Compromise and Disaster Recovery

Q: What does Section 11 of The Information Technology (Certifying Authorities) Rules, 2000 (TITCAR) deal with?

Section 11 TITCAR pertains to "Compromise and Disaster Recovery". It is part of the The Information Technology (Certifying Authorities) Rules, 2000, a legislation enacted by the Parliament of India. Section 11 of The Information Technology (Certifying Authorities) Rules, 2000 (TITCAR) governs compromise and Disaster Recovery. As verified on 19 May 2026.

Q: Is Section 11 TITCAR still in force?

Yes, Section 11 of the The Information Technology (Certifying Authorities) Rules, 2000 is currently in force across the Republic of India.

Q: What is धारा 11 TITCAR?

धारा 11 TITCAR is the Devanagari Hindi reference for Section 11 of the The Information Technology (Certifying Authorities) Rules, 2000. Section 11 of The Information Technology (Certifying Authorities) Rules, 2000 (TITCAR) governs compromise and Disaster Recovery. As verified on 19 May 2026.

Q: What is Dhara 11 TITCAR?

Dhara 11 TITCAR is the Roman Hindi reference for Section 11 of the The Information Technology (Certifying Authorities) Rules, 2000. "Dhara" means "Section" in Hindi. Section 11 of The Information Technology (Certifying Authorities) Rules, 2000 (TITCAR) governs compromise and Disaster Recovery. As verified on 19 May 2026.

Q: How to cite Section 11 of The Information Technology (Certifying Authorities) Rules, 2000?

Cite as: "Section 11, The Information Technology (Certifying Authorities) Rules, 2000 (TITCAR)" in legal briefs. For academic writing, use the BlueBook format: The Information Technology (Certifying Authorities) Rules, 2000, § 11 (India).

Law on Tips Editorial Board

11.1

Computing Resources, Software and/or Data are Computed.-The Certifying Authority must establish business continuity procedures that outline the steps to be taken in the event of the corruption or loss of computing and networking resources, nominated website, repository, software and/or data. Where a repository is not under the control of the Certifying Authority, the Certifying Authority must ensure that any agreement with the repository provides for business continuity procedures.

11.2

Secure facility after a natural or other hype of disaster.-The Certifying Authority must establish a disaster recovery plan outlining the steps to be taken to re-establish a secure facility in the event of a natural or other type of disaster. Where a repository is not under the control of the Certifying Authority, the Certifying Authority must ensure that any agreement with the repository provides that a disaster recovery plan be established and documented by the repository.

11.3

Incident Management Plan.-An incident management plan shall be developed and approved by the management. The plan shall include the following areas :-

(i) Certifying Authority's certification key compromise;

(ii) Hacking of systems and network;

(iii) Breach of physical security;

(iv) Infrastructure availability;

(v) Fraudulent registration and generation of Digital Signature Certificates; and

(vi) Digital Signature Certificate suspension and revocation information.

(i) Compromise control;

(ii) Notification to user community; (if applicable)

(iii) Revocation of affected Digital Signature Certificates; (if applicable)

(iv) Responsibilities of personnel handling incidents;

(v) Investigation of service disruption;

(vi) Service restoration procedure;

(vii) Monitoring and audit trail analysis; and

(viii) Media and public relations.

Law on Tips(LOTS)

Section 11

Compromise and Disaster Recovery

Related Sections