KUALA LUMPUR (May 4): Identity services company Raffcomm Group says it combines the use of statutory imaging technology, digital signature, and Quick Response (QR) code with public key infrastructure (PKI) encryption technology to ensure users are protected.
Raffcomm’s subsidiary Raffcomm Sdn Bhd is one of two service providers engaged by the Companies Commission of Malaysia (SSM) where the public can purchase corporate information.
In an email interview with theedgemarkets.com, Raffcomm group chief executive officer Arief Adly Md Afendi said hence, any amendments made to any of the digital certified true copy documents will be detectable as there are cryptographic features to the digitally signed document.
Arief Adly was responding to questions on the high prevalence of malware and hacking in Malaysia in relation to the safety of the company’s services, especially given the higher usage of online services during the movement control order (MCO) period.
Malaysia had reported the most malware threats in Southeast Asia in 2018 (more than 16 million threats), according to the “2018 Security Roundup Report” by a global cybersecurity solutions company, Trend Micro Inc.
Arief Adly said digital identity fraud, data tampering, data leakage, data integrity and data manipulation are some of the cyber risks Raffcomm addresses.
“Towards this end, we put in place a series of proactive prevention solutions and processes to ensure the integrity of our services and platforms as well as safeguarding the interest and confidentiality of our clients.
He highlighted Raffcomm’s Digital Certified True Copy (Digital CTC) as an example of what the company provides as a licensed Certification Authority.
It is a transformational offering that enables users to get digitally signed SSM documents, for example company and business information, which are their profiles, certificates, Scanned Form Images etc, and saving them the hassle getting such documents over the counter at SSM, he said.
He explained that the availability of Digital CTC services is vital for ministries, government agencies, (e.g. Inland Revenue Board, Immigration, Road Transport Department Malaysia, Municipal Councils etc), financial institutions and licensing bodies to conduct validations and approvals.
“In addition, it allows the public to obtain certified documents for submissions and applications digitally without visiting SSM counters during or beyond [the] MCO period,” he said.
Arief Adly said Raffcomm is highly regulated by Bank Negara Malaysia for its e-money issuing licence, which has a set of compliance requirements that involve yearly audits.
“These measures help us to fulfil the requirements of confidentiality, identity authentication, non-repudiation, and integrity of information.
“Besides strong policy and risk management methodology, our Certification Authority differentiation is also regulated by Malaysian Communications and Multimedia Commission (MCMC), and it also goes through a stringent Yearly Audit Process by MCMC and Webtrust Canada,” he said.
Arief Adly said Raffcomm has been running the SSM e-Info platform since 2006, and it is one of the key contributors to its earnings.
On whether Raffcomm has plans to seek a listing on Bursa Malaysia, Arief Adly said the company is constantly looking for opportunities to expand its footprint out of Malaysia, but it first wants to strengthen its position in Malaysia for identity services especially Certification Authority with local companies for any onboarding process that covers government agencies, financial institutions and e-commerce in the next five years.
“Of course, we hope to take the company public one day, but a listing exercise is not yet on the cards at this point in time,” he said.