Subdivision 1. Subscriber warranties. By accepting a certificate issued by a licensed certification authority, the subscriber listed in the certificate certifies to all who reasonably rely on the information contained in the certificate that:
(1) the subscriber rightfully holds the private key corresponding to the public key listed in the certificate;
(2) all representations made by the subscriber to the certification authority and material to the information listed in the certificate are true; and
(3) all material representations made by the subscriber to a certification authority or made in the certificate and not confirmed by the certification authority in issuing the certificate are true.
Subd. 2. Agent warranties. By requesting on behalf of a principal the issuance of a certificate naming the principal as subscriber, the requesting person certifies in that person's own right to all who reasonably rely on the information contained in the certificate that the requesting person:
(1) holds all authority legally required to apply for issuance of a certificate naming the principal as subscriber; and
(2) has authority to sign digitally on behalf of the principal, and, if that authority is limited in any way, adequate safeguards exist to prevent a digital signature exceeding the bounds of the person's authority.
Subd. 3. Disclaimer limitations. No person may disclaim or contractually limit the application of this section, nor obtain indemnity for its effects, if the disclaimer, limitation, or indemnity restricts liability for misrepresentation as against persons reasonably relying on the certificate.
Subd. 4. Indemnification by subscriber. By accepting a certificate, a subscriber undertakes to indemnify the issuing certification authority for loss or damage caused by issuance or publication of a certificate in reliance on:
(1) a false and material representation of fact by the subscriber; or
(2) the failure by the subscriber to disclose a material fact if the representation or failure to disclose was made either with intent to deceive the certification authority or a person relying on the certificate, or with gross negligence. The indemnity provided in this section may not be disclaimed or contractually limited in scope. However, a contract may provide consistent, additional terms regarding the indemnification.
Subd. 5. Certified accuracy. In obtaining information of the subscriber material to issuance of a certificate, the certification authority may require the subscriber to certify the accuracy of relevant information under oath or affirmation of truthfulness and under penalty of perjury.
History: 1997 c 178 s 13; 1998 c 321 s 18