Malaysia legislation
Section 88
Section 88
New Chapter 1a of Part X
The principal Act is amended by inserting after Chapter 1
in Part X the following chapter:
“Chapter 1a
Network Security
Certifying agencies 230a. The Commission may register certifying agencies or classes of certifying agencies, including agencies outside
Malaysia, for the purpose of certifying compliance with regulations or standards in relation to network security under this Act.
Network security measures and requirements 230b. (1) Where the Commission is satisfied that it is necessary to prevent, detect or counter any network security risk, the
Commission may, by a written notice, instruct any person to take such measures or comply with such requirements as may be necessary to prevent, detect, or counter, any such risk.
(2)
Any person instructed by the Commission, under subsection (1), who without reasonable excuse fails to take any measure or comply with the written notice given by the
Commission under subsection (1) commits an offence and shall, on conviction, be liable to a fine not exceeding one million ringgit or to imprisonment for a term not exceeding ten years or to both.
(3)
For the purposes of this section, “network security risk” means any risk or threat, if exploited or not mitigated, could pose a significant risk of damage or disruption to the operation of any network facilities, network service or applications service.”.
Amendment of section 231