In today’s digital age, the need for efficient and secure document signing has never been greater. But it’s natural that your company might feel overwhelmed by the complexities of document signing, with rapidly evolving standards and confusing technical acronyms. So this blog post will provide you with the knowledge and tools necessary to implement a legally binding digital signing solution at your company.
The first question you should ask yourself is whether you need an electronic signature or digital signature solution. The answer to this question can be summarized as follows:
If you require an electronic signature solution, Nutrient supports adding electronic signatures to documents easily. You can start by exploring this demo that demonstrates the capability.
For more details, the reference guides provide detailed information about how to programmatically implement your electronic signature solution. Here are some links for the most popular platforms:
If your use case requires digital signatures, it’s important to know that digitally signing a document requires a digital ID. So the next crucial question to answer is whether or not you already have a digital ID.
A digital ID is comprised of the certificate and keys that uniquely identify an individual or an organization. These certificates are similar to the SSL certificates you may already use on your website, but their keyUsage property(opens in a new tab) must be digitalSignature.
If you or your users don’t have a digital ID, Nutrient offers an eSigning API, which is an easy-to-use cloud-based product that signs PDF documents using an advanced certificate that validates in Adobe Acrobat and other PDF readers.
If you need your own digital ID in the name of your company or any of your employees, the next section will explain how you can get one.
A digital ID, like any other part of public-key cryptography, is based on trust. A certification authority (CA) issues digital IDs to individuals or companies it trusts, forming a web of trust. One of the goals of validating a digital signature is to establish a valid chain of trust between an individual or a company and a CA that everyone trusts.
There are two kinds of digital IDs you can obtain:
If you decide to use your own digital ID, you can follow the instructions from our guides to do so.
If you decide to use a digital ID from a recognized CA, Nutrient has partnered with GlobalSign(opens in a new tab) to help you obtain a certificate from a recognized CA and make it work when signing documents. Contact us(opens in a new tab) to request more information about this.
Once you have your digital ID, you can decide on the technology and architecture to implement your signing project.
The software architecture for signing depends on each specific project, but we can classify them into two main groups:
The next sections will outline them in more detail.
Choose this architecture if you don’t have a centralized server in your company or your devices aren’t connected to the internet. In this situation, you install the digital ID on the device you use for signing, and the signing SDK completes the signing process.
Nutrient offers many client-only SDKs that support digital signatures. If you use an iPhone, iPad, or Android device, you can follow these guides:
This is possibly the most common architecture. A device connects to a server and sends either the entire document or a representation of it (a hash or digest), and the server signs it using the configured digital ID.
Nutrient covers this architecture well with its SDKs. For the client part, you can use the signing APIs described in the previous section. All our SDKs abstract away the signing process so you can contact any external server to sign a document using a digital ID. The server can be:
Finally, once you’ve decided you need a digital signing solution, you have the digital ID to sign documents, and you’ve decided on an architecture, you need to decide if you need additional features such as timestamping(opens in a new tab), which provides proof of when a document was signed, and Long-Term Validation (LTV), which ensures a signature remains valid over time, even if the signing certificate expires or is revoked. Nutrient supports these features as well, allowing you to claim PAdES(opens in a new tab) compliance. This article explains more about the different levels of PAdES compliance.
This post detailed the process of designing and constructing a digital signing solution. It started with deciding whether to use digital certificates and how to obtain them, and then covered the different architectures and technologies that could be employed. Digital signing solutions involve complex collaboration between certification companies and document management and modification companies. The following flowchart summarizes the digital signing design process,
Nutrient has extensive experience in document management and editing, as well as integrating third-party digital certificates. Contact us and we’ll guide you in creating your own document signing solution.
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。