Unlike our competitors, our digital signatures are not just based on squiggles drawn with a mouse or a touch device. The problem is these squiggle images can be easily cut/pasted from one document to another. That would be bad enough but without cryptographic protection such signature solutions don’t even help to detect later edits to your signed documents! So not much use if you need to later rely on the evidential properties of such signatures when handling disputes. So don’t be fooled into thinking such signatures provide strong security.
SigningHub also uses hand-drawn signatures but these are then secured with advanced digital signatures using unique PKI keys for each of our users. Yes, you heard correct, we don’t rely on a single central server key – this can only create “proxy” signatures on behalf of users.
Before signing users are authenticated using various options such as simple username/passwords, mobile based authentication or tamper-resistant smartcards. This ensures that the signing keys are under the sole control of the owner. Because of this we are compliant with EU eIDAS Regulation for Qualified Signatures – the gold standard for digital signature security.
By the way, just because we take security as the number one priority doesn’t mean we are sloppy when it comes to ease-of-use. We ensure that security doesn’t get in the way of a great user experience. Don’t take our word for it, create a trial account and judge for yourself!
Again unlike our competitors, the security of our solution is not based on weird server-side security logic and then having to sift through audit trail records to prove a signature was valid!
Because we use standard digital signatures (ISO 32000, ISO 19500, ETSI PAdES, XAdES & CAdES), all the digital signature evidence information is stored inside the document itself. This means anyone with a freely available PDF Reader can easily verify our signatures. No need to upload the document to a server to get it verified or search through reams of logs to prove a point.
With important documents it’s essential that any digital signatures can be proven to be valid many years into the future (e.g. after the signer has left an organisation and/or their signing key has expired).
To cater for this we create enhanced PDF signatures based on latest ETSI PAdES specifications (ETSI TS 102 778). Such signatures support Long Term Validation (LTV) by using embedded secure timestamps to independently prove time of signing and also signer’s status at time of signing.
We even convert documents to PDF/A (ISO 19005-1:2005) format as part of the signing process. This is an open standard so not dependent on any particular software vendor, plus with PDF/A all fonts and other dependencies are contained within the document so it can be opened and viewed without any external resources, which may not be available in future. It’s an ideal format for long-term archiving and preservation! Similar profiles for XAdES-A and CAdES-A are also supported by the SigningHub engine.
Our solution can utilise existing signing keys which may already have been issued to your end-user population, be these on smartcards (e.g. PIV cards, national eID cards, corporate PKI-based logical access cards, etc) or soft tokens.
Your existing PKI (CAs, OCSP responders and Time Stamp Authorities) entities can be easily registered and trusted within our system as part of your custom Service Plan. SigningHub can be configured to re-use your existing signing credentials from industry initiatives such as Adobe® AATL program, Identrust®, SAFE-Biopharama etc.
SigningHub also supports the concept of Remote Signing, where user’s keys/certificates are all managed transparently on the SigningHub server. We work with a number of Adobe AATL and eIDAS Qualified CAs to issue certificates automatically as part of the SigningHub registration process. Contact us for more details.
Although we provide a cloud-based web service, you may prefer to run your own internally hosted service, if so no problem just license the technology. User’s hand-signatures can be captured using a variety of means from drawing on mobile devices, to uploaded images and specialist signature pads.
In-person signing allows a person to e-sign a document without requiring any account on the system. Form navigation helps to ensure users fill in all mandatory fields before signing a document. Pages can be initialed and legal notices can be shown to ensure user’s are aware of the legal implications of their digital signature.
Features such as delegated signing, department/role based signing and bulk signing of multiple files ensure the solution fits in within your business processes rather than the other way round.
A simple API allows easy integration into any web page. A number of languages are supported and others can be added easily upon request. Enterprise re-branding is also available to ensure consistent user experience.