325K.13 Control of private key.
Subdivision 1. Duty. By accepting a certificate issued by a licensed certification authority, the subscriber identified in the certificate assumes a duty to exercise reasonable care to retain control of the private key and prevent its disclosure to a person not authorized to create the subscriber's digital signature.
Subd. 2. Private property. A private key is the personal property of the subscriber who rightfully holds it.
Subd. 3. Authority as fiduciary. If a certification authority holds the private key corresponding to a public key listed in a certificate that it has issued, the certification authority holds the private key as a fiduciary of the subscriber named in the certificate, and may use that private key only with the subscriber's prior written approval, unless the subscriber expressly grants the private key to the certification authority and expressly permits the certification authority to hold the private key according to other terms.
HIST: 1997 c 178 s 14
Official Publication of the State of Minnesota
Revisor of Statutes